38 Cloud Security jobs in Qatar

We are seeking a Senior Cloud Security Engineer to design, implement, and maintain secure, compliant, and resilient cloud infrastructures across AWS, Azure, and GCP. The role requires deep technical expertise in cloud security, compliance with regional and global regulations, and the ability to drive security transformation for mission-critical environments.

The candidate will work closely with architecture, DevOps, SOC, and regulatory teams to protect cloud workloads, ensure compliance, and strengthen trust in digital services.

Key Responsibilities

• Lead secure cloud architecture design and reviews for IaaS, PaaS, and SaaS workloads.

• Implement Identity and Access Management (IAM), RBAC, MFA, SSO, and secrets management.

• Build and enforce cloud security governance frameworks aligned with ISO 27001, NIST CSF, CIS benchmarks, and GCC regulatory bodies.

• Secure cloud networks (VPCs/VNets, security groups, firewalls, segmentation, VPN, private endpoints).

• Manage encryption, KMS/HSM, PKI, and secure key lifecycle management.

• Integrate security into CI/CD pipelines with DevSecOps practices (IaC scanning, SAST, DAST, container security).

• Deploy and manage cloud-native security tools (AWS GuardDuty, Azure Defender, GCP SCC).

• Threat detection and monitoring using SIEM/SOAR (Splunk, Sentinel, QRadar, Elastic).

• Conduct vulnerability management and remediation for cloud workloads, including containers and serverless.

• Lead incident response, digital forensics, and root cause analysis for cloud incidents.

• Ensure compliance with GCC and international data regulations (see section below).

• Mentor junior engineers and promote a security-first culture across teams.

• Strong expertise in AWS, Azure, and/or GCP cloud security services.

• DevSecOps & IaC Security (Terraform, CloudFormation, ARM Templates, Kubernetes, Docker security).

• Zero Trust Architecture and SASE frameworks.

• Cloud Posture Management (CSPM) and Workload Protection (CWPP) tools.

• Familiarity with multi-cloud and hybrid cloud models.

• Strong scripting & automation (Python, Bash, PowerShell).

• API security, microservices security, and serverless protection.

• Threat intelligence & SOC collaboration.

• Regulatory & Compliance Knowledge (GCC Focus)

Qualifications

• Bachelor's or Master's in Computer Science, Information Security, or equivalent.

• 6–10+ years in cybersecurity, with 4+ years focused on cloud security engineering.

• Hands-on multi-cloud experience (AWS, Azure, GCP).

• Deep understanding of network security, IAM, and encryption.

• Strong incident response and forensic skills in cloud environments.

• Certifications (highly valued in GCC):

o AWS Certified Security – Specialty

o Microsoft Certified: Azure Security Engineer Associate / Expert

o Google Professional Cloud Security Engineer

o CISSP / CCSP

o CISM / ISO 27001 Lead Implementer (bonus)

Job Type: Full-time

We are currently hiring for an exciting opportunity for the position of
Senior Project Manager Cloud Security
with one of our esteemed clients in
Qatar
.

Key Highlights of the Role:

• Job Title:

Senior Project Manager Cloud Security
- Location:
Qatar
- Job Type:
Full-Time

Job Description

Job Summary:

We are seeking a highly skilled Senior Project Manager with extensive experience in cloud security architecture to lead the validation and implementation of encryption keys. The successful candidate will work directly with the customer core team to review vendor work and support the cloud implementation program, specifically transitioning from EBS to Fusion. This role requires a strategic thinker with a strong background in project management and cloud security.

Responsibilities:

• Lead the project management efforts for the cloud implementation program, ensuring timely and successful delivery.
• Collaborate with the customer core team to validate and implement encryption keys, ensuring compliance with security standards.
• Review vendor work and provide feedback to ensure alignment with project goals and security requirements.
• Develop and maintain project plans, schedules, and budgets, ensuring all stakeholders are informed of progress and changes.
• Identify and mitigate risks associated with the project, implementing appropriate contingency plans.
• Facilitate communication between technical teams, vendors, and stakeholders to ensure project alignment and success.
• Prepare and present project status reports to senior management and stakeholders.
• Ensure adherence to best practices in cloud security architecture throughout the project lifecycle.

Mandatory Skills:

• Proven experience in cloud security architecture, with a strong understanding of encryption key management.
• Demonstrated project management skills, including experience with project planning, execution, and monitoring.
• Strong analytical and problem solving skills, with the ability to make data driven decisions.
• Excellent communication and interpersonal skills, with the ability to work effectively with diverse teams.
• Experience in managing vendor relationships and reviewing vendor deliverables.

Preferred Skills:

• Familiarity with EBS and Fusion systems.
• Certifications in project management (e.g., PMP, PRINCE2) and cloud security (e.g., CCSP, CISSP).
• Experience in agile project management methodologies.
• Knowledge of regulatory requirements related to cloud security and data protection.

Qualifications:

• Bachelor's degree in Computer Science, Information Technology, or a related field.
• 10 15 years of experience in project management, with a focus on cloud security and encryption.

Proven track record of successfully managing complex projects in a cloud environment.

About
ANA
B
ION

We are
ANA
B
ION
, an international biotech company dedicated to helping people live longer and healthier lives. Our strong portfolio spans effective, safe, and affordable solutions in Life Sciences, including innovative treatments, biosimilars, and gene therapies for oncology, autoimmune disorders, and rare diseases such as SMA and hemophilia.

About the Role

We are seeking an
Information Security Engineer
to join our growing team at
ANA
B
ION
. In this role, you will monitor and maintain our information protection systems, respond to security incidents, support users with access and data security, and contribute to projects that strengthen our detection and prevention capabilities. Success in this position requires strong analytical skills, attention to detail, and the ability to balance day-to-day operational responsibilities with proactive security improvements. We are looking for someone who goes beyond routine monitoring — bringing initiative, insight, and a strong security mindset to protect our company's data and support the efficiency of our global operations.

Responsibilities:

1. Maintain continuous monitoring and oversight of information protection tools (EDR, SIEM, DLP, vulnerability scanner) as part of daily security operations.
2. Respond to information security incidents within established timeframes, participate in their investigation and remediation, develop risk mitigation plans, document them, and track all activities in the Jira task management system.
3. Administer and maintain the performance of information security systems, including their configuration, monitoring and troubleshooting.
4. Regularly assess company services and information systems for compliance with legal and regulatory requirements in personal data protection, and address tasks aimed at raising information security awareness, including corporate newsletters and meetups.
5. Develop and timely update internal regulatory documents in the field of personal data protection and ensuring commercial secrecy regime.
6. Provide daily user support on information security matters, including secure data sharing, access rights management, and handling blocked resources.
7. Contribute to project initiatives such as implementing new protection tools, improving detection logic, and other development tasks in the field of information security.

Professional Knowledge & Skills:

• Comprehensive understanding of computer science and information systems.
• Hands-on experience with network defense technologies, firewalls, intrusion detection, and vulnerability assessment.
• Familiarity with programming/scripting languages, penetration testing, cloud security, risk analysis, and forensics.
• Up-to-date knowledge on emerging attack vectors and security solutions.
• Advanced English is required; Arabic or Russian is desirable but not mandatory.

Competencies & Soft Skills:

• Strong problem-solving, critical thinking, teamwork, time management, and the ability to remain effective under pressure.
• High ethical standards and discretion regarding sensitive data.
• Willingness to pursue continual professional development due to the evolving nature of cyber threats.

What We Offer:

• Be part of a fast-growing biotech company with access to global innovation and strategic support.
• Exposure to international cross-functional teams and career development opportunities across the ANABION global network.
• A collaborative, science-driven, and entrepreneurial work culture.
• A smart, competitive package, with bonus incentives aligned to performance.

The Information Security Engineer will focus on ensuring the organization's applications and data is secure and built according to best security standards. This role will be the subject matter expert on building secure code, application security, vulnerability testing, and providing security validation to the organization's environments.
Key Roles & Responsibilities

• Perform scheduled penetration testing of the company's applications
• Perform white, gray and black box security assessments.
• Support the organization, JVs and Subsidiaries in implementing Secure Software development lifecycle.
• Perform Mobile Services security Assessments.
• Support the organizations' environment monitoring by using available tools or help build internal tools to enable advanced threat detection and response.
• Conduct Security Vulnerability Assessments and impact assessment on company's electronic assets.
• Perform Security Assessments on ERP and other on-premise solutions.

Requirements
Skills, Knowledge and Behaviors:

• Ability to lead direct and indirect resources
• Ability to communicate technical challenges to non-technical audiences
• Ability to quantify risk and impact vectors
• Certified Ethical Hacker
• OCSP level of technical expertise
• Strong Scripting capability
• Strong ISO 27000 understanding
• Strong Application security background
• Strong Infrastructure security Background
• Strong experience in open source security tools

Qualifications & Experience

• Security Certification focusing on offensive or defensive practices
• Bachelor's degree in Information Security or Computer Engineering
• 10 + years in cybersecurity field
• System, network and/or application background

Preferred Experience

• Product development experience

Job description:

Job Purpose

The company relies more and more on advanced Digital and Information solutions to extend its operations in the most cost-effective way while keeping high standard of security to protect the assets against the ever-evolving threats.

• The Information Security Engineer - Developee has to ensure that all work is carried out in a professional manner and in compliance with NOC values, policies, specifications and DBS procedures.
• Has to  Develop technical skills in information security in the different areas (Information Protection, Security operations and architecture, Governance, Risk and Compliance,  Incident response)
• Rotate through different teams within DBS (Infrastructure and Support, Petroleum and Corporate Solutions, ERP, Data Management, Strategy Governance & Programs, Digital and S4Hana Program) to gain exposure and understanding of their functions.
• Demonstrate growth in technical and professional  competencies after completion of program

Key Accountabilities

The Information Security Engineer - Developee will be contributing to the protection of the organization's information systems by assisting in the deployment, monitoring and maintenance of security controls. He/she will support information Protection initiatives, cyber incident response activities, security operations and ensure compliance with internal policies and industry standards. Beyond the technical scope, the role requires strong collaboration skills to work effectively with IT, business and operations teams, as well as clear communication to report findings and propose solutions. The engineer will be expected to demonstrate curiosity, adaptability and a commitment to continuous learning.

Key Accountabilities Key Accountabilities Competencies Delegate Appropriately and Communicate Effectively Demonstrate Adaptability in Managing Complex Situations Demonstrate Learning Agility and Drive Innovation Develop Emotional Intelligence and Cultural Competence Develop Others and Institutionalise Knowledge Develop Talent for the Future NOC Sustainability Facilitate Collaboration and Sense of Community Improve Safety, Technical Proficiency and Results Lead By Example with NOC Values Set Purpose, Strategic Direction and Company Plan Strengthen Accountability and Continuous Improvement Think and Act in Stakeholder-Centric Ways Education

Gaduate with a bachelor's degree in computer science, Information Technology, Petroleum Engineering, or related field.

Certification Experience

No experience required. Freshers can apply

Lesha Bank is searching for the greatest talent and brightest minds to contribute to the current growth phase at our bank. We are looking for top-tier individuals who are passionate and hungry to add value from day one. Every day at Lesha is different, presenting a new challenge with the opportunity to contribute and grow. We are looking for an Information Security Officer (ISO).

Role Purpose

The Information Security Officer (ISO) will be responsible for developing, implementing, and overseeing the bank's information security strategy, policies, and controls. The role ensures that the bank's data, systems, applications, and infrastructure are safeguarded against internal and external threats while meeting local regulatory requirements (QCB, QFCRA, NCSA-Q) and international standards (ISO 27001, NIST, GDPR, PCI-DSS as relevant).

Key Responsibilities

Governance & Compliance

• Establish, maintain, and enforce the bank's information security framework, aligned with QCB, QFCRA, and local cybersecurity regulations.
• Ensure compliance with international standards (ISO 27001, NIST CSF, COBIT, PCI-DSS) and conduct regular gap analyses.
• Prepare and present security risk assessments and reports to senior management, regulators, and the Board Risk Committee.
• Design, implement, and enforce security policies and procedures to safeguard the bank's infrastructure and data.

Security Operations

• Oversee Security Operations Center (SOC) activities, incident response, and threat intelligence monitoring.
• Develop and maintain business continuity, disaster recovery, and incident response plans.
• Implement and monitor Data Loss Prevention (DLP), intrusion detection/prevention (IDS/IPS), endpoint protection, and other security tools.
• Lead investigations of security breaches, develop strategies for handling incidents, and ensure lessons learned are integrated into policies and processes.
• Stay current with the latest security systems, standards, and products to ensure optimal protection.
• Regularly evaluate the effectiveness of security measures and update them against emerging threats and industry best practices.
• Conduct regular staff training on security awareness, best practices, and incident procedures.
• Collaborate with IT and business management to continuously improve security controls and culture.

Risk Management

• Conduct enterprise-wide risk assessments on systems, applications, vendors, and third-party service providers.
• Identify vulnerabilities and ensure timely remediation through patch management and secure configurations.
• Work with IT and business units to integrate security into new product initiatives.

Vendor & Technology Oversight

• Evaluate and approve technology vendors, outsourcing partners, and cloud solutions for compliance with security standards.
• Manage penetration tests, vulnerability assessments, and external audits.

Requirements:

• Bachelor's degree in information security, Computer Science, or related field. Master's degree preferred.
• Professional certifications: CISSP or CISM required; CISA and ISO 27001 Lead Implementer preferred.
• Cloud security certifications (e.g., CCSP, AWS Security) are a plus.
• 8–12 years in information security, with at least 5 years in the financial-services sector.
• Strong background in banking systems, digital channels, payment systems, and regulatory environments.
• Proven experience engaging with regulators (QCB, QFCRA, CMA, or equivalent).
• Proven experience in implementing SEIM Solutions, managing SOC Team.
• Expertise in cybersecurity frameworks, network security, cryptography, and identity & access management.
• Strong risk management and analytical skills.
• Excellent communication and stakeholder-management skills, capable of engaging effectively with regulators, auditors, and the Board.
• Ability to influence across departments, build a culture of security, and lead change initiatives without direct authority

Our company is currently in need of an Information Security Specialist to join our team with the following skills and qualifications:

· Bachelor's degree in Information Technology or Cyber Security

· Professional Certifications Required + CompTIA Security: or CEH.

· Desired Advanced Certifications: CISSP or CISM

· At least 5 years of practical experience in the field of information security and cyber security.

· Experience working with systems Firewalls, DLP, EDR, SIEM

· Proficiency in Arabic and English (writing and speaking)

Note: Candidate must be in Qatar with transferable work visa

Basic Duties and Responsibilities:

· Develop and implement the center's cybersecurity policies and procedures.

· Managing security systems such as IDS/IPS, Firewalls, and Endpoint Protection (EDR) software

· Monitor security activities, analyze alerts, and respond to incidents

· Conduct periodic assessment of risks and security vulnerabilities

· Manage and monitor access rights and protect sensitive accounts

· Preparing monthly cybersecurity status reports (KPIs).

· Participate in Business Continuity Plans and Disaster Recovery Plans (BCP/DR).

· Educating employees about best security practices (periodic training)

Please direct copy of your latest CV to and write the position you are eligible for in the subject line.

Job Type: Full-time

Pay: QAR4, QAR5,000.00 per month

About Us:

Forvis Mazars LLC is a firm registered under Qatar Financial Center in Qatar with License Registration No established on 26 February 2019. However, we have been operating in the Qatari market for 40+ years under our sister entity, Mazars Consultants Auditors and Partners, established under Ministry of Commerce and Industry.

We have been the firm of choice by the local market with a strong foothold in the State by being in the industry for more than 40 years.

Forvis Mazars LLC is a fully Integrated partner with Forvis Mazars group with access to all global resources and expertise.

Forvis Mazars in Qatar has been operating and serving the Qatari market with a wide range of experience in auditing, taxation, consulting and financial advisory services. The partners and professional team have international and diversified experience and have a thorough knowledge of the market.

Responsibilities:

• Develop and implement cybersecurity strategies and controls.

• Administer firewalls, IDS/IPS, EDR, and DLP systems.

• Conduct vulnerability assessments and incident monitoring.

• Manage identity and access controls.

• Contribute to Business Continuity (BCP) and Disaster Recovery (DR) planning.

Requirements:

• Bachelor's degree in IT/Cybersecurity, CompTIA Security+ or CEH, CISM/CISSP preferred,

• 5+ years' experience.

• Advanced communication skills

• Leadership skill

• Fluent in English and Arabic (Speaking, reading and writing)

Ready to join with short notice

Benefits:

Attractive salary and benefits.

Qualifications:

• Bachelor's degree in Information Technology or Cybersecurity.

• Professional certifications such as CompTIA Security+ or CEH.

• Additional certifications such as CISSP or CISM are an advantage.

• Minimum of three years' experience in Information Security or

Cybersecurity.

• Experience with security tools such as Firewalls, DLP, EDR, and SIEM.

• Proficiency in Arabic and English (writing and speaking).

Responsibilities:

• Develop and implement cybersecurity policies and procedures for the center.

• Manage security systems such as Firewalls, IDS/IPS, and endpoint protection systems

(EDR).

• Monitor security systems, analyze alerts, and respond to incidents and threats.

• Conduct periodic assessments of risks and technical vulnerabilities.

• Manage user access permissions and protect sensitive accounts.

• Prepare periodic reports on the security status and key performance indicators (KPIs).

• Participate in business continuity and disaster recovery planning (BCP/DR).

• Raise employee awareness of best cybersecurity practices (through periodic training).

Job Type: Full-time