Post Job Free
Sign in

Senior Cloud Security Engineer

Company:
Iberdrola
Location:
Fereej Bin Mahmoud, Qatar
Posted:
June 29, 2026
Apply

Description:

Department: Digital Platforms

Reports To: Chief Technology Officer (CTO)

Location: Doha

Position Description

At East-West Digital / Iberdrola Innovation Middle East, we are scaling our cloud platform and need a highly capable Senior Cloud Security Engineer. You will not act as a theoretical compliance auditor, but rather as a hands-on technical authority with cybersecurity in your DNA. By working shoulder-to-shoulder with engineering teams in a true DevSecOps approach, you will ensure our SaaS products on Google Cloud are secure by design, resilient against attacks, and built with robust, automated defenses from conception to deployment.

Primary mission: Secure the design, deployment, and operation of our SaaS products on Google Cloud through hands-on implementation and technical leadership.

Key stakeholders: Software Architects, Cloud Engineers, Development Teams, and Product Managers.

Employment type: Full-time

Jobs To Be Done

Technical Leadership & Architecture: Act as the primary technical authority for cloud security. Partner with software architects to perform Threat Modeling on new SaaS products and embed "Security by Design" principles.

Hands-on GCP Implementation: Design, configure, and maintain the native Google Cloud security stack (Cloud Armor, conditional IAM, VPC Service Controls, Secret Manager, Security Command Center).

SaaS & AppSec: Define and implement robust protections for our SaaS applications, focusing on API security, WAF configurations, DDoS mitigation, and secure multi-tenant isolation.

DevSecOps Integration: Guide and implement security automations and controls within our CI/CD pipelines (SAST, DAST, container/artifact scanning).

Validation & Incident Response: Conduct continuous internal security assessments of our infrastructure and deployed applications, identify vulnerabilities, provide pragmatic remediation strategies, and act as a key responder during security events.

Education Requirements

Minimum: Bachelor’s degree in Computer Science, Engineering, Cybersecurity, or equivalent deep, verifiable hands-on engineering experience.

Preferred: Master’s degree in Cybersecurity.

Licences/Accreditations: Google Cloud Professional Cloud Security Engineer (highly preferred). Other respected technical certifications (e.g., CISSP, CCSP, OSWE) are a plus.

Experience

Years of experience: 5–7+ years in Cybersecurity, with at least 3+ years of deeply hands-on experience exclusively securing Google Cloud (GCP) environments.

Domain exposure: Native GCP security stack (IAM, Cloud Armor, VPC Service Controls, SCC), SaaS architecture, web application vulnerabilities, DevSecOps pipelines, and Infrastructure as Code (Terraform).

Leadership/ownership: Proven track record of technically influencing and guiding senior software architects, and owning the end-to-end security posture of cloud-native, multi-tenant applications.

Skills and Competencies

Technical:

GCP Security Stack (Cloud Armor, IAM, VPC Service Controls, Secret Manager, SCC) — Must-have

AppSec & Web Vulnerabilities (OWASP Top 10, API Security, WAF configuration) — Must-have

Infrastructure as Code (Terraform for security controls) — Must-have

DevSecOps integration (SAST/DAST within CI/CD pipelines) — Must-have

Scripting/Automation (Python, Go, or Bash) — Nice-to-haveNice-to-have

Behavioural: Attacker & Builder Mindset (think like a hacker, build like an engineer), Technical Influence (ability to argue technically and gain respect without being a blocker), Pragmatism, and Ownership.

Tools/Systems: GCP Console/CLI, Terraform, Modern CI/CD systems (GitHub Actions, GitLab CI, etc.), Cloud-native security scanning tools.

Why Us

Career growth: You will be the guiding light for cloud security at East-West Digital / Iberdrola Innovation ME, shaping the security foundation of new SaaS products from the ground up. We provide continuous learning platforms and sponsor relevant certifications.

Culture: We have an engineering-first mindset where security is an enabler, not a roadblock. We value undeniable technical arguments over compliance checklists. You will work in an international, highly skilled environment at the QSTP

Rewards: Competitive tax-free salary in Qatar, comprehensive health benefits, relocation assistance, and modern workplace perks, among others.

Mobility Information

Please note that any applicant who is not a citizen of the country of the vacancy will be subject to compliance with the applicable immigration requirements to legally work in that country.

Job Posting End Date:julio-31-2026

R-25279

Apply