Job Description

Onsite Role based in Abu Dhabi:

Harden and secure AWS and Microsoft 365 environments using native and third

party tools such as:

o AWS Security Hub, GuardDuty, AWS IAM

o Microsoft Defender for Cloud, Defender for M365, Microsoft Purview

Implement and manage identity and access controls, MFA, role-based access
policies, and zero-trust models across both platforms.

Continuously review and improve cloud configurations against CIS benchmarks
and security best practices.

Operate and manage vulnerability scanning platforms (e.g., Qualys, Microsoft
Compliance Manager) to identify and track vulnerabilities across the IT estate.

Coordinate with technical teams to track remediation efforts, validate fixes, and
ensure timely resolution of high-priority security issues.

Deploy automated vulnerability scanning tools for cloud assets, containers, and
applications (e.g., AWS Inspector, Defender for Cloud).

Apply secure coding practices and remediation processes across cloud
workloads.

Ensure patching and remediation of vulnerabilities in line with SLAs and
compliance standards.

Integrate security controls into DevOps pipelines, ensuring secure software
development and delivery.

Embed tools and processes such as:
o SAST (Static Application Security Testing)

o DAST (Dynamic Application Security Testing)

o SCA (Software Composition Analysis)

Ensure that CI/CD pipelines are configured with security gates, artifact scanning,
and least privilege deployment practices.

Job Type: Full-time