We have urgent requirement for Senior Cloud Security Architect- secure cloud architecture + cryptographic & PKI mastery is required for our banking client in Bahrain

Strong experience on Cloud Security Architecture-Azure, O365, and AWS is THE MUST

Strong experience on Cryptography & PKI / HSM Expertise is THE MUST

Strong experience on Security Architecture Design (HLD / LLD) & Dev Sec Ops is THE MUST

Experience on Identity & Access Management (IAM) / Authentication Protocols -OAuth2, SAML 2.0, Open ID Connect, MFA, Conditional Access is THE MUST

Strong experience on threat modelling tools and methodologies (e.g., STRIDE, DREAD, MITRE ATT&CK is THE MUST

CISSP or CISM (either one) – MUST Certification

The Senior Security Architect designs, builds, and governs secure enterprise architectures across cloud, on-premises, and hybrid environments. The role ensures that all technology initiatives comply with security best practices, regulatory requirements, and the Bank’s security strategy. The architect acts as the technical authority for security design, cloud security, cryptography, and secure integration, while serving as Product Owner for key security tools.

Key Responsibilities (Brief)

Design and implement secure architectures (HLD/LLD) across cloud and on-prem. Develop security patterns, reference architectures, and roadmaps. Lead threat modelling, architecture reviews, and risk assessments. Integrate security into Dev Ops/CI-CD (Dev Sec Ops). Own Microsoft security tools: Purview, AIP, Defender, Azure AD, O365 Security. Own and manage HSM and key lifecycle operations. Oversee Bluecoat/Fireglass proxy policies & configurations. Define and maintain security policies, standards, and governance. Support incident response with architectural expertise.

Mandatory Skills & Experience

Technical (Mandatory)

Strong cloud security expertise: Azure, AWS, O365Deep knowledge of cryptography, PKI, HSM, certificate management Proven experience designing secure cloud architectures (AWS/Azure/GCP) Strong understanding of IAM, MFA, OAuth, SAML, OIDCExperience with API, container, microservices security Hands-on skills in DLP, CASB, proxies, web filtering Knowledge of ISO 27001, NIST, CIS, SABSA/TOGAF principles Strong understanding of security design patterns & CIS benchmarks

Experience (Mandatory)

8+ years cyber security experience3+ years hands-on configuration in cloud (Azure/365/AWS) Financial services experience Experience with threat modelling (STRIDE, MITRE ATT&CK)

Certifications (Mandatory)

CISSP or CISMCloud certification (Azure Security or AWS Security) (Preferred: SABSA, TOGAF, GDSA)

Skills: security,design,pki,architecture,cloud