Cybersecurity Operations

Job Description

East-West Digital (EWD) is seeking a highly skilled Cybersecurity Operations expert to define, implement, and continuously strengthen the company's cloud security strategy across Google Cloud, AWS, and Azure. This role serves as the central reference point for all matters related to cloud privacy, data protection, defensive security, and secure solution design.

Working side-by-side with architecture, development, and product teams, the Cybersecurity Operations expert ensures that all cloud-based products are designed and delivered following a rigorous Privacy & Security by Design approach. The position includes responsibilities across threat modelling, internal security assessments, incident response, automation of controls, and continuous posture management.

This is a senior, high-impact role within EWD's cloud platform domain.

Jobs to Be Done

1. Define and govern EWD's cloud security framework:
   • Establish best practices for cloud security and privacy across all EWD products.
   • Maintain and enhance the organization's cloud security posture.
   • Develop policies, automated controls, and preventive guardrails across cloud environments.
2. Guide architecture and development teams:
   • Ensure Security by Design principles are applied throughout the full product lifecycle.
   • Provide expert guidance, architectural reviews, and periodic internal audits.
   • Contribute to secure architecture patterns, design decisions, and implementation strategies.
3. Perform continuous security evaluation:
   • Identify, analyze, and remediate vulnerabilities across projects.
   • Conduct advanced threat modelling and risk assessments.
   • Perform internal ethical hacking when needed to validate security controls.
4. Lead detection and incident response operations:
   • Design and implement logging, monitoring, and alerting strategies.
   • Detect threats using native cloud security services.
   • Lead incident response, recovery, and post-incident forensics.
5. Ensure governance, compliance, and architectural robustness
   • Ensure compliance with internal standards, regulatory requirements, and cloud benchmarks.
   • Conduct architectural reviews to identify gaps and optimize cost-security-complexity trade-offs.
   • Support centralized management of GCP projects, AWS accounts, and Azure subscriptions.

Requirements

Education:

• Bachelor's degree in Computer Science, Engineering, or a related field.
• A Master's degree is a plus.

Experience:

• More than 5 years of experience in cloud security, cloud engineering, or related roles.
• Extensive hands-on experience with Google Cloud and AWS; Azure experience is a plus.
• Proven track record implementing DevSecOps, security automation, CI/CD pipelines, and incident response.
• Previous experience in the energy or utilities sector is advantageous.

Skills and Competencies

Cloud Security & Privacy

• Strong understanding of data classification, privacy, and protection mechanisms.
• Expertise in encryption (in transit and at rest), key management, and secret protection.
• Understanding of secure internet protocols and security operations.
• Ability to balance cost, security, and deployment complexity.
• Deep knowledge of the Cloud Shared Responsibility Model.

Identity & Access Management

• Experience designing and implementing authentication and authorization for cloud resources.
• Advanced familiarity with:
  • (MUST) Google Cloud: IAM, IAM Conditions, Cloud Identity, Access Context Manager
  • (NICE TO HAVE) AWS: Identity Center, Directory Service, IAM Roles, Permission Sets, Control Tower
  • (NICE TO HAVE) Azure: Entra ID, Conditional Access, PIM, RBAC

Detection, Monitoring & Incident Response

• Proficiency with tools such as SCC, Chronicle, Cloud Logging & Monitoring, GuardDuty, Security Hub, Inspector, Sentinel, Azure Monitor, etc. (at least one of them)
• Ability to design logging architectures, dashboarding, alerts, and anomaly detection.
• Strong incident response and threat-mitigation skills.

Network & Application Security

• Experience with edge and application protection (e.g. Cloud Armor, IAP, AWS WAF, AWS Network Firewall, Azure Front Door, etc.).
• Understanding of Zero-Trust principles and secure connectivity patterns.

Data Protection

• Experience with tools such us Cloud KMS, Secret Manager, CMEK, AWS KMS/CloudHSM, Azure Key Vault, VPC-SC, DLP frameworks, and confidential computing (at least one of them).

Governance & Compliance

• Knowledge of posture management, CIS benchmarks, regulatory frameworks, SCPs, Assured Workloads, Blueprints, etc.
• Ability to perform end-to-end architecture reviews with a security focus.

Soft Skills

• Structured and innovative mindset.
• Strong team spirit and relationship-building skills.
• Ability to manage complex situations with sound judgment.
• Resilience and composure under pressure.
• Entrepreneurial, proactive, and highly collaborative.

Key Performance Indicators (KPIs)

• Compliance level with EWD's cloud security framework across all products.
• Reduction of vulnerabilities and security findings over time.
• Mean Time to Detect (MTTD) and Mean Time to Resolve (MTTR) for security incidents.
• Adoption rate of automated security controls across teams.
• Quality and frequency of internal security audits.
• Improvement of EWD's cloud security posture metrics (SCC scores, CIS benchmarks, etc.).

Why Join Us?

At East-West Digital, you will help shape the security foundation of a next-generation, cloud-native platform serving real-world energy applications and global customers. You will work with cutting-edge cloud and AI technologies, drive high-impact decisions, and collaborate with multidisciplinary teams in a dynamic, multicultural environment.

East-West Digital is building the future of digital energy solutions from Doha, and this role places you at the core of that transformation-combining innovation, technical excellence, and meaningful impact across the entire organization.

Please note that any applicant who is not a citizen of the country of the vacancy will be subject to compliance with the applicable immigration requirements to legally work in that country.