Job description

This role supports cloud security operations across multi-cloud environments including Azure, AWS, and GCP for PwC’s Middle East clients. The mandate spans monitoring, analyzing, and responding to cloud security alerts using tools such as Microsoft Defender, Sentinel, and Google Security Command Center, while supporting identity and access management (IAM) implementations including Zero Trust and Identity Governance for regulated sectors. The role contributes to developing and enforcing cloud security policies aligned with regional regulatory frameworks such as NCA ECC/CCC, SAMA CSF, and UAE ISR, and supports the deployment of cloud-native security controls in alignment with CIS, NIST, ISO 27001, and ISO 27017 standards. Responsibilities include preparing technical and client-facing reports and dashboards, enabling security-by-design for cloud transformation engagements, collaborating with SOC and Managed Cyber Defense teams for incident response and remediation, and working with multidisciplinary teams to strengthen cloud security posture. The position requires hands-on experience with Microsoft 365 Security, Google Security technologies including YARA-L and UDM Query Language, understanding Azure AD and Google Workspace, foundational network security knowledge, and awareness of DevSecOps and automation in cloud environments.