Apply
You'll be redirected to the original job posting
Job Type
Full-time
Work Mode
In-office
Industry
Financial Services
Role
IT Software
Experience
8 - 14 years
Education
Not specified
Salary
Not disclosed
Location
DUBAI
Apply Before
June 10, 2025
Skills
Security Architect
Job Description
Cloud & Infrastructure Security
•Design and implement security architecture for AWS infrastructure including EKS, S3, RDS, IAM, VPC, KMS, GuardDuty, and WAF.
•Define and enforce baseline configurations aligned with CIS Benchmarks and AWS Well-Architected Security Pillar.
•Oversee hardening of Kubernetes workloads, container image scanning, runtime protection, and identity federation.
Application & API Security
•Lead secure architecture reviews for microservices, APIs, and user workflows.
•Implement and maintain AppSec tooling (GHAS, SonarQube, BurpSuite) across the CI/CD pipeline.
•Guide the development team in secure coding practices, input validation, authN/authZ patterns, and session management.
Threat Modeling & Hunting
•Lead threat modeling sessions (STRIDE, DFD) for new product features and third-party integrations.
•Define custom detections and alerts leveraging Sysdig, AWS CloudTrail, and OpenTelemetry.
•Collaborate on red/purple teaming exercises and post-mortem investigations.
DevSecOps Enablement
•Work with DevSecOps team to Integrate security gates into GitHub Actions, Jenkins, and ArgoCD workflows.
•Work with DevSecOps team to automate compliance checks, container scans, and artifact validation pre-deployment.
•Work with DevSecOps team to build re-usable Terraform/Helm security modules and IaC validations.
Data Security & Compliance
•Define controls for data encryption, masking, tokenization, and data loss prevention.
•Support audits and assessments for PCI DSS, ISO 27001, SOC 2, UAE DPL/IAR.
•Act as a technical SME during regulator and client security reviews.
8+ years of experience in security engineering or architecture roles, preferably in fintech, SaaS, or cloud-native companies.
•Deep technical expertise in AWS security and Kubernetes ecosystem.
•Hands-on experience with GitHub Advanced Security, Jenkins, ArgoCD, Sysdig, SonarQube, and container image scanning.
•Strong understanding of OAuth2, SAML, JWT, API security, and secure authentication design.
•Proven experience in designing and implementing DevSecOps pipelines and threat modeling processes.
•Experience aligning with compliance standards: ISO 27001, PCI DSS, SOC 2, UAE IAR.
•Security certifications: AWS Certified Security Specialty, CISSP, CCSP, OSWE, GCSA, or similar.
•Experience working with microservice architectures
•Familiarity with security event tracing (OpenTelemetry), synthetic API monitoring, and runtime forensics.
•Design and implement security architecture for AWS infrastructure including EKS, S3, RDS, IAM, VPC, KMS, GuardDuty, and WAF.
•Define and enforce baseline configurations aligned with CIS Benchmarks and AWS Well-Architected Security Pillar.
•Oversee hardening of Kubernetes workloads, container image scanning, runtime protection, and identity federation.
Application & API Security
•Lead secure architecture reviews for microservices, APIs, and user workflows.
•Implement and maintain AppSec tooling (GHAS, SonarQube, BurpSuite) across the CI/CD pipeline.
•Guide the development team in secure coding practices, input validation, authN/authZ patterns, and session management.
Threat Modeling & Hunting
•Lead threat modeling sessions (STRIDE, DFD) for new product features and third-party integrations.
•Define custom detections and alerts leveraging Sysdig, AWS CloudTrail, and OpenTelemetry.
•Collaborate on red/purple teaming exercises and post-mortem investigations.
DevSecOps Enablement
•Work with DevSecOps team to Integrate security gates into GitHub Actions, Jenkins, and ArgoCD workflows.
•Work with DevSecOps team to automate compliance checks, container scans, and artifact validation pre-deployment.
•Work with DevSecOps team to build re-usable Terraform/Helm security modules and IaC validations.
Data Security & Compliance
•Define controls for data encryption, masking, tokenization, and data loss prevention.
•Support audits and assessments for PCI DSS, ISO 27001, SOC 2, UAE DPL/IAR.
•Act as a technical SME during regulator and client security reviews.
8+ years of experience in security engineering or architecture roles, preferably in fintech, SaaS, or cloud-native companies.
•Deep technical expertise in AWS security and Kubernetes ecosystem.
•Hands-on experience with GitHub Advanced Security, Jenkins, ArgoCD, Sysdig, SonarQube, and container image scanning.
•Strong understanding of OAuth2, SAML, JWT, API security, and secure authentication design.
•Proven experience in designing and implementing DevSecOps pipelines and threat modeling processes.
•Experience aligning with compliance standards: ISO 27001, PCI DSS, SOC 2, UAE IAR.
•Security certifications: AWS Certified Security Specialty, CISSP, CCSP, OSWE, GCSA, or similar.
•Experience working with microservice architectures
•Familiarity with security event tracing (OpenTelemetry), synthetic API monitoring, and runtime forensics.
Apply
You'll be redirected to the original job posting site to complete your application