53 Cybersecurity Specialists jobs in Qatar

About the Company

Milaha is committed to leading the way in operational technology and cyber-physical security initiatives, ensuring the highest standards of safety and compliance in the maritime industry.

About the Role

The role is responsible for driving OT security assessments and remediation, ensuring compliance with maritime regulatory requirements (IMO, IACS), and embedding OT systems into Milaha's business continuity and disaster recovery framework.

Responsibilities

• Lead Milaha's Vessel OT Cybersecurity Program (assessment and remediation workstreams) as the primary focus, ensuring alignment with IMO and IACS standards.
• Maintain OT/ICS security baselines, risk register, and remediation roadmap, extending practices to cyber-physical systems in innovation projects.
• Ensure continuous improvement of OT security posture through assessments, gap closure, and stakeholder engagement.
• Manage OT security monitoring, vulnerability management, and anomaly detection across vessel systems.
• Coordinate OT incident response activities, develop OT-specific playbooks, and integrate maritime threat intelligence into OT operations and response planning.
• Work with SOC/MSSP partners and fleet operations teams to triage, contain, and recover from OT-related incidents.
• Ensure enterprise-wide visibility and alignment with Milaha's overall incident management framework.
• Ensure ongoing compliance with IMO 2021 Guidelines, IACS Unified Requirements (E26/E27), and other maritime cybersecurity obligations.
• Support regulatory inspections, classification society reviews, and client cybersecurity audits with OT-specific evidence.
• Monitor evolving OT regulatory and industry standards, embedding them into Milaha's OT security framework.
• Integrate vessel OT and other operational systems into Milaha's Business Continuity and Disaster Recovery Plans (BCP/DRP).
• Conduct OT-focused resilience drills and simulations to validate readiness and recovery capabilities.
• Align OT recovery strategies with enterprise-wide continuity and disaster recovery requirements.
• Collaborate with Milaha Ship Management, engineering, and innovation project teams to embed OT security in daily operations and new system lifecycles.
• Provide OT cybersecurity awareness and training to vessel crews and technical staff.
• Act as the security liaison with OT vendors, shipyards, and classification societies to ensure secure integration and lifecycle governance.
• Provide OT cybersecurity assurance and audit support for fleet OT systems, shipboard inspections, and classification reviews.
• Undertake additional cybersecurity tasks or projects as assigned within the department.
• Support other cybersecurity initiatives or assignments as required, contributing expertise to cross-pillar to strengthen Milaha's overall cybersecurity posture.

Qualifications

• Education details not specified in the provided job description.

Required Skills

• Experience in OT security assessments and remediation.
• Knowledge of maritime regulatory requirements (IMO, IACS).
• Strong incident response and monitoring skills.
• Ability to collaborate with various stakeholders and vendors.

Preferred Skills

• Experience with SOC/MSSP operations.
• Familiarity with cyber-physical systems.
• Knowledge of business continuity and disaster recovery planning.

Cybersecurity Project Coordinator

Location:
Doha, Qatar

Key Responsibilities:

• Coordinate cybersecurity tasks and deliverables across project stakeholders.
• Monitor timelines, milestones, and documentation (plans, IP lists, punch lists).
• Support compliance with NIST / ISO 27001 / IEC 62443 frameworks.
• Facilitate communication between cybersecurity, vendors, and business teams.
• Manage deviations, risks, and change orders.

Requirements:

• Bachelor's in IT / Cybersecurity or related field.
• 6 yrs project coordination or management (preferably cybersecurity/IT).
• Familiar with cybersecurity tools & frameworks.
• PMP/PRINCE2/CISSP/GICSP are a plus.
• Strong communication & organizational skills.
• Fluent English; able to travel.

Offensive Security Engineer (DevSecOps & Cloud Focus)

Location: Qatar

What You'll Be Doing:

Security Tool Ownership & Automation

• Lead the deployment and optimization of key tools such as SAST, DAST, Breach & Attack Simulation (BAS), and container security solutions
• Integrate tools directly into CI/CD pipelines to automate security testing
• Continuously monitor and tune tools for performance, accuracy, and efficiency

Offensive Security & Enablement

• Provide expertise on exploitation techniques and vulnerability analysis
• Support red teaming and penetration testing with strategic tooling and guidance
• Help shift security left by working closely with DevOps and development teams

Container & Cloud Security

• Strengthen the security posture of Docker and Kubernetes environments
• Implement container image scanning, runtime protection, and orchestration best practices
• Utilize cloud-native security controls across AWS, Azure, and/or GCP

Ownership & Execution

• Drive projects from start to finish with minimal oversight
• Identify security gaps in tooling or processes and recommend scalable improvements
• Maintain dashboards, documentation, and reports that demonstrate tool effectiveness

Communication & Collaboration

• Translate complex findings into actionable insights for technical and non-technical stakeholders
• Present assessments and tool evaluations to leadership
• Mentor junior team members and promote knowledge sharing within the team

What You'll Need to Succeed:

Required:

• Degree in Computer Science or a related field
• Deep understanding of offensive security (e.g., MITRE ATT&CK, OWASP Top 10, vulnerability exploitation)
• Hands-on experience with integrating SAST, DAST, and BAS tools into CI/CD systems (GitLab, Jenkins, Azure DevOps, etc.)
• Familiarity with platforms like Cytix, Cymulate, SafeBreach, AttackIQ, etc.
• Strong container security skills (Kubernetes, Docker)
• Ability to work independently in fast-paced, agile environments

Job Title:
IT Cyber Security Specialist

Department:
IT Governance & Security

Location:
Doha, Qatar

Experience Required:
5+ years in IT, with at least 3 years in Cybersecurity operations

Role Summary:

Vistas Global is hiring for one of our leading clients
– seeking an experienced IT Cyber Security Specialist responsible for safeguarding IT and OT infrastructure through active security monitoring, incident response, vulnerability management, and the implementation of cybersecurity controls. The role also ensures compliance with international standards such as ISMS, NIAP, and QCSF.

Key Responsibilities:

• Conduct penetration testing, vulnerability scans, and configuration reviews
• Monitor SIEM and threat intelligence tools; respond to security incidents
• Lead incident detection, containment, and forensic investigations
• Implement hardening standards for systems, networks, and cloud platforms
• Support audits and compliance (ISMS, PCI-DSS, GDPR) and assist in risk management
• Provide cybersecurity advisory for IT projects and DevSecOps integration
• Contribute to awareness campaigns and continuous security improvements

Location

Doha, Qatar

Experience

7-10

Job Type

Recruitment

Job Description

Hiring Qatar based candidates only

Experience: 7+

OT Cybersecurity SpecialistJob Title: OT Cybersecurity Specialist

Professional Qualification

• Minimum 7-10 years in cybersecurity with at least 5 years specializing in OT security. Certifications:
• o Certified Information Systems Security Professional (CISSP).o Global Industrial Cyber Security Professional (GICSP).o Certified SCADA Security Architect (CSSA).o IEC 62443 Cybersecurity Certification.o Additional OT security-related certifications are a plus.

• Technical Skills:o Expertise in ICS/SCADA cybersecurity architectures.o Strong knowledge of industrial protocols (Modbus, DNP3, BACnet, OPC, PROFINET, etc.).

• o Experience with industrial IDS, SIEM, NAC, and network segmentation.o Familiarity with ICS threat intelligence and OT security frameworks.o Proficiency in firewalls, VPNs, and remote access security for OT environments.

Job Summary:

The OT Cybersecurity Specialist will focus on securing operational technology (OT) systems, such as SCADA,PLCs, and industrial control systems. The role involves developing strategies to safeguard OT environmentsfrom cyber threats, ensuring the protection of critical infrastructure and compliance with industry regulations.This role requires expertise in securing IT-OT convergence, mitigating cyber threats in industrial environments,and ensuring compliance with cybersecurity standards for industrial systems.Key Responsibilities:

OT Security Architecture & Implementation:o Design and implement cybersecurity controls for industrial and OT environments.o Assess security risks in ICS, SCADA, and Industrial IoT (IIoT) systems.o Develop and enforce network segmentation strategies for industrial networks.o Experience in creating quality design documentations such as High Level and Low level design

documents.

Industrial Security Monitoring & Threat Detection:o Deploy and manage OT-specific IDS/IPS solutions for anomaly detection.o Integrate OT networks with Security Information and Event Management (SIEM) platforms.o Conduct threat hunting and forensic analysis in ICS/SCADA environments.

Risk Management & Compliance:o Ensure compliance with industry security standards (NCSA / QCERT, IEC 62443, NIST CSF, NERC

CIP, ISO 27001, etc.).o Conduct security risk assessments and vulnerability analysis in OT environments.o Develop security policies, procedures, and incident response plans for OT security.

Cyber-Physical Security Integration:o Work closely with engineering and operations teams to implement secure-by-design industrial

solutions.o Secure remote access solutions for industrial environments using Zero Trust principles.o Implement security measures for legacy industrial systems and critical infrastructure.

Incident Response & Resilience:o Develop and execute OT cybersecurity incident response plans.o Conduct tabletop exercises and simulations for OT cyber incident response.o Implement disaster recovery (DR) and business continuity plans (BCP) for industrial

environments. Technology & Solution Implementation:

o Deploy security solutions for ICS, SCADA, IIoT, DCS, and PLC systems.o Implement firewalls, NAC, IT/OT IDS, industrial deception technologies, SIEM, EDR, and NDR

solutions.o Secure OT endpoint security using FIM (File Integrity Monitoring), DLP (Data Loss

Prevention), and DRMS (Digital Rights Management Systems). Stakeholder Engagement & Training:

o Work with plant engineers, IT teams, and leadership to align security goals.o Provide cybersecurity awareness training tailored to OT environments.o Support audits and regulatory compliance assessments.

Qualifications & Experience: Education: Bachelor's or Master's degree in Cybersecurity, Electrical Engineering, Industrial

Automation, or related field.

Skills

Clo, Risk Assessment, Css, Disaster Recovery, Iso 27001, Vpn, Education, Solution Implementation, Risk Management, Assessments, Compliance, Leadership, Forensic, Resilience, Documentation, Cybersecurity, Technical Skill, Technical Skills

Company Description

RKH Qitarat is a joint venture between RATP Dev, Keolis, and the Hamad Group, operating and maintaining the Doha Metro and Lusail Tram in Qatar. Bringing both global expertise and local knowledge, the company is focused on developing domestic railway capabilities. RKH Qitarat works closely with Qatar Rail, the state-owned company responsible for the design, construction, commissioning, operation, and maintenance of the entire rail network. The Doha Metro features three lines and one of the world's fastest driverless networks, while the Lusail Tram comprises four lines in different stages of completion. RKH Qitarat offers exciting career opportunities for individuals passionate about improving everyday travel experiences for passengers.

Role Description

This is a full-time on-site role for a Cybersecurity GRC Analyst located in Doha, Qatar. The Cybersecurity GRC Analyst will be responsible for performing day-to-day governance, risk, and compliance (GRC) activities. This includes conducting risk assessments, ensuring compliance with cybersecurity standards, analyzing malware, overseeing application security, and monitoring network security. The Analyst will also develop and implement security policies, conduct internal audits, and collaborate with cross-functional teams to maintain robust cybersecurity practices.

Qualifications

• Application Security, Network Security, and Cybersecurity skills
• Analytical Skills and Malware Analysis experience
• Strong understanding of governance, risk, and compliance (GRC) methodologies
• Ability to conduct internal audits and ensure compliance with cybersecurity standards
• Excellent problem-solving and analytical skills
• Bachelor's degree in Cybersecurity, Information Technology, or a related field
• Relevant certifications such as CISSP, CISM, or CISA are beneficial
• Experience in the public transport industry is a plus

Role & responsibilities

Job responsibilities

• Manages system patches, Anti-Virus updates and perform backups and restoration for the installed OT assets.
• Review firewall and other relevant security logs for identification of threats, anomalies, intrusions and/or abnormal connection behaviour. Investigates, reports and escalates issues as required to Cybersecurity staff and management.
• Troubleshoots network performance or network security issues. Analyses network traffic, responds to problem tickets and resolves service requests.
• Participates in incident response, computer forensics, data preservation and investigations related to network breaches and/or unauthorized access of data.
• Supports regular and special reporting and analysis, including reports of vulnerabilities, risks, control deficiencies, remediation strategies, and performance metrics.
• Configures and tests Cybersecurity related technologies. Troubleshoots and corrects Cybersecurity and data related problems.
• Performs hardware and software upgrades and documents configurations and system specifications.
• Helps maintain configuration records and documentation, including security operations and

maintenance, incident control, cyber incident response procedures, and other standards, policies, and procedures.

• Provides security related technical support to users and assists with the research, evaluation, and implementation of security tools, systems, and processes.
• Reviews external threat intelligence feeds from cybersecurity agencies; sends alerts and coordinates with responsible parties to patch high risk vulnerabilities.

Preferred candidate profile

The SIEM Administrator is responsible for implementing, maintaining, and optimizing the Security Information and Event Management (SIEM) platform to ensure continuous monitoring, threat detection, and incident response across the organization's IT environment. This role involves managing SIEM configurations, integrating various log sources, developing correlation rules, and ensuring data integrity and performance. The SIEM Administrator works closely with SOC analysts, system administrators, and cybersecurity teams to enhance the organization's overall security posture.

Key Responsibilities:

• SIEM Platform Management:
• Install, configure, and maintain SIEM tools (e.g., Splunk, IBM QRadar, ArcSight, Sentinel, LogRhythm).
• 3 years' experience on Microsoft Sentinel and app logic.
• Manage system health, performance tuning, and upgrades to ensure optimal operation.
• Integrate diverse log sources from servers, firewalls, applications, cloud services, and endpoints.
• Log Management and Correlation:
• Define and implement log collection policies and normalization standards.
• Develop and fine-tune correlation rules, alerts, and dashboards to detect potential threats and anomalies.
• Validate and troubleshoot log ingestion issues to ensure complete visibility across systems.
• Security Operations Support:
• Collaborate with SOC teams to improve incident detection, analysis, and response processes.
• Support incident investigations by providing detailed log analysis and event correlation.
• Maintain incident response playbooks and automate repetitive detection tasks where possible.
• Compliance and Reporting:
• Ensure SIEM logging and monitoring align with compliance frameworks (ISO 27001, NIST, GDPR, etc.).
• Generate regular reports and dashboards for management and audit purposes.
• Document configurations, procedures, and change logs for audit readiness.
• Continuous Improvement:
• Research emerging threats and update SIEM detection content accordingly.
• Evaluate and recommend enhancements to SIEM architecture and data sources.
• Conduct periodic health checks and capacity planning for the SIEM environment.

Qualifications and Skills:

• Education:
• Bachelor's degree in computer science, Information Security, or a related field.
• Master's degree or relevant certifications preferred.
• Certifications (Preferred):
• SIEM-specific certifications (e.g., Splunk Certified Administrator, QRadar Certified, Microsoft Sentinel).
• Security certifications such as CompTIA Security+, CEH, CISSP, or GIAC.
• Technical Skills:
• Strong knowledge of log management, event correlation, and network protocols.
• Hands-on experience with SIEM tools (Splunk, QRadar, ArcSight, Sentinel, etc.).
• Familiarity with firewalls, IDS/IPS, endpoint protection, and threat intelligence platforms.
• Scripting knowledge (Python, PowerShell, or Bash) for automation and integration.
• Experience with cloud environments (AWS, Azure, GCP) and their native security logging tools.
• Soft Skills:
• Strong analytical and problem-solving abilities.
• Excellent communication and documentation skills.
• Ability to work under pressure in a fast-paced security operations environment.
• Attention to detail and commitment to maintaining system integrity and confidentiality.

Experience Required:

• 3–5 years of experience in cybersecurity, with at least 2 years focusing on SIEM administration or engineering.

Experience working in a SOC or enterprise security environment is highly desirable.

Job Type: Full-time

Pay: QAR14, QAR16,000.00 per month

Education:

• Bachelor's (Required)

Experience:

• 3 years' experience on Microsoft Sentinel and app logic: 3 years (Required)
• focusing on SIEM administration or engineering: 2 years (Required)
• cybersecurity: 3 years (Required)

Language:

• Arabic (Required)
• English (Required)

License/Certification:

• degree in computer science, Information Security (Required)

Location

Doha, Qatar

Experience

10-17

Job Type

Recruitment

Job Description

Job Summary: The Cybersecurity Solutions Architect will design and implement comprehensive cybersecurity solutions to protect client systems from internal and external threats. The role requires expertise in risk assessment, vulnerability management, incident response, and security architecture. The architect will collaborate with clients to develop tailored security strategies that ensure compliance with regulations and protect critical assets. The role requires deep expertise in Security Operations Center (SOC) architecture, threat intelligence, compliance frameworks, and advanced security technologies. The ideal candidate will work closely with stakeholders to build resilient security infrastructures tailored to enterprise and industrial environments.

Key Responsibilities:

• Security Solution Design & Architecture:

o Design and implement enterprise-wide cybersecurity solutions.

o Define strategies for threat detection, incident response, and risk mitigation.

o Develop and optimize architectures for Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR).

o Experience in creating quality design documentations such as High Level and Low level design documents.

• Security Operations Center (SOC) Design & Implementation:

o Lead the development and deployment of SOC infrastructures.

o Integrate threat intelligence platforms and monitoring tools.

o Design automation and response workflows for real-time threat mitigation.

• Cybersecurity Technologies & Solutions:

o Architect and implement security solutions including:

§ SIEM & SOAR – Log management, real-time security analytics, and automated incident response.

§ Privileged Access Management (PAM) & Identity Access Management (IAM) – Secure privileged accounts and streamline authentication processes.

§ Single Sign-On (SSO) – Enhance user access security while maintaining ease of access.

§ Endpoint Detection and Response (EDR) & Network Detection and Response (NDR) – Implement and optimize threat detection and response systems.

§ Network Monitoring Systems (NMS) – Deploy network monitoring solutions for proactive threat detection.

§ Sandboxing & Deception Technologies – Implement advanced threat hunting and malware analysis environments.

§ Data Loss Prevention (DLP) & Digital Rights Management Systems (DRMS) – Protect sensitive data from leakage and unauthorized access.

§ Data Protection – Implement encryption, tokenization, and secure data governance policies.

§ Network Access Control (NAC) – Secure endpoints and enforce access policies.

§ IT & OT Intrusion Detection Systems (IDS) – Deploy cybersecurity measures for IT and Operational Technology (OT) environments.

§ Vulnerability Assessment & Penetration Testing (VAPT) – Conduct security assessments and proactive threat identification.

§ File Integrity Monitoring (FIM) – Ensure compliance with data integrity regulations and real-time security monitoring.

• Security Compliance & Risk Management:

o Ensure compliance with industry security standards (ISO 27001, NIST, GDPR, etc.).

o Conduct risk assessments and develop mitigation strategies.

o Collaborate with governance teams to align security policies with regulatory requirements.

• Stakeholder Engagement & Pre-Sales Support:

o Work with IT, OT, and executive teams to define security strategies.

o Support pre-sales initiatives by designing cybersecurity Proof-of-Concept (PoC) solutions.

o Develop technical documentation, whitepapers, and RFP responses.

• Technology Evaluation & Continuous Improvement:

o Research and implement emerging cybersecurity technologies.

o Conduct proof-of-concept (PoC) testing for new security solutions.

o Recommend enhancements for existing security postures.

Qualifications & Experience:

• Education: Bachelor's or Master's degree in Cybersecurity, Computer Science, Information Technology, or related field.

• Experience: Minimum 10 years of experience in cybersecurity architecture, SOC design, and security technology implementation.

• Certifications:

o Certified Information Systems Security Professional (CISSP).

o Certified Information Security Manager (CISM).

o QCSF 2022 Framework and NCSA

o Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), or GIAC certifications.

o SIEM or SOAR vendor certifications (Splunk, IBM QRadar, Palo Alto Cortex XSOAR, etc.).

o Cloud Security Certifications (AWS Security Specialty, Microsoft SC-100, or Google Professional Cloud Security Engineer).

• Technical Skills:

o Expertise in designing and deploying SOC environments.

o Strong understanding of security frameworks (MITRE ATT&CK, NIST CSF, etc.).

o Proficiency in automation tools (Ansible, Terraform) and scripting (Python, Bash, PowerShell).

o Hands-on experience with enterprise security solutions and compliance-driven security programs