Cloud Security Architect

Location: Riyadh, Kingdom of Saudi Arabia (Onsite)
Industry: Banking / Financial Services
Employment Type: Full-Time
Experience Required: 10+ Years

We are seeking a highly experienced and strategic Cloud Security Architect to lead the design and implementation of secure cloud architectures for a leading bank in KSA. The ideal candidate will be responsible for defining cloud security strategy, governance frameworks, and ensuring compliance with banking regulations within the Kingdom of Saudi Arabia.

This role requires deep expertise in cloud platforms, cybersecurity architecture, regulatory compliance, and financial industry standards.

• Design and implement secure cloud architectures across public, private, and hybrid cloud environments.

• Develop cloud security strategy aligned with business objectives and regulatory requirements in KSA.

• Ensure compliance with Saudi Central Bank (SAMA) cybersecurity and cloud computing frameworks.

• Lead security architecture reviews for cloud migration initiatives and digital transformation programs.

• Implement cloud-native security controls, including IAM, encryption, DLP, SIEM integration, and zero-trust architecture.

• Conduct threat modeling, risk assessments, and security design reviews.

• Define cloud security governance, policies, and standards.

• Collaborate with DevOps teams to implement DevSecOps practices.

• Oversee cloud security posture management (CSPM) and continuous monitoring.

• Ensure compliance with international standards such as ISO 27001, NCA ECC, PCI-DSS, and SWIFT CSCF.

• Manage third-party cloud security risks and vendor assessments.

• Provide guidance during regulatory audits and cybersecurity assessments.

• Strong experience with at least one major cloud platform:

  • Amazon Web Services (AWS)

  • Microsoft Azure

  • Google Cloud

• Expertise in:

  • Cloud network security architecture

  • Identity & Access Management (IAM)

  • Encryption & Key Management (KMS, HSM)

  • Cloud workload protection platforms (CWPP)

  • Container and Kubernetes security

  • API security & microservices architecture

  • Zero Trust Architecture

  • Secure Landing Zone design

• Experience with security tools such as SIEM, SOAR, EDR, CASB.

• Strong understanding of banking regulatory and compliance requirements in KSA.

• Bachelor's or Master's degree in Computer Science, Information Security, or related field.

• 10+ years of experience in cybersecurity, with at least 5+ years in cloud security architecture.

• Experience in banking or financial services is mandatory.

• Professional certifications preferred:

  • AWS Certified Security Specialty

  • Azure Security Engineer Associate

  • Google Professional Cloud Security Engineer

  • CISSP

  • CCSP

  • CISM

• Experience working in regulated financial environments in KSA.

• Strong knowledge of SAMA CSF and Cloud Framework.

• Excellent stakeholder management and communication skills.

• Arabic language proficiency is preferred.

• Ability to lead security transformation initiatives.