Cyber Security Manager

About the role

You will lead the Cyber Security function across multiple domains, protecting enterprise and cloud platforms from internal and external threats. The role involves managing technical teams, working with senior stakeholders, and ensuring compliance with regulatory and national security requirements.

Key responsibilities

• Design, implement and enforce secure cloud and hybrid architectures on OCI, Azure and GCP using Zero Trust and defense‑in‑depth principles.
• Lead cloud security engineering, leveraging native services such as OCI Cloud Guard, Microsoft Sentinel, Azure Policy and GCP Security Command Center.
• Architect hybrid environments with secure identity federation, network segmentation, private connectivity and centralized monitoring.
• Define secure network designs including hub‑and‑spoke, landing zones and inter‑cloud connectivity.
• Integrate security controls into CI/CD pipelines using DevSecOps, Terraform/Bicep and automated policy enforcement.
• Manage federated identity and access management across OCI IAM, Azure AD, GCP IAM and SaaS platforms, implementing SSO, SAML, OAuth 2.0 and OpenID Connect.
• Support the implementation of the National Security Operations Centre (NCSOC) compliance instructions.
• Secure SaaS applications such as Oracle Fusion, Salesforce, Google Workspace, Adobe Creative Cloud and LinkedIn Enterprise.
• Lead threat modelling, cloud risk assessments and security architecture reviews.

Required profile

• Proven experience leading technical security teams in cloud and hybrid environments.
• Strong understanding of cyber governance, security operations and regulatory compliance.
• Ability to collaborate with senior stakeholders and drive continuous improvement.
• Experience with national security operation centre processes is a plus.

Required skills

• Oracle Cloud Infrastructure (OCI) – Cloud Guard, Security Zones, IAM
• Microsoft Azure – Defender for Cloud, Sentinel, Azure Policy, Entra ID
• Google Cloud Platform (GCP) – Security Command Center, Cloud Armor, VPC Service Controls
• Infrastructure‑as‑Code tools: Terraform, Bicep
• DevSecOps and CI/CD pipeline integration
• Identity protocols: SAML, OAuth 2.0, OpenID Connect
• Access control models: RBAC, ABAC, Privileged Access Management (PAM), Just‑in‑Time access
• SaaS security for Oracle Fusion, Salesforce, Google Workspace, Adobe Creative Cloud, LinkedIn Enterprise
• Threat modelling, cloud risk assessment, security architecture review