Senior Specialist - Cloud Vulnerability Manager

DeepLight AI is a specialist AI and data consultancy with extensive experience implementing intelligent enterprise systems across multiple industries, with particular depth in financial services and banking. Our team combines deep expertise in data science, statistical modeling, AI/ML technologies, workflow automation, and systems integration with a practical understanding of complex business operations.

DeepLight AI is a specialist AI and data consultancy dedicated to transforming the regional corporate landscape through bespoke, high-impact intelligent systems. Based in the UAE, we partner with organizations across diverse sectors—with a deep-rooted expertise in Financial Services and Banking—to bridge the gap between complex data and actionable business strategy.

At DeepLight, we dont believe in "off-the-shelf" fixes. We deliver tailored AI solutions designed to integrate seamlessly into existing enterprise architectures, ensuring that innovation is both scalable and secure. From building robust data foundations to deploying sophisticated AI platforms, we empower our clients to lead in an increasingly automated world.

The Senior Specialist - Cloud Vulnerability Manager is a senior technical position within Deeplight consultancy, embedded directly within a major banking client. The role is responsible for the continuous identification, assessment, prioritization, and remediation orchestration of security vulnerabilities across the banks multi-cloud infrastructure (AWS and Azure). Serving as a core subject matter expert, this position bridges the gap between automated security tooling and infrastructure engineering teams, ensuring cloud risks are visibly tracked and mitigated in strict alignment with financial sector regulatory timelines and Deeplights standards of professional excellence.

You responsibilities in this role include:

• Overseeing the end-to-end cloud vulnerability management lifecycle, including continuous scanning, technical analysis, risk scoring, and remediation tracking
• Configuring, maintaining, and optimizing cloud security tools, Cloud Security Posture Management (CSPM), and vulnerability scanning platforms across enterprise environments
• Collaborate directly with cloud engineering, DevOps, and system owners to drive the patching and mitigation of identified infrastructure and container defects
• Translating raw vulnerability data into prioritized engineering tasks by evaluating threat intelligence, business context, and potential exploitability within a banking environment
• Designing and delivering accurate cloud risk posture reports, remediation trends, and compliance metrics for senior leadership and risk committees
• Representing Deeplight by modeling proactive technical leadership, technical precision, and structured problem-solving across all client workstreams
  
  

• A minimum of 5 years of experience in dedicated cybersecurity roles, with at least 3 years focused strictly on cloud security and vulnerability management
• Documented experience managing infrastructure risks within a regulated tier-1 or tier-2 financial institution, navigating strict change management and compliance frameworks
• Prior experience in a client-facing professional services or consulting capacity, managing delivery timelines and client stakeholder expectations
• Hands-on experience identifying and remediating vulnerabilities within containerized environments (Kubernetes, Docker) and Infrastructure as Code templates (Terraform)
• Comprehensive understanding of security architecture, configuration flaws, and attack vectors native to AWS and Azure platforms
• Technical proficiency in configuring and managing enterprise-grade scanning and CSPM tools (e.g., Prisma Cloud, Wiz, Qualys, Tenable, or native cloud security centers)
• Ability to utilize CVSS v3/v4 frameworks alongside threat intelligence to accurately calculate real-world business risk versus theoretical vulnerability severity
• Capacity to influence and drive accountability across independent engineering squads to prioritize security remediation within their deployment cycles
• Ability to translate complex infrastructure vulnerabilities into actionable engineering instructions and high-level risk summaries for senior stakeholders
  
  

• Relevant designations such as AWS Certified Security - Specialty, Microsoft Certified: Azure Security Engineer Associate, CISSP, or specialized vulnerability management credentials
• The ability to write scripts (e.g., Python, Bash) or utilize cloud-native automation tools to streamline vulnerability triaging and alerting workflows
• Familiarity with modern threat landscapes and frameworks such as MITRE ATT&CK for Cloud
  
  

• Competitive salary
• Comprehensive personal health insurance
• Visa Sponsorship for the successful individual
• Professional development and certification support
• Subscription reimbursement relating to your role
• Opportunity to work on cutting-edge AI projects
• Monthly Employee Incentive program
• Career advancement opportunities in a rapidly growing AI company