Senior Specialist - Cloud Vulnerability Manager

Deep Light AI is a specialist AI and data consultancy with extensive experience implementing intelligent enterprise systems across multiple industries, with particular depth in financial services and banking. Our team combines deep expertise in data science, statistical modeling, AI/ML technologies, workflow automation, and systems integration with a practical understanding of complex business operations.

Based in the UAE, we partner with organizations across diverse sectors—and have a deep-rooted expertise in Financial Services and Banking—to bridge the gap between complex data and actionable business strategy.

We don’t believe in “off-the-shelf” fixes. We deliver tailored AI solutions designed to integrate seamlessly into existing enterprise architectures, ensuring innovation is scalable and secure. From building robust data foundations to deploying sophisticated AI platforms, we empower our clients to lead in an increasingly automated world.

The role is embedded directly within a major banking client and is responsible for the continuous identification, assessment, prioritization, and remediation orchestration of security vulnerabilities across the bank’s multi‑cloud infrastructure (AWS and Azure). Serving as a core subject‑matter expert, this position bridges the gap between automated security tooling and infrastructure engineering teams.

• Oversee the end-to-end cloud vulnerability management lifecycle, including continuous scanning, technical analysis, risk scoring, and remediation tracking.
• Configure, maintain, and optimize cloud security tools, Cloud Security Posture Management (CSPM), and vulnerability scanning platforms across enterprise environments.
• Collaborate directly with cloud engineering, Dev Ops, and system owners to drive the patching and mitigation of identified infrastructure and container defects.
• Translate raw vulnerability data into prioritized engineering tasks by evaluating threat intelligence, business context, and potential exploitability within a banking environment.
• Design and deliver accurate cloud risk posture reports, remediation trends, and compliance metrics for senior leadership and risk committees.
• Represent Deep Light by modeling proactive technical leadership, technical precision, and structured problem‑solving across all client work streams.

• A minimum of 5 years of experience in dedicated cybersecurity roles, with at least 3 years focused strictly on cloud security and vulnerability management.
• Documented experience managing infrastructure risks within a regulated tier‑1 or tier‑2 financial institution, navigating strict change management and compliance frameworks.
• Prior experience in a client‑facing professional services or consulting capacity, managing delivery timelines and client stakeholder expectations.
• Hands‑on experience identifying and remediating vulnerabilities within containerised environments (Kubernetes, Docker) and Infrastructure as Code templates (Terraform).
• Comprehensive understanding of security architecture, configuration flaws, and attack vectors native to AWS and Azure platforms.
• Technical proficiency in configuring and managing enterprise‑grade scanning and CSPM tools (e.g., Prisma Cloud, Wiz, Qualys, Tenable, or native cloud security centres).
• Ability to utilize CVSS v3/v4 frameworks alongside threat intelligence to accurately calculate real‑world business risk versus theoretical vulnerability severity.
• Capacity to influence and drive accountability across independent engineering squads to prioritise security remediation within their deployment cycles.
• Ability to translate complex infrastructure vulnerabilities into actionable engineering instructions and high‑level risk summaries for senior stakeholders.

• Relevant designations such as AWS Certified Security – Specialty, Microsoft Certified:
  Azure Security Engineer Associate, CISSP, or specialised vulnerability management credentials.
• Ability to write scripts (e.g., Python, Bash) or utilise cloud‑native automation tools to streamline vulnerability triaging and alerting workflows.
• Familiarity with modern threat landscapes and frameworks such as MITRE ATT&CK for Cloud.

• Competitive salary.
• Comprehensive personal health insurance.
• Visa sponsorship for the successful individual.
• Professional development and certification support.
• Subscription reimbursement relating to your role.
• Opportunity to work on cutting‑edge AI projects.
• Monthly employee incentive programme.
• Career advancement opportunities in a rapidly growing AI company.