VSOL is a digital enabler with a mission to help public and private organizations evolve their businesses through data and technology. We provide an end-to-end service from consulting to execution that drives the growth and innovation of our clients. As VSOL is in a phase of rapid expansion, we offer a dynamic, creative environment that accelerates your personal and professional development. We are looking for talented individuals eager to develop in international markets while contributing to the company's future in a constructive and supportive manner.
Responsibilities
- Cloud Cybersecurity risk and compliance framework and management
- Develop and maintain GCP security architecture frameworks for new and existing solutions.
- Implement and manage cloud-native security controls (e.g., IAM, VPC, Audit Logs, Security Command Center).
- Embed security best practices through supplier evaluations and solution reviews.
- Ensure compliance with ISO 27001, SOC 2, NCA, and define risk/security requirements.
- Drive cybersecurity strategy and policy compliance across cloud environment.
- Align with audit activities and regulatory expectations; liaise with auditors and regulators.
- Identify, assess, and remediate information security risks.
- Establish and maintain Cloud, DevSecOps, and Cyber strategies for execution and growth of operations across our public sector clients.
- Automate infrastructure provisioning using Terraform (or Terragrunt).
- Implement and manage secure identity and access controls, including SSO, MFA, and IAM best practices.
- Establish and maintain Cloud, DevSecOps, and Cyber strategies for execution and growth of operations across our public sector clients.
- Automate infrastructure provisioning using Terraform (or Terragrunt).
- Implement and manage secure identity and access controls, including SSO, MFA, and IAM best practices.
- Configure and manage networking: VPCs, subnets, VPN, and Load Balancers.
- Deploy and manage cloud services such as Kubernetes, managed databases, search services, object storage, messaging/queuing services, and container services.
- Implement and manage API Gateway solutions.
- Use Key Management Services and Secret Management for secure key and secret management.
- Automate deployment and manage continuous delivery pipelines using Argo CD and Terraform.
- Monitor infrastructure using cloud-native monitoring, logging, and policy intelligence tools for performance, security, and cost optimization.
- Develop and maintain robust backup and disaster recovery strategies.
- Troubleshoot and resolve infrastructure and deployment issues across cloud services.
- Collaborate with development teams to ensure seamless integration of applications with cloud services.
- Participate in on-call support rotations.
- A strong understanding of networking concepts, including routing, firewalls, load balancing and basic knowledge of database administration and SQL.
- The ability to advise teams on security best practices for CI/CD pipelines.
- At a minimum, a bachelor's degree in Computer Science, Information Technology Management or Engineering, or other comparable degree or experience.
- The ability to obtain and maintain a DHS Suitability
Requirements
- Bachelor's degree in Computer Science, Engineering, or related field.
- Minimum 3 years of hands-on Cloud security experience on GCP, Azure, or AWS.
- Hands-on with Kubernetes security services, IAM, and cloud data protection, as well as Elasticsearch, managed databases, container services, and messaging/queuing services.
- Skilled in Terraform/Terragrunt, Argo CD, and scripting (Python, Bash, PowerShell).
- Solid understanding of cloud networking and API management.
- Experienced in CI/CD pipelines, and cloud monitoring and logging.
- Cloud certifications (e.g., Professional Cloud Architect, Solutions Architect, or equivalent) and a solid understanding of security compliance requirements are strong advantages.
- Ability to communicate technical concepts effectively in English to both technical and non-technical stakeholders.
Preferred Qualifications
- Experience with Istio or other service mesh technologies.
- Familiarity with DevSecOps practices and compliance frameworks.
- Hands-on experience with Cloud Key Management Services, Secret Management, Web Application Firewalls, and Security Command Centers.
Why you'll love working here:
- Working in a start-up environment, English-speaking, with the opportunity to be part of an innovation team and global projects
- On-site opportunities inthe UAE (United Arab Emirates) and the KSA (Kingdom of Saudi Arabia)
- 13th-month salary bonus
- Premium Health insurance for employees and family members (depending on level), Annual Health Check, Government Insurance in probation
- 14++ days of Annual leave and 5 days of Outing leave
- Lunch allowance and free parking
- Taxi & phone allowance (depending on level)
