About Role

We are seeking a technically hands-on and visionary Senior Cloud Security Architect to lead the design, implementation, and governance of security controls across Microsoft Azure, Google Cloud Platform (GCP), and leading SaaS platforms including but not limited to Oracle Fusion, Salesforce, Google Workspace, Adobe Creative Cloud, LinkedIn Enterprise etc. The ideal candidate will possess deep expertise in cloud-native security, multi-cloud identity and access management, SaaS security architecture, and core cybersecurity principles. This role is critical to ensuring secure, scalable, and compliant cloud and SaaS environments across the enterprise.

Responsibilities

Cloud Security Architecture & Engineering
Microsoft Azure
•Architect secure environments using Defender for Cloud, Sentinel, Azure Policy, Blueprints, and Key Vault.
•Review PIM, Conditional Access, Managed Identities, and Just-In-Time access.
•Design multi-tenant and hybrid cloud environments with Zero Trust principles.
•Integrate Azure Monitor, Log Analytics, and MS Defender for Cloud for continuous monitoring.

Google Cloud Platform (GCP)
•Deploy and manage Security Command Center, IAM roles, VPC Service Controls, and Cloud Armor.
•Enforce Organization Policies, Workload Identity Federation, and Binary Authorization.
•Integrate Forseti Security, Cloud Audit Logs, and Chronicle for compliance and threat visibility.

DevSecOps & Automation
•Integrate security into CI/CD pipelines using GitHub Actions, Azure DevOps, and GCP Cloud Build.
•Automate security baselines using Terraform.

Multi-Cloud Identity & Access Management
•Design federated identity models across Azure AD, GCP IAM, and SaaS platforms using SSO, SAML, OAutstrong, and OpenID Connect.
•Implement RBAC and ABAC across cloud and SaaS environments.
•Integrate identity governance for lifecycle management, access reviews, and entitlement management.
•Ensure least privilege access and segregation of duties.

SaaS Security
Oracle Fusion
•Enforce RBAC, data masking, audit trails, and integration security.
•Conduct role reviews and ensure compliance with financial and privacy regulations.

Salesforce
•Implement Shield Encryption, Field Audit Trail, Event Monitoring, and secure API integrations.
•Conduct permission audits and monitor login/session activity.

Google Workspace
•Enforce DLP policies, context-aware access, and sandboxing.
•Monitor audit logs and integrate with CASB solutions.

Adobe Creative Cloud
•Restrict access to licensed apps and monitor collaboration activities.
•Enforce identity federation and audit user activity.

LinkedIn Enterprise
•Secure access to Learning and Recruiter platforms.
•Monitor usage patterns and enforce data sharing policies.

Cybersecurity Operations & Strategy
•Lead threat modeling, risk assessments, and architecture reviews for multi cloud including Hybrid environments.
•Collaborate with SOC and IR teams to integrate telemetry into SIEM/SOAR platforms.
•Develop incident response playbooks for cloud and SaaS environments.
•Conduct proactive cloud infrastructure improvement reviews.

Compliance, Risk & Governance
•Align with ISO 27001, NIST, GDPR, SOC 2, and aviation-specific standards (e.g., ICAO, IATA, DO-326A).
•Review cloud audit reports and risk assessments and implement recommendations accordingly.
•Drive continuous improvement through KPIs and maturity assessments.

Collaboration & Leadership
•Partner with IT, DevOps, and business units to embed security into cloud and SaaS strategies.
•Mentor junior architects and engineers.
•Represent cybersecurity in architecture review boards and strategic planning.

Be part of an extraordinary story

Your skills. Your imagination. Your ambition. Here, there are no boundaries to your potential and the impact you can make. You’ll find infinite opportunities to grow and work on the biggest, most rewarding challenges that will build your skills and experience. You have the chance to be a part of our future, and build the life you want while being part of an international community.
Our best is here and still to come. To us, impossible is only a challenge. Join us as we dare to achieve what’s never been done before. Together, everything is possible

Knowledge Skills & Experience

Bachelor’s in Information Security, or related field.
8+ years of experience in cybersecurity, with at least 5 years in cloud and SaaS security architecture.
Hands-on experience with Azure and GCP security services and SaaS platforms like Oracle Fusion and Salesforce.
Strong understanding of IAM, encryption, network security, data protection, and compliance frameworks.

One or more of the following certifications:

o Certified Cloud Security Professional (CCSP)
o Certified Information Systems Security Professional (CISSP)
o Google Cloud Certified Fellow – Security
o Azure Security Engineer Associate
o GCP Professional Cloud Security Engineer
o SANS GIAC Cloud Security Automation (GCSA)

Preferred Certifications / Skills

Master’s degree in Information Security or a related field.
Experience with aviation industry SaaS platforms security compliance.
Familiarity with DevSecOps, CI/CD security, and IaC tools like Terraform.
Strong analytical, communication, and documentation skills.

About Qatar Airways Group
Our story started with four aircraft. Today, we deliver excellence across 12 different businesses coming together as one. We’ve grown fast, broken records and set trends that others follow. We don’t slow down by the fear of failure. Instead, we dare to achieve what’s never been done before.

So whether you’re creating a unique experience for our customers or innovating behind the scenes, every person contributes to our proud story. A story of spectacular growth and determination. Now is the time to bring your best ideas and passion to a place where your ambition will know no boundaries and be part of a truly global community.

How to Apply
If you’re ready to join a progressive team and have a challenging and rewarding career, then apply now by uploading your CV and completing our quick application form.

Our story started with four aircraft. Today, we deliver excellence across 12 different businesses coming together as one. We’ve grown fast, broken records and set trends that others follow. We don’t slow down by the fear of failure. Instead, we dare to achieve what’s never been done before.

So whether you’re creating a unique experience for our customers or innovating behind the scenes, every person contributes to our proud story. A story of spectacular growth and determination. Now is the time to bring your best ideas and passion to a place where your ambition will know no boundaries, and be part of a truly global community.

https://aa115.taleo.net/careersection/QAExternalCS/jobapply.ftl?langen&job226054