Back to jobs
New

Security/Sovereign Cloud Architect

Saudi Arabia

Xebia is a global AI-first, digital transformation, and engineering partner. With over 25 years of experience and a team of 5,000 professionals across 16 countries, we help organizations design and build scalable products, platforms, and data-driven solutions. 

We specialize in Artificial Intelligence, Data and Cloud, Intelligent Automation, and Digital Products, combining deep technical expertise with a strong focus on engineering excellence and a people-first culture.  

In the CEE region, we’re a team of nearly 1,000 experts delivering modern applications, data platforms, and AI solutions for clients such as McLaren, Aviva, Deloitte, Spotify, Disney, ING, UPS, Tesco, Truecaller, AllSaints, Volotea, Schmitz Cargobull, Allegro, InPost, and many, many more. We work with leading technologies including AWS, Azure, GCP, Databricks, and Snowflake, and combine strong engineering culture with a consulting mindset and a continuous focus on growth and knowledge sharing. 

 



You will be:

  • Defining and governing the programme's security architecture, including Zero Trust, IAM, network segmentation, and cryptographic controls.
  • Designing sovereign cloud deployment models that meet national security, data residency, and compliance requirements.
  • Leading security architecture reviews, threat modelling sessions, and security governance activities.
  • Establishing security standards, architecture patterns, and guardrails across all programme workstreams.
  • Advising on information classification, cross-domain data flows, and secure solution design.
  • Working closely with government security authorities, auditors, and client information assurance teams.
  • Assessing third-party vendor security posture and reviewing security documentation.
  • Providing security approval during Architecture Review Boards and programme stage gates.

Your profile:

  • 7–12 years of experience in cybersecurity or security architecture within large-scale programmes.
  • Experience designing security architectures for government, defence, or classified environments.
  • Strong expertise in Zero Trust Architecture and identity-centric security models.
  • Hands-on knowledge of sovereign cloud platforms, data residency, encryption, BYOK/HYOK, and HSM integration.
  • Strong background in IAM, federation technologies, RBAC, ABAC, PAM, and secrets management.
  • Familiarity with cybersecurity frameworks including ISO 27001, NIST SP 800-53, NCSC CAF, or regional equivalents.
  • Experience producing security architecture documentation, threat models, and risk assessments.
  • Excellent communication skills with the ability to influence both technical and executive stakeholders.

Nice to have:

  • Experience with Saudi NCA Essential Cybersecurity Controls or NDMO requirements.
  • Knowledge of secure enclave technologies, Trusted Execution Environments (TEE), or enterprise PKI.
  • Experience with defence-grade cryptographic standards such as FIPS 140-2/3.
  • Active or recent SC, DV, or NATO SECRET clearance.
  • GCC or KSA government security programme experience.
  • CISSP, CCSP, AWS Security Specialty, Azure Security Engineer, SABSA, or ISO 27001 certifications.

 

Recruitment Process:

CV review – HR call – InterviewClient Interview – Decision

 

Apply for this job

*

indicates a required field

Phone
Resume/CV*

Accepted file types: pdf, doc, docx, txt, rtf

Cover Letter

Accepted file types: pdf, doc, docx, txt, rtf


Select...
Select...
Select...
Select...
Select...
Select...
Select...