{bc}
indeed

Senior Cloud Security Engineer

Iberdrola
Doha, QAT
Full Time
Senior
2 weeks ago
Google Cloud PlatformCloud SecurityDevSecOpsTerraformIAMCloud Armor
Free

Job Fit Check

Base Career helps you apply smarter for this job.

?%
Ready to Scan

Key skills for this role

Google Cloud PlatformCloud SecurityDevSecOps
Smart Apply

Full Job Posting

Position Description

  • At East West Digital / Iberdrola Innovation Middle East, we are scaling our cloud platform and need a highly capable Senior Cloud Security Engineer.
  • You will act as a hands on technical authority with cybersecurity in your DNA, working shoulder to shoulder with engineering teams in a true DevSecOps approach.

Jobs To Be Done

  • Technical Leadership & Architecture: Act as the primary technical authority for cloud security. Partner with software architects to perform Threat Modeling on new SaaS products and embed 'Security by Design' principles.
  • Hands on GCP Implementation: Design, configure, and maintain the native Google Cloud security stack (Cloud Armor, conditional IAM, VPC Service Controls, Secret Manager, Security Command Center).
  • SaaS & AppSec: Define and implement robust protections for our SaaS applications, focusing on API security, WAF configurations, DDoS mitigation, and secure multi tenant isolation.
  • DevSecOps Integration: Guide and implement security automations and controls within our CI/CD pipelines (SAST, DAST, container/artifact scanning).
  • Validation & Incident Response: Conduct continuous internal security assessments, identify vulnerabilities, provide pragmatic remediation strategies, and act as a key responder during security events.

Education Requirements

  • Minimum: Bachelor’s degree in Computer Science, Engineering, Cybersecurity, or equivalent deep, verifiable hands on engineering experience.
  • Preferred: Master’s degree in Cybersecurity.
  • Licences/Accreditations: Google Cloud Professional Cloud Security Engineer (highly preferred). Other respected technical certifications (e.g., CISSP, CCSP, OSWE) are a plus.

Experience

  • Years of experience: 5–7+ years in Cybersecurity, with at least 3+ years of deeply hands on experience exclusively securing Google Cloud (GCP) environments.
  • Domain exposure: Native GCP security stack (IAM, Cloud Armor, VPC Service Controls, SCC), SaaS architecture, web application vulnerabilities, DevSecOps pipelines, and Infrastructure as Code (Terraform).
  • Leadership/ownership: Proven track record of technically influencing and guiding senior software architects, and owning the end to end security posture of cloud native, multi tenant applications.

Skills and Competencies

  • Technical: GCP Security Stack (Cloud Armor, IAM, VPC Service Controls, Secret Manager, SCC) — Must have
  • AppSec & Web Vulnerabilities (OWASP Top 10, API Security, WAF configuration) — Must have
  • Infrastructure as Code (Terraform for security controls) — Must have
  • DevSecOps integration (SAST/DAST within CI/CD pipelines) — Must have
  • Scripting/Automation (Python, Go, or Bash) — Nice to have
  • Behavioural: Attacker & Builder Mindset, Technical Influence, Pragmatism, and Ownership.

Why Us

  • Career growth: You will be the guiding light for cloud security at East West Digital / Iberdrola Innovation ME, shaping the security foundation of new SaaS products from the ground up.
  • Culture: Engineering first mindset where security is an enabler, not a roadblock.
  • Rewards: Competitive tax free salary in Qatar, comprehensive health benefits, relocation assistance, and modern workplace perks.

Apply for this job in 1 click

Skip the repetitive application forms

Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.

Sarah M.James T.Maya R.

Trusted by over 500,000 job seekers on Base Career

Start Free Today

More from this employer

More jobs at Iberdrola