42 Cism jobs in Qatar

Job Description

We are currently looking Information Security Manager for our Qatar operations with the following terms & conditions.

Education & Experience Requirements:

• Bachelor's degree preferably in computer science, computer engineering or related subjects. Master's degree
• preferred.
• At least 8 years of relevant experience, preferably within a highly rated international bank or large corporate in an
• information security engineering capacity.
• Professional certification such as CISSP, CISM, CISA is mandatory
• Security engineering certifications and qualifications in Microsoft operating systems (such as Azure, MCSA,
• MCSE, et al) or Linux (such as RHCP, et al) are mandatory.

Required Special Skills:

• Excellent understanding of Information security technologies including firewalls, proxies, web application firewalls,
• IDS/IPS, ATP and sandbox solutions, EDR, vulnerability scanners, DLP, data classification tools, PAM, IAM,
• DDOS mitigation systems and more
• Good understanding of infrastructure and application security controls.
• Ability to communicate information security-related concepts to a broad spectrum of technical and non-technical staff.
• Risk Management skills (risk identification, risk assessment, risk mitigation)
• Maintain an understanding of all pertinent regulations as well as best practices pertaining to information security.
• Self-motivated, eye for detail.
• Ability to persuade others.
• Flexible team player and able to work and deliver under pressure.
• Ability to inspire and motivate others to gain commitment.

Joining time frame: 2 weeks (maximum 1 month)

Nair Systems is currently looking Senior Analyst Security Operations Centre for our Qatar operations with the following terms & conditions.

Education/Experience Requirements: - -

• Bachelor Degree preferably in computer science, computer engineering or related subjects.

• Professional certification such as CEH, CISSP, CISM, CISA, and CySA+ is mandatory

• SIEM certification and any vendor security certifications related to network, application,

• systems security would be considered as a plus -

• Minimum of 6 years' experience in a major bank, Large Corporate or MSSP in a similar L3

• SOC analyst role

• Proven work experience in the UK, US, or Europe

Required Special Skills:

• Maintain keen understanding of evolving Internet threats to ensure the security of Bank network

• Write technical articles for internal knowledge base

• Participate in knowledge sharing with other analysts and develop solutions efficiently

• Coordinate or participate in individual or team projects

• Strong understanding of security architectures and devices

• Strong understanding of threat intelligence consumption and management

• Strong understanding of root causes of malware infections and proactive mitigation

• Ability to mentor and coach less experienced security analysts. Providing techniques and strategies to dig deeper into investigations

• Ability to communicate IT, networking, and security concepts to personnel at all levels of experience and responsibility

• Provide creative problem solving techniques, and the desire to create and build new processes

• Strong time management and multitasking skills as well as attention to detail

• Experience working in fast paced environments, and ability manage workload even during times of stress or escalated activity

• Comfortable with impromptu tasking and loosely defined requirements

• Excellent oral and written communications skills

Joining time frame: 2 weeks (maximum 1 month)

Should you be interested in this opportunity, please send your latest resume in MS Word format at the earliest

Nair Systems
is currently looking
Senior Manager, Security Technology Engineering
for our
Qatar
operations with the following terms & conditions.

Education & Experience Requirements:

·   Bachelor's degree preferably in computer science, computer engineering or related subjects. Master's degree

·   preferred.

·   At least 8 years of relevant experience, preferably within a highly rated international bank or large corporate in an

·   information security engineering capacity.

·   Professional certification such as CISSP, CISM, CISA is mandatory

·   Security engineering certifications and qualifications in Microsoft operating systems (such as Azure, MCSA, MCSE, et al) or Linux (such as RHCP, et al) are mandatory.

Required Special Skills:

·   Excellent understanding of Information security technologies including firewalls, proxies, web application firewalls,

·   IDS/IPS, ATP and sandbox solutions, EDR, vulnerability scanners, DLP, data classification tools, PAM, IAM,

·   DDOS mitigation systems and more

·   Good understanding of infrastructure and application security controls.

·   Ability to communicate information security-related concepts to a broad spectrum of technical and non-technical staff.

·   Risk Management skills (risk identification, risk assessment, risk mitigation)

·   Maintain an understanding of all pertinent regulations as well as best practices pertaining to information security.

·   Self-motivated, eye for detail.

·   Ability to persuade others.

·   Flexible team player and able to work and deliver under pressure.

·   Ability to inspire and motivate others to gain commitment.

Should you be interested in this opportunity, please send your latest resume in MS Word format at the earliest

About
ANA
B
ION

We are
ANA
B
ION
, an international biotech company dedicated to helping people live longer and healthier lives. Our strong portfolio spans effective, safe, and affordable solutions in Life Sciences, including innovative treatments, biosimilars, and gene therapies for oncology, autoimmune disorders, and rare diseases such as SMA and hemophilia.

About the Role

We are seeking an
Information Security Engineer
to join our growing team at
ANA
B
ION
. In this role, you will monitor and maintain our information protection systems, respond to security incidents, support users with access and data security, and contribute to projects that strengthen our detection and prevention capabilities. Success in this position requires strong analytical skills, attention to detail, and the ability to balance day-to-day operational responsibilities with proactive security improvements. We are looking for someone who goes beyond routine monitoring — bringing initiative, insight, and a strong security mindset to protect our company's data and support the efficiency of our global operations.

Responsibilities:

1. Maintain continuous monitoring and oversight of information protection tools (EDR, SIEM, DLP, vulnerability scanner) as part of daily security operations.
2. Respond to information security incidents within established timeframes, participate in their investigation and remediation, develop risk mitigation plans, document them, and track all activities in the Jira task management system.
3. Administer and maintain the performance of information security systems, including their configuration, monitoring and troubleshooting.
4. Regularly assess company services and information systems for compliance with legal and regulatory requirements in personal data protection, and address tasks aimed at raising information security awareness, including corporate newsletters and meetups.
5. Develop and timely update internal regulatory documents in the field of personal data protection and ensuring commercial secrecy regime.
6. Provide daily user support on information security matters, including secure data sharing, access rights management, and handling blocked resources.
7. Contribute to project initiatives such as implementing new protection tools, improving detection logic, and other development tasks in the field of information security.

Professional Knowledge & Skills:

• Comprehensive understanding of computer science and information systems.
• Hands-on experience with network defense technologies, firewalls, intrusion detection, and vulnerability assessment.
• Familiarity with programming/scripting languages, penetration testing, cloud security, risk analysis, and forensics.
• Up-to-date knowledge on emerging attack vectors and security solutions.
• Advanced English is required; Arabic or Russian is desirable but not mandatory.

Competencies & Soft Skills:

• Strong problem-solving, critical thinking, teamwork, time management, and the ability to remain effective under pressure.
• High ethical standards and discretion regarding sensitive data.
• Willingness to pursue continual professional development due to the evolving nature of cyber threats.

What We Offer:

• Be part of a fast-growing biotech company with access to global innovation and strategic support.
• Exposure to international cross-functional teams and career development opportunities across the ANABION global network.
• A collaborative, science-driven, and entrepreneurial work culture.
• A smart, competitive package, with bonus incentives aligned to performance.

Lesha Bank is searching for the greatest talent and brightest minds to contribute to the current growth phase at our bank. We are looking for top-tier individuals who are passionate and hungry to add value from day one. Every day at Lesha is different, presenting a new challenge with the opportunity to contribute and grow. We are looking for an Information Security Officer (ISO).

Role Purpose

The Information Security Officer (ISO) will be responsible for developing, implementing, and overseeing the bank's information security strategy, policies, and controls. The role ensures that the bank's data, systems, applications, and infrastructure are safeguarded against internal and external threats while meeting local regulatory requirements (QCB, QFCRA, NCSA-Q) and international standards (ISO 27001, NIST, GDPR, PCI-DSS as relevant).

Key Responsibilities

Governance & Compliance

• Establish, maintain, and enforce the bank's information security framework, aligned with QCB, QFCRA, and local cybersecurity regulations.
• Ensure compliance with international standards (ISO 27001, NIST CSF, COBIT, PCI-DSS) and conduct regular gap analyses.
• Prepare and present security risk assessments and reports to senior management, regulators, and the Board Risk Committee.
• Design, implement, and enforce security policies and procedures to safeguard the bank's infrastructure and data.

Security Operations

• Oversee Security Operations Center (SOC) activities, incident response, and threat intelligence monitoring.
• Develop and maintain business continuity, disaster recovery, and incident response plans.
• Implement and monitor Data Loss Prevention (DLP), intrusion detection/prevention (IDS/IPS), endpoint protection, and other security tools.
• Lead investigations of security breaches, develop strategies for handling incidents, and ensure lessons learned are integrated into policies and processes.
• Stay current with the latest security systems, standards, and products to ensure optimal protection.
• Regularly evaluate the effectiveness of security measures and update them against emerging threats and industry best practices.
• Conduct regular staff training on security awareness, best practices, and incident procedures.
• Collaborate with IT and business management to continuously improve security controls and culture.

Risk Management

• Conduct enterprise-wide risk assessments on systems, applications, vendors, and third-party service providers.
• Identify vulnerabilities and ensure timely remediation through patch management and secure configurations.
• Work with IT and business units to integrate security into new product initiatives.

Vendor & Technology Oversight

• Evaluate and approve technology vendors, outsourcing partners, and cloud solutions for compliance with security standards.
• Manage penetration tests, vulnerability assessments, and external audits.

Requirements:

• Bachelor's degree in information security, Computer Science, or related field. Master's degree preferred.
• Professional certifications: CISSP or CISM required; CISA and ISO 27001 Lead Implementer preferred.
• Cloud security certifications (e.g., CCSP, AWS Security) are a plus.
• 8–12 years in information security, with at least 5 years in the financial-services sector.
• Strong background in banking systems, digital channels, payment systems, and regulatory environments.
• Proven experience engaging with regulators (QCB, QFCRA, CMA, or equivalent).
• Proven experience in implementing SEIM Solutions, managing SOC Team.
• Expertise in cybersecurity frameworks, network security, cryptography, and identity & access management.
• Strong risk management and analytical skills.
• Excellent communication and stakeholder-management skills, capable of engaging effectively with regulators, auditors, and the Board.
• Ability to influence across departments, build a culture of security, and lead change initiatives without direct authority

The Information Security Engineer will focus on ensuring the organization's applications and data is secure and built according to best security standards. This role will be the subject matter expert on building secure code, application security, vulnerability testing, and providing security validation to the organization's environments.
Key Roles & Responsibilities

• Perform scheduled penetration testing of the company's applications
• Perform white, gray and black box security assessments.
• Support the organization, JVs and Subsidiaries in implementing Secure Software development lifecycle.
• Perform Mobile Services security Assessments.
• Support the organizations' environment monitoring by using available tools or help build internal tools to enable advanced threat detection and response.
• Conduct Security Vulnerability Assessments and impact assessment on company's electronic assets.
• Perform Security Assessments on ERP and other on-premise solutions.

Requirements
Skills, Knowledge and Behaviors:

• Ability to lead direct and indirect resources
• Ability to communicate technical challenges to non-technical audiences
• Ability to quantify risk and impact vectors
• Certified Ethical Hacker
• OCSP level of technical expertise
• Strong Scripting capability
• Strong ISO 27000 understanding
• Strong Application security background
• Strong Infrastructure security Background
• Strong experience in open source security tools

Qualifications & Experience

• Security Certification focusing on offensive or defensive practices
• Bachelor's degree in Information Security or Computer Engineering
• 10 + years in cybersecurity field
• System, network and/or application background

Preferred Experience

• Product development experience

Our company is currently in need of an Information Security Specialist to join our team with the following skills and qualifications:

· Bachelor's degree in Information Technology or Cyber Security

· Professional Certifications Required + CompTIA Security: or CEH.

· Desired Advanced Certifications: CISSP or CISM

· At least 5 years of practical experience in the field of information security and cyber security.

· Experience working with systems Firewalls, DLP, EDR, SIEM

· Proficiency in Arabic and English (writing and speaking)

Note: Candidate must be in Qatar with transferable work visa

Basic Duties and Responsibilities:

· Develop and implement the center's cybersecurity policies and procedures.

· Managing security systems such as IDS/IPS, Firewalls, and Endpoint Protection (EDR) software

· Monitor security activities, analyze alerts, and respond to incidents

· Conduct periodic assessment of risks and security vulnerabilities

· Manage and monitor access rights and protect sensitive accounts

· Preparing monthly cybersecurity status reports (KPIs).

· Participate in Business Continuity Plans and Disaster Recovery Plans (BCP/DR).

· Educating employees about best security practices (periodic training)

Please direct copy of your latest CV to and write the position you are eligible for in the subject line.

Job Type: Full-time

Pay: QAR4, QAR5,000.00 per month

About Us:

Forvis Mazars LLC is a firm registered under Qatar Financial Center in Qatar with License Registration No established on 26 February 2019. However, we have been operating in the Qatari market for 40+ years under our sister entity, Mazars Consultants Auditors and Partners, established under Ministry of Commerce and Industry.

We have been the firm of choice by the local market with a strong foothold in the State by being in the industry for more than 40 years.

Forvis Mazars LLC is a fully Integrated partner with Forvis Mazars group with access to all global resources and expertise.

Forvis Mazars in Qatar has been operating and serving the Qatari market with a wide range of experience in auditing, taxation, consulting and financial advisory services. The partners and professional team have international and diversified experience and have a thorough knowledge of the market.

Responsibilities:

• Develop and implement cybersecurity strategies and controls.

• Administer firewalls, IDS/IPS, EDR, and DLP systems.

• Conduct vulnerability assessments and incident monitoring.

• Manage identity and access controls.

• Contribute to Business Continuity (BCP) and Disaster Recovery (DR) planning.

Requirements:

• Bachelor's degree in IT/Cybersecurity, CompTIA Security+ or CEH, CISM/CISSP preferred,

• 5+ years' experience.

• Advanced communication skills

• Leadership skill

• Fluent in English and Arabic (Speaking, reading and writing)

Ready to join with short notice

Benefits:

Attractive salary and benefits.

Qualifications:

• Bachelor's degree in Information Technology or Cybersecurity.

• Professional certifications such as CompTIA Security+ or CEH.

• Additional certifications such as CISSP or CISM are an advantage.

• Minimum of three years' experience in Information Security or

Cybersecurity.

• Experience with security tools such as Firewalls, DLP, EDR, and SIEM.

• Proficiency in Arabic and English (writing and speaking).

Responsibilities:

• Develop and implement cybersecurity policies and procedures for the center.

• Manage security systems such as Firewalls, IDS/IPS, and endpoint protection systems

(EDR).

• Monitor security systems, analyze alerts, and respond to incidents and threats.

• Conduct periodic assessments of risks and technical vulnerabilities.

• Manage user access permissions and protect sensitive accounts.

• Prepare periodic reports on the security status and key performance indicators (KPIs).

• Participate in business continuity and disaster recovery planning (BCP/DR).

• Raise employee awareness of best cybersecurity practices (through periodic training).

Job Type: Full-time