Back to search
Astra Tech Linkedin · Posted 1mo ago

Cybersecurity Expert

United Arab Emirates

Linkedin
Continue to application Add your email once, then Caio opens the original posting.

Indexed description

Location: Abu Dhabi, UAE

About Us

A leading UAE-based consumer technology company, building the digital infrastructure of everyday life with a focus on AI-powered fintech, communication, and digital services.

Guided by our philosophy, the Blueprint of Simplicity, we design technology around real human behavior, connecting people, enabling financial access, and making everyday experiences effortless.

Our flagship platform, botim, is the region’s most trusted fintech communication platform, combining secure VoIP with action-based AI and everyday money tools. Through botim money, we provide financial services that serve both individuals and SMEs, making payments, transfers, and credit simpler and more accessible. Today, the platform serves 150M+ users worldwide.

Our lending finance engine, Quantix, powers fast, regulated credit across the ecosystem, including innovative products such as CashNow for instant access.

From calls to credit, from daily services to big ambitions, we are rethinking how the region stays connected and financially included.

Role Summary

We are seeking a hands-on Senior Cybersecurity Expert with deep expertise in offensive security, secrets management, and secure technical engineering.

This Role Focuses On Advanced Technical Execution, Including

  • Azure Cloud infrastructure security, such as defender of cloud, WAF, cloud policy.
  • O365 security, such as Defender for Office365 , DLP, CASB, CloudAPP, Conditional access, CSPM , MDC, MDE, MFA, PIM
  • Enterprise-grade Key & Secrets Management (PAM / HSM / Key Vault)
  • SOC operation
  • DevSecOps security integration

The ideal candidate is a senior expert level, capable of designing and implementing security controls, validating them through adversarial testing, and integrating them into modern cloud-native environments.

Responsibilities

  • Azure Infrastructure Security

Hands-on hardening of Azure tenants — Entra ID (Azure AD), Conditional Access, Defender for Cloud, NSGs, Private Link, Key Vault, Policy & Blueprints, Landing Zone reference architectures, and CIS/Microsoft Cloud Security Benchmark alignment.3. Key & Secrets Management

  • Defender for Office365 and Cloud,
  • Conduct Azure cloud and office security technical platform management, include Azure Cloud infrastructure security, such as defender of cloud, WAF, cloud policy.
  • O365 security, such as Defender for Office365 , DLP, CASB, CloudAPP, Conditional access, CSPM , MDC, MDE, MFA, PIM

Design and operate enterprise key lifecycle — Azure Key Vault / Managed HSM, BYOK/HYOK, certificate lifecycle, rotation, envelope encryption, and integration with PKI and application secrets stores.

  • Privileged Access Management (PAM)

Implement and administer PAM platforms (e.g., CyberArk, BeyondTrust, PAM360 or equivalent) — vault design, session isolation/recording, JIT/JEA, credential rotation, and Tier-0 protection for hybrid identities.

  • DevSecOps

Embed security across CI/CD (Azure DevOps / GitHub Actions / GitLab) — SAST, DAST, SCA, IaC scanning (Terraform/Bicep), container & image scanning, secrets detection, and policy-as-code (OPA / Azure Policy).

  • SOC — Microsoft Sentinel

Operate Microsoft Sentinel end-to-end — data connectors, KQL hunting, analytics & UEBA rules, watchlists, SOAR playbooks (Logic Apps), incident triage, MITRE ATT&CK mapping, and threat intelligence integration.

Required Qualifications & Experience

  • Education: Bachelor's degree in Computer Science, Information Security, Engineering or a closely related discipline.
  • Experience: 5 – 8 years of hands-on experience in cybersecurity engineering or security operations roles within enterprise or service-provider environments.
  • Cloud and Office Security : Demonstrable, production-grade experience securing Microsoft Azure workloads (multi-subscription, hybrid identity, networking).
  • Offensive Skills: Proven track record of delivering web and API penetration tests with formal reporting to enterprise stakeholders.
  • Tooling: Practical exposure to PAM (CyberArk / BeyondTrust / PAM360), Key Vault / HSM, Burp Suite Pro, CI/CD security scanners, and IaC tools.
Free. 20 seconds. No password. See every match in this search.

Create a free Caio profile to unlock more results and save your role and location preferences.

Unlock free search
Want help applying to roles like this? Search Caio for free. If CV tailoring and application tracking get heavy, Full Caio Agent adds a human specialist.
View Full Agent