Cloud Infrastructure - Cyber Security Lead

A leadership role responsible for defining and executing the cloud’s information security strategy. leading the design and implementation of advanced security architectures across cloud and hybrid environments, and overseeing the response to high-severity cyber incidents. The role requires strong technical leadership, strategic decision-making, cross-organizational collaboration, and regular communication with executive stakeholders.

Key Responsibilities

Security Architecture & Governance

• Lead the design and implementation of cloud security architectures aligned with CIS, NIST, and ISO27001 standards.
• Oversee the definition and enforcement of security controls: WAF, IAM, NACLs, Zero Trust, segmentation, and more.
• Develop and implement security policies, procedures, hardening baselines, and governance frameworks.
• Ensure hybrid (cloud + on-prem) security solutions are properly designed and maintained.

Network & Security Engineering

• Oversee the design of secure network solutions in complex enterprise environments: BGP, OSPF, VPN, SD-WAN, MPLS.
• Manage and maintain enterprise firewall infrastructures (Fortinet / Check Point).
• Establish standards for secure networking and optimize network resilience, availability, and performance.

Incident Response & Operations

• Lead the investigation and handling of complex cyber incidents, coordinating SOC and IR teams.
• Conduct root cause analysis and produce executive-level post-incident reports.
• Manage Tier-3 escalations and provide expert guidance for cloud and infrastructure-related issues.

Cross-Organizational Collaboration

• Drive cross-functional security initiatives
• Work closely with Cloud, Network, IT, and Systems teams to embed security into workflows.
• Interface with external vendors, integrators, and service providers.

Requirements:

• 7+ years of experience in information security, network engineering, or cloud security,
• Strong hands-on experience with cloud security and networking: IAM, WAF, routing, segmentation.
• Deep understanding of network protocols (TCP/IP, BGP, OSPF, DNS, HTTP/S).
• Significant experience leading high-severity incident response efforts.
• Familiarity with enterprise infrastructure systems: Active Directory, GPO, DNS.
• Ability to define and implement security standards, best practices, and governance processes.

Preferred Qualifications

• Experience with:
• VMware
• Okta
• Kubernetes
• Windows/Linux hardening
• Hands-on experience with the full Incident Response lifecycle.
• Relevant certifications: CISSP, CISM, CCNP/CCIE, CEH, GSEC, etc.