47 Cybersecurity Analyst jobs in Doha

Detailed Roles & Responsibilities

Manage system patches, Anti-Virus updates, and perform backups/restoration for installed OT assets.

Review firewall and security logs to identify threats, anomalies, intrusions, or abnormal connection behavior; investigate, report, and escalate issues as required.

Troubleshoot network performance and network security issues; analyze network traffic; respond to problem tickets; resolve service requests.

Participate in incident response, computer forensics, data preservation, and investigations related to breaches/unauthorized access.

Support regular and special reporting and analysis, including vulnerabilities, risks, control deficiencies, remediation strategies, and performance metrics.

Configure and test cybersecurity technologies; troubleshoot and resolve cybersecurity/data issues.

Perform hardware/software upgrades; document configurations and system specifications.

Maintain configuration records and documentation, including incident response procedures, security operations, and maintenance standards.

Provide technical security support to users; assist with evaluation and implementation of security tools, systems, and processes.

Review external threat intelligence feeds; issue alerts; coordinate patching of high-risk vulnerabilities.

Maintain, monitor, and modify security tools, systems, and processes per policies and standards.

Support implementation of key service platforms (on-premises, physical, and virtual cloud environments).

Promote cybersecurity awareness across the organization.

Assist with internal and external audit and compliance requirements.

This is a hands-on role involving considerable field work in a 24/7 petrochemical manufacturing environment.

Experience Required

Minimum 5+ years’ experience within Oil & Gas or Chemical facility with focus in ICS/OT Cybersecurity.

Preferred: 7+ years’ experience within Oil & Gas or Chemical facility with focus in ICS/OT Cybersecurity.

Preferred Skills Required

CCNA/Network+ certified.

CISM/IEC-62443 certified.

CEH/CompTIA Security+/CySA+ certified.

At least one recognized cybersecurity certification (minimum desirable).

Experience with bare metal hypervisor (MS Hyper-V, HCI).

Strong communication and interpersonal skills.

Educational Qualification Required

Graduate Degree in Engineering, Computer Science, IT, Electrical, Instrument, Automation, Mechatronics, Cybersecurity, Electronics, or equivalent.

OR 3 Years Diploma in above disciplines with 10+ years’ experience in Petrochemicals plant

Specific Industry Experience Required

Oil & Gas or Chemical manufacturing environments.

#J-18808-Ljbffr

Role Purpose

Spearhead the development and execution of robust information security frameworks, emphasizing protection during mega sports events and non-event periods. Lead initiatives and deployment of the technologies to secure sensitive data and manage risks across various domains.

Responsibilities

• Security Operations Management
  • Oversee daily SOC activities, including SIEM/SOAR monitoring, incident detection, and response.
  • Lead triage and remediation of high-severity incidents.
  • Ensure 24/7 monitoring coverage and SLA compliance.
  • Drive proactive threat hunting, vulnerability management and intelligence-led operations.
• SOC Architecture and Design
  • Lead the design, architecture, and optimization of SOC capabilities.
  • Define SOC workflows, playbooks, escalation procedures, and KPIs.
  • Ensure scalability and integration of IT and OT security monitoring.
  • Continuously enhance SOC maturity based on industry standards (NIST, ISO 27001, MITRE ATT&CK).
• Risk and Incident Management
  • Oversee incident investigations, forensic analysis, and root cause identification.
  • Ensure lessons learned are documented and integrated into processes.
  • Maintain crisis management readiness and coordinate executive updates.
  • Align incident handling with regulatory and compliance requirements.
• Procurement and Vendor Management
  • Lead RFP preparation, vendor evaluation, and procurement of SOC and cybersecurity tools.
  • Manage vendor relationships and service-level reviews.
  • Ensure security solutions meet compliance with Qatar-approved frameworks.
  • Conduct cost-benefit and effectiveness analysis of deployed tools.
• OT Security Operations
  • Integrate IT and OT monitoring within SOC environment.
  • Ensure security of ICS/SCADA systems and critical infrastructure.
  • Implement and oversee OT segmentation strategies.
  • Monitor emerging threats targeting OT environments and coordinate mitigations.
• Compliance and Governance
  • Ensure compliance with Qatar’s NCSA framework and international standards.
  • Develop, enforce, and update security policies and access controls.
  • Conduct audits and assessments to measure security posture.
  • Report compliance gaps and oversee remediation.
• Client & Stakeholder
  • Act as the primary liaison with internal stakeholders, regulators, and external partners.
  • Deliver clear and actionable reports to senior leadership.
  • Provide consultations to application developers, network engineers, and OT teams.
  • Represent the organization during audits and compliance reviews.
• Team Leadership and Development
  • Manage and mentor SOC analysts, incident responders, and engineers.
  • Define team structure, roles, and performance KPIs.
  • Deliver training and awareness programs to enhance capabilities.
  • Foster a culture of continuous improvement and knowledge sharing.
• Technology and Continuous Improvement
  • Oversee deployment, maintenance, and optimization of SIEM, SOAR, EDR, firewalls, IDS/IPS, and sandboxing solutions.
  • Drive automation and orchestration for efficiency gains.
  • Evaluate emerging technologies and recommend adoption.
  • Continuously refine processes to strengthen detection and response.

Skills

• Proven expertise in SOC architecture, design, and optimization.
• Experience in RFP preparation, vendor evaluation, and procurement of cybersecurity solutions.
• Strong background in incident response, threat intelligence, and risk management.
• Knowledge of IT and OT security integration, including ICS/SCADA environments and segmentation strategies.
• Familiarity with compliance and governance frameworks such as Qatar NCSA, ISO 27001, NIST, and MITRE ATT&CK.
• Demonstrated ability to manage cross-functional teams, crisis response, and executive-level reporting.

Certifications

• CISSP (Certified Information Systems Security Professional)
• Or CISM (Certified Information Security Manager)
• Or CRISC (Certified in Risk and Information Systems Control)
• ISO/IEC 27001 Lead Implementer or Lead Auditor.

#J-18808-Ljbffr

Job Summary (List Format) :

Lead the development and execution of information security frameworks focusing on protection during mega sports events and non-event periods.

Oversee daily Security Operations Center (SOC) activities including monitoring incident detection triage and response.

Drive proactive threat hunting vulnerability management and intelligence‑led security operations.

Design architect and optimize SOC capabilities defining workflows playbooks escalation procedures and KPIs.

Ensure integration and scalability of IT and OT security monitoring continuously enhancing SOC maturity.

Manage incident investigations forensic analysis crisis management and ensure compliance with regulatory requirements.

Lead procurement activities: RFP preparation vendor evaluation tool selection and vendor management.

Oversee IT and OT security integration securing ICS / SCADA systems and implementing segmentation strategies.

Ensure compliance with Qatar NCSA and international standards (ISO 27001, NIST, MITRE ATT&CK); develop and enforce security policies and controls.

Act as primary liaison with stakeholders regulators and partners; provide leadership reports consultations and represent the organization in audits.

Mentor and manage SOC teams define team structure and KPIs deliver training and promote continuous improvement.

Oversee deployment maintenance and optimization of security technologies (SIEM, SOAR, EDR, firewalls, IDS / IPS).

Drive automation evaluate emerging technologies and refine security detection and response processes.

Ensure all activities meet compliance governance and business objectives contributing to overall organizational security posture.

#J-18808-Ljbffr

Role Purpose

Spearhead the development and execution of robust information security frameworks, emphasizing protection during mega sports events and non-event periods. Lead initiatives and deployment of the technologies to secure sensitive data and manage risks across various domains. Responsibilities

Security Operations Management

Oversee daily SOC activities, including SIEM/SOAR monitoring, incident detection, and response. Lead triage and remediation of high-severity incidents. Ensure 24/7 monitoring coverage and SLA compliance. Drive proactive threat hunting, vulnerability management and intelligence-led operations.

SOC Architecture and Design

Lead the design, architecture, and optimization of SOC capabilities. Define SOC workflows, playbooks, escalation procedures, and KPIs. Ensure scalability and integration of IT and OT security monitoring. Continuously enhance SOC maturity based on industry standards (NIST, ISO 27001, MITRE ATT&CK).

Risk and Incident Management

Oversee incident investigations, forensic analysis, and root cause identification. Ensure lessons learned are documented and integrated into processes. Maintain crisis management readiness and coordinate executive updates. Align incident handling with regulatory and compliance requirements.

Procurement and Vendor Management

Lead RFP preparation, vendor evaluation, and procurement of SOC and cybersecurity tools. Manage vendor relationships and service-level reviews. Ensure security solutions meet compliance with Qatar-approved frameworks. Conduct cost-benefit and effectiveness analysis of deployed tools.

OT Security Operations

Integrate IT and OT monitoring within SOC environment. Ensure security of ICS/SCADA systems and critical infrastructure. Implement and oversee OT segmentation strategies. Monitor emerging threats targeting OT environments and coordinate mitigations.

Compliance and Governance

Ensure compliance with Qatar’s NCSA framework and international standards. Develop, enforce, and update security policies and access controls. Conduct audits and assessments to measure security posture. Report compliance gaps and oversee remediation.

Client & Stakeholder

Act as the primary liaison with internal stakeholders, regulators, and external partners. Deliver clear and actionable reports to senior leadership. Provide consultations to application developers, network engineers, and OT teams. Represent the organization during audits and compliance reviews.

Team Leadership and Development

Manage and mentor SOC analysts, incident responders, and engineers. Define team structure, roles, and performance KPIs. Deliver training and awareness programs to enhance capabilities. Foster a culture of continuous improvement and knowledge sharing.

Technology and Continuous Improvement

Oversee deployment, maintenance, and optimization of SIEM, SOAR, EDR, firewalls, IDS/IPS, and sandboxing solutions. Drive automation and orchestration for efficiency gains. Evaluate emerging technologies and recommend adoption. Continuously refine processes to strengthen detection and response.

Skills

Proven expertise in SOC architecture, design, and optimization. Experience in RFP preparation, vendor evaluation, and procurement of cybersecurity solutions. Strong background in incident response, threat intelligence, and risk management. Knowledge of IT and OT security integration, including ICS/SCADA environments and segmentation strategies. Familiarity with compliance and governance frameworks such as Qatar NCSA, ISO 27001, NIST, and MITRE ATT&CK. Demonstrated ability to manage cross-functional teams, crisis response, and executive-level reporting. Certifications

CISSP (Certified Information Systems Security Professional) Or CISM (Certified Information Security Manager) Or CRISC (Certified in Risk and Information Systems Control) ISO/IEC 27001 Lead Implementer or Lead Auditor.

#J-18808-Ljbffr

Join to apply for the Head of Security Operations role at Canonical

Continue with Google Continue with Google

Join to apply for the Head of Security Operations role at Canonical

This global leadership role in cyber security is to manage the Security Operations (SecOps) team responsible for design, implementation and evolution of Canonical security practices, techniques, tools, systems and policies. The team is the primary owner of strategy and practices that determine how Canonical secures its data, internal infrastructure and build processes. They are responsible for assuring the security and integrity of our own infrastructure and product deployments. They design and implement technical security controls that ensure security threats are automatically identified, contained and remediated. The team will also contribute ideas and requirements for Canonical product security, improving the resilience and robustness of all Ubuntu customers and users subject to cyber attack.

As a leader on cyber security in the company, the SecOps team manager will collaborate with our Organisational Learning and Development team to develop playbooks and facilitate SecOps training across Canonical. They will operate in a wider security organisation, run a high performing security team and improve Canonical's security posture. They will lead initiatives to integrate the team's insights into Canonical's broader software development process.

While this is a management position, we expect managers to be expert practitioners, able to lead by example, contribute at the highest level, and assess work based on their own professional experience and skill. Candidates should have deep, hands-on expertise with a range of open source and proprietary security tooling and practices, which they can integrate into a holistic next generation security solution across the breadth of Canonical's interests.

The SecOps team's mission is not only to secure Canonical, but also to contribute to the security of the wider open source ecosystem. They might share knowledge through public presentations and industry events, and share threat intelligence with the wider community or represent Canonical in sector-specific governance bodies.

This role reports to the CISO.

What you will do in this role:

• Hire and mentor a team of outstanding technical security professionals
• Define Canonical's SecOps security standards and playbooks
• Own and drive the architecture and design of the SOC
• Analyse and improve Canonical's security architecture
• Evaluate, select and implement new security tools and practices
• Identify, contain and guide the remediation of security threats and cyber attacks
• Grow the presence and thought leadership of Canonical SecOps practice
• Contribute to open source threat intelligence initiatives
• Drive threat modelling, table top exercises and other SecOps practices across Engineering, IS and Canonical
• Develop Canonical SecOps learning and development materials
• Publish blog posts, whitepapers and conference presentations
• Identify, implement and track SecOps KPIs
• Plan and deliver SecOps work in the framework of Canonical's agile engineering practice
• Work with Security leadership to present information and influence change
  
  

What we are looking for

• Proven track record of mitigating with advanced threat actors and nation state threats
• Expert technical understanding of SOCs from the ground up
• In depth knowledge of SOC architecture and design including strategies for logging, firewalls, network segmentation, honeypots etc
• Someone who understands how the SOC works not just how to use it
• Expert in Linux security
• Ability to define, implement, automate and measure effective incident response playbooks
• Knowledge of security architecture and market-leading security tools
• Experience contributing to, and consuming, threat intelligence feeds
• Experience in security risk management frameworks such as NIST CSF
• An exceptional academic track record from both high school and university
• Undergraduate degree in Computer Science or STEM, or a compelling narrative about your alternative path
• Drive and a track record of going above-and-beyond expectations
• Deep personal motivation to be at the forefront of technology security
• Leadership and management ability
• Excellent business English writing and presentation skills
• Confidence to report security performance metrics with accountability for accuracy and completeness
  
  

Optional things we value

• Experience in offensive or defensive security teams with hands-on ability
• Experience with open source security tools
• Experience with security standards such as ISO 27001
• Experience with security posture management of corporate endpoitns

Seniority level

• Seniority level Director

Employment type

• Employment type Full-time

Job function

• Job function Other, Information Technology, and Management
• Industries Software Development

Referrals increase your chances of interviewing at Canonical by 2x

Get notified about new Head of Security jobs in Doha, Doha, Qatar .

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

Join to apply for the

Head of Security Operations

role at

Canonical Continue with Google Continue with Google Join to apply for the

Head of Security Operations

role at

Canonical This global leadership role in cyber security is to manage the Security Operations (SecOps) team responsible for design, implementation and evolution of Canonical security practices, techniques, tools, systems and policies. The team is the primary owner of strategy and practices that determine how Canonical secures its data, internal infrastructure and build processes. They are responsible for assuring the security and integrity of our own infrastructure and product deployments. They design and implement technical security controls that ensure security threats are automatically identified, contained and remediated. The team will also contribute ideas and requirements for Canonical product security, improving the resilience and robustness of all Ubuntu customers and users subject to cyber attack.

As a leader on cyber security in the company, the SecOps team manager will collaborate with our Organisational Learning and Development team to develop playbooks and facilitate SecOps training across Canonical. They will operate in a wider security organisation, run a high performing security team and improve Canonical's security posture. They will lead initiatives to integrate the team's insights into Canonical's broader software development process.

While this is a management position, we expect managers to be expert practitioners, able to lead by example, contribute at the highest level, and assess work based on their own professional experience and skill. Candidates should have deep, hands-on expertise with a range of open source and proprietary security tooling and practices, which they can integrate into a holistic next generation security solution across the breadth of Canonical's interests.

The SecOps team's mission is not only to secure Canonical, but also to contribute to the security of the wider open source ecosystem. They might share knowledge through public presentations and industry events, and share threat intelligence with the wider community or represent Canonical in sector-specific governance bodies.

This role reports to the CISO.

What you will do in this role:

Hire and mentor a team of outstanding technical security professionals Define Canonical's SecOps security standards and playbooks Own and drive the architecture and design of the SOC Analyse and improve Canonical's security architecture Evaluate, select and implement new security tools and practices Identify, contain and guide the remediation of security threats and cyber attacks Grow the presence and thought leadership of Canonical SecOps practice Contribute to open source threat intelligence initiatives Drive threat modelling, table top exercises and other SecOps practices across Engineering, IS and Canonical Develop Canonical SecOps learning and development materials Publish blog posts, whitepapers and conference presentations Identify, implement and track SecOps KPIs Plan and deliver SecOps work in the framework of Canonical's agile engineering practice Work with Security leadership to present information and influence change

What we are looking for

Proven track record of mitigating with advanced threat actors and nation state threats Expert technical understanding of SOCs from the ground up In depth knowledge of SOC architecture and design including strategies for logging, firewalls, network segmentation, honeypots etc Someone who understands how the SOC works not just how to use it Expert in Linux security Ability to define, implement, automate and measure effective incident response playbooks Knowledge of security architecture and market-leading security tools Experience contributing to, and consuming, threat intelligence feeds Experience in security risk management frameworks such as NIST CSF An exceptional academic track record from both high school and university Undergraduate degree in Computer Science or STEM, or a compelling narrative about your alternative path Drive and a track record of going above-and-beyond expectations Deep personal motivation to be at the forefront of technology security Leadership and management ability Excellent business English writing and presentation skills Confidence to report security performance metrics with accountability for accuracy and completeness

Optional things we value

Experience in offensive or defensive security teams with hands-on ability Experience with open source security tools Experience with security standards such as ISO 27001 Experience with security posture management of corporate endpoitns

Seniority level

Seniority level Director Employment type

Employment type Full-time Job function

Job function Other, Information Technology, and Management Industries Software Development Referrals increase your chances of interviewing at Canonical by 2x Get notified about new Head of Security jobs in

Doha, Doha, Qatar . We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

Join to apply for the

Staff Security Operations Engineer

role at

Canonical Join to apply for the

Staff Security Operations Engineer

role at

Canonical Get AI-powered advice on this job and more exclusive features. We have opened several senior/staff Security Operations Engineer (SOC) positions, creating a new team reporting to the CISO. We are looking for a range of experience in these positions - at the high end we are looking for deep experience defending highly contested critical assets and high-value cyber targets against advanced persistent threats and state-level actors. We have more junior roles for exceptional individuals with a proven personal interest an engagement in cyber attack and defence, and outstanding academic and career performance even if experience is limited.

Our goal is to build an entirely new level of assurance and observable rigour into the open source supply chain. We have our own estate to monitor, but more broadly our goal is to raise the robustness of the entire global Ubuntu estate through the work of this team.

The Security Operations (SecOps) team is responsible for design, implementation and evolution of Canonical security practices, techniques, tools, systems and policies. The team is the primary owner of strategy and practices that determine how Canonical secures its data, internal infrastructure and build processes. They are responsible for assuring the security and integrity of our own infrastructure and product deployments. They design and implement technical security controls that ensure security threats are automatically identified, contained and remediated. The team will also contribute ideas and requirements for Canonical product security, improving the resilience and robustness of all Ubuntu customers and users subject to cyber attack.

The SecOps team's mission is not only to secure Canonical, but also to contribute to the security of the wider open source ecosystem. They might share knowledge through public presentations and industry events, and share threat intelligence with the wider community or represent Canonical in sector-specific governance bodies.

What you will do in this role:

Implement and evolve Canonical's SecOps security standards and playbooks Analyse and improve Canonical's security architecture Evaluate, select and implement new security tools and practices Identify, contain and guide the remediation of security threats and cyber attacks Grow the presence and thought leadership of Canonical SecOps practice Contribute to open source threat intelligence initiatives Drive threat modelling, table top exercises and other SecOps practices across Engineering, IS and Canonical Develop Canonical SecOps learning and development materials Publish blog posts, whitepapers and conference presentations Identify, implement and track SecOps KPIs Plan and deliver SecOps work in the framework of Canonical's agile engineering practice Work with Security leadership to present information and influence change

What we are looking for

An exceptional academic track record Undergraduate degree in Computer Science or STEM, or a compelling narrative about your alternative path Drive and a track record of going above-and-beyond expectations Deep personal motivation to be at the forefront of technology security Expertise in threat modelling and risk management frameworks Knowledge of security architecture and market-leading security tools Experience contributing to, and consuming, threat intelligence feeds Experience in security risk management frameworks such as NIST CSF Experience with security standards such as ISO 27001

Optional things we value

Experience in a security operations team or a security operations centre (SOC) Experience in offensive or defensive security teams with hands-on ability Experience with state-actor and other advanced persistent threats

What we offer you

We consider geographical location, experience, and performance in shaping compensation worldwide. We revisit compensation annually (and more often for graduates and associates) to ensure we recognise outstanding performance. In addition to base pay, we offer a performance-driven annual bonus. We provide all team members with additional benefits, which reflect our values and ideals. We balance our programs to meet local needs and ensure fairness globally.

Distributed work environment with twice-yearly team sprints in person Personal learning and development budget of USD 2,000 per year Annual compensation review Recognition rewards Annual holiday leave Maternity and paternity leave Employee Assistance Programme Opportunity to travel to new locations to meet colleagues Priority Pass, and travel upgrades for long haul company events

About Canonical

Canonical is a pioneering tech firm at the forefront of the global move to open source. As the company that publishes Ubuntu, one of the most important open source projects and the platform for AI, IoT and the cloud, we are changing the world on a daily basis. We recruit on a global basis and set a very high standard for people joining the company. We expect excellence - in order to succeed, we need to be the best at what we do. Canonical has been a remote-first company since its inception in 2004. Working here is a step into the future, and will challenge you to think differently, work smarter, learn new skills, and raise your game.

Canonical is an equal opportunity employer

We are proud to foster a workplace free from discrimination. Diversity of experience, perspectives, and background create a better work environment and better products. Whatever your identity, we will give your application fair consideration.

Seniority level

Seniority level Mid-Senior level Employment type

Employment type Full-time Job function

Job function Information Technology Industries Software Development Referrals increase your chances of interviewing at Canonical by 2x Sign in to set job alerts for “Security Engineer” roles.

Distributed Systems Software Engineer, Python / Go

Junior Software Engineer - Cross-platform C++ - Multipass

Freelance Software Developer (Python Engineer) - AI Trainer

Software Engineer - Python - Container Images

Software Engineer - Python - Container Images

Software Engineer - Python - Container Images

Software Engineer - Cross-platform C++ - Multipass

Python and Kubernetes Software Engineer - Data, AI/ML & Analytics

Embedded Linux Senior Software Engineer - Optimisation

Software Engineer - Immutable Ubuntu Desktop

Python Software Engineer - Ubuntu Hardware Certification Team

Software Engineer - packaging - optimize Ubuntu Server for public clouds

Software Engineer - packaging - optimize Ubuntu Server for public clouds

Software Engineer - packaging - optimize Ubuntu Server for public clouds

Software Engineer - packaging - optimize Ubuntu Server

Software Engineer - packaging - optimize Ubuntu Server

Senior Software Engineer - packaging - optimize Ubuntu Server

Senior Software Engineer - packaging - optimize Ubuntu Server

Senior Software Engineer - packaging - optimize Ubuntu Server

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

Join to apply for the

Senior Security Operations Engineer

role at

Canonical Join to apply for the

Senior Security Operations Engineer

role at

Canonical Get AI-powered advice on this job and more exclusive features. We have opened several senior/staff Security Operations Engineer (SOC) positions, creating a new team reporting to the CISO. We are looking for a range of experience in these positions - at the high end we are looking for deep experience defending highly contested critical assets and high-value cyber targets against advanced persistent threats and state-level actors. We have more junior roles for exceptional individuals with a proven personal interest an engagement in cyber attack and defence, and outstanding academic and career performance even if experience is limited.

Our goal is to build an entirely new level of assurance and observable rigour into the open source supply chain. We have our own estate to monitor, but more broadly our goal is to raise the robustness of the entire global Ubuntu estate through the work of this team.

The Security Operations (SecOps) team is responsible for design, implementation and evolution of Canonical security practices, techniques, tools, systems and policies. The team is the primary owner of strategy and practices that determine how Canonical secures its data, internal infrastructure and build processes. They are responsible for assuring the security and integrity of our own infrastructure and product deployments. They design and implement technical security controls that ensure security threats are automatically identified, contained and remediated. The team will also contribute ideas and requirements for Canonical product security, improving the resilience and robustness of all Ubuntu customers and users subject to cyber attack.

The SecOps team's mission is not only to secure Canonical, but also to contribute to the security of the wider open source ecosystem. They might share knowledge through public presentations and industry events, and share threat intelligence with the wider community or represent Canonical in sector-specific governance bodies.

What you will do in this role:

Implement and evolve Canonical's Security Operation Center Analyse and improve Canonical's security architecture Evaluate, select and implement new security tools and practices Identify, contain and guide the remediation of security threats and cyber attacks Grow the presence and thought leadership of Canonical SecOps practice Contribute to open source threat intelligence initiatives Drive threat modelling, table top exercises and other SecOps practices across Engineering, IS and Canonical Develop Canonical SecOps learning and development materials Publish blog posts, whitepapers and conference presentations Identify, implement and track SecOps KPIs Plan and deliver SecOps work in the framework of Canonical's agile engineering practice Work with Security leadership to present information and influence change

What we are looking for

An exceptional academic track record Undergraduate degree in Computer Science or STEM, or a compelling narrative about your alternative path Previous professional experience working or leading a Security Operation Center Deep personal motivation to be at the forefront of technology security Expertise in threat modelling and risk management frameworks Knowledge of security architecture and market-leading security tools Experience contributing to, and consuming, threat intelligence feeds Experience in security risk management frameworks such as NIST CSF and ISO27001

Optional things we value

Experience in a security operations team or a security operations centre (SOC) Experience in offensive or defensive security teams with hands-on ability Experience with state-actor and other advanced persistent threats

What we offer you

We consider geographical location, experience, and performance in shaping compensation worldwide. We revisit compensation annually (and more often for graduates and associates) to ensure we recognise outstanding performance. In addition to base pay, we offer a performance-driven annual bonus. We provide all team members with additional benefits, which reflect our values and ideals. We balance our programs to meet local needs and ensure fairness globally.

Distributed work environment with twice-yearly team sprints in person Personal learning and development budget of USD 2,000 per year Annual compensation review Recognition rewards Annual holiday leave Maternity and paternity leave Employee Assistance Programme Opportunity to travel to new locations to meet colleagues Priority Pass, and travel upgrades for long haul company events

About Canonical

Canonical is a pioneering tech firm at the forefront of the global move to open source. As the company that publishes Ubuntu, one of the most important open source projects and the platform for AI, IoT and the cloud, we are changing the world on a daily basis. We recruit on a global basis and set a very high standard for people joining the company. We expect excellence - in order to succeed, we need to be the best at what we do. Canonical has been a remote-first company since its inception in 2004. Working here is a step into the future, and will challenge you to think differently, work smarter, learn new skills, and raise your game.

Canonical is an equal opportunity employer

We are proud to foster a workplace free from discrimination. Diversity of experience, perspectives, and background create a better work environment and better products. Whatever your identity, we will give your application fair consideration.

Seniority level

Seniority level Mid-Senior level Employment type

Employment type Full-time Job function

Job function Information Technology Industries Software Development Referrals increase your chances of interviewing at Canonical by 2x Linux Cryptography and Security Engineer

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

We are currently looking Senior Analyst Security Operations Centre for our Qatar operations with the following terms & conditions.

Required Special Skills

Maintain keen understanding of evolving Internet threats to ensure the security of Bank network

Write technical articles for internal knowledge base

Participate in knowledge sharing with other analysts and develop solutions efficiently

Coordinate or participate in individual or team projects

Strong understanding of security architectures and devices

Strong understanding of threat intelligence consumption and management

Strong understanding of root causes of malware infections and proactive mitigation

Ability to mentor and coach less experienced security analysts. Providing techniques and strategies to dig deeper into investigations

Ability to communicate IT networking and security concepts to personnel at all levels of experience and responsibility

Provide creative problem solving techniques and the desire to create and build new processes

Strong time management and multitasking skills as well as attention to detail

Experience working in fast paced environments and ability manage workload even during times of stress or escalated activity

Comfortable with impromptu tasking and loosely defined requirements

Excellent oral and written communications skills

Education / Experience Requirements

Bachelor Degree preferably in computer science computer engineering or related subjects.

Professional certification such as CEH CISSP CISM CISA and CySA is mandatory

SIEM certification and any vendor security certifications related to network application systems security would be considered as a plus

Minimum of 6 years experience in a major bank Large Corporate or MSSP in a similar L3 SOC analyst role

Essential Duties & Responsibilities by Dimensions A. Internal (Processes Products Regulatory)

Conduct in- depth thorough analysis of network traffic and host activity to identify security events across a wide array of technologies and platforms

Perform incident response activities such as host triage and retrieval malware analysis remote system analysis end-user interviews and remediation efforts

Compile detailed investigation and analysis reports for internal SOC consumption and delivery to management

Evaluate existing technical capabilities and systems and identify opportunities for improvement

Research and test new security tools / products and make recommendations of tools to be implemented in the SOC environment

Regularly review standard operating procedures and protocols to ensure SOC continues to effectively meet operational requirements

Conduct after action reviews to identify lessons learned and best practices

Influence and improve upon existing processes through innovation and operational change

B. Learning & Knowledge

Possess an understanding of business processes and controls in all related operational areas.

Coordinate with an expert understanding of information security issues best practices and a working knowledge of IT systems.

C. Other

Maintain confidentiality with respect to commercially sensitive information.

Joining time frame : 2 weeks (maximum 1 month)

Additional Information :

Terms and conditions :

Joining time frame : maximum 4 weeks

Remote Work : No

Employment Type : Full-time

Key Skills Security Management,Sensitive Information Management,Pressure Management,Risk Analysis,Access Control,Safety Procedures,Security Measures,Security Training,Risk Assessment,Access Point,Security Checks,Detect Signs,Safe Environment,Security System,Security Reports

Experience : years

Vacancy : 1

#J-18808-Ljbffr