68 Data Protection jobs in Qatar

Job Description
We are currently looking Data Privacy Officer for our Qatar operations with the following terms & conditions.

8 – 12 years' experience

Insurance Experience is a must

Joining time frame: 2 weeks (maximum 1 month)

Knowledge & Experience:

• Bachelor's degree in law, Information Security, Data/IT, or related; advanced certification preferred (e.g., CIPP/E, CIPM, ISO 27701 Lead Implementer).

• 8–12 years' experience including 4+ in privacy/data governance, ideally within insurance/financial services and healthcare data contexts.

• Demonstrated experience in building privacy frameworks, PIAs/ROPA, third-party risk, incident response, and regulatory liaison.

• Deep knowledge of Qatar PDPL and QCB Data Handling & Protection Regulation; familiarity with international standards (e.g., ISO 27701/27001).

• Independence of mind and absence of operational conflicts.

Job Types: Full-time, Permanent

Nair Systems
is currently looking
Data Privacy Officer
for our
Qatar
operations with the following terms & conditions.

Knowledge & Experience:

·   Bachelor's degree in law, Information Security, Data/IT, or related; advanced certification preferred (e.g., CIPP/E, CIPM, ISO 27701 Lead Implementer).

· –12 years' experience including 4+ in privacy/data governance, ideally within insurance/financial services and healthcare data contexts.

·   Demonstrated experience in building privacy frameworks, PIAs/ROPA, third-party risk, incident response, and regulatory liaison.

·   Deep knowledge of Qatar PDPL and QCB Data Handling & Protection Regulation; familiarity with international standards (e.g., ISO 27701/27001).

·   Independence of mind and absence of operational conflicts.

SKILLS & COMPETENCIES:

·   Deep knowledge of Qatar's Personal Data Privacy Law (Law No. 13 of 2016) and relevant QCB/QFMA rules, with the ability to turn legal requirements into practical policies and controls.

·   Proven experience leading PIAs (privacy impact assessments) and maintaining the ROPA (record of processing activities) across systems and business units.

·   Third-party & data-transfer governance: vendors, enforces DPAs, and ensures appropriate safeguards for cross-border processing.

·   Training & culture: designs privacy training, builds awareness, and tracks KPIs/audit readiness to drive continuous improvement

Joining time frame:
2 weeks (maximum 1 month)

Should you be interested in this opportunity, please send your latest resume in MS Word format at the earliest

• This role is designed for a professional deeply committed to safeguarding sensitive personal data and ensuring compliance with global and regional data protection regulations (e.g., GDPR, CCPA, Qatar PDPPL). You will lead efforts to identify, classify, and protect PII across the organization while embedding privacy-by-design principles into business processes. Your responsibilities will span data lifecycle governance, third-party risk management, regulatory compliance, and incident response, ensuring that all data processing activities align with legal and ethical standards.
• This position requires a strategic thinker who can balance technical controls with regulatory requirements, collaborate cross-functionally to mitigate risks, and foster a culture of data privacy

KEY RESPONSIBILITIES

1. Data Governance & Compliance

Data Lifecycle Governance :

• Design and implement end-to-end data lifecycle policies to govern data from creation / collection to archival and secure deletion, ensuring compliance with legal, regulatory, and business requirements.
• Define retention schedules, archival protocols, and secure disposal methods for sensitive data (e.g., PII, financial records) in collaboration with legal and IT teams.

Data Classification

• Develop / Enhance Data Classification Frameworks : Design and implement a tiered classification system (e.g., Public, Internal, Restricted, Confidential) to categorize data based on sensitivity, regulatory requirements, and business impact.
• Define Classification Standards : Establish clear criteria for labeling data types (e.g., PII, financial records, intellectual property) and enforce metadata tagging for traceability.

Regulatory Compliance :

• Ensure adherence to GDPR, CCPA, Qatar PDPPL, and other applicable laws by implementing consent management frameworks, data subject rights workflows, and breach notification protocols.

2. Technical Safeguards & Risk Mitigation

Data Protection Controls :

• Implement encryption, tokenization, and pseudonymization for PII at rest and in transit.
• Deploy Data Loss Prevention (DLP) tools to monitor and restrict unauthorized data transfers.

3. Third-Party & Vendor Oversight

• Assess third-party vendors for compliance with data protection obligations through questionnaires, audits, and contractual reviews.

Data Processing Agreements (DPAs) :

• Draft and enforce DPAs to ensure vendors adhere to organizational privacy standards and regulatory mandates.

TECHNICAL REQUIREMENTS

• Expertise in data protection technologies : DLP, encryption (AES-256, TLS), and anonymization tools.
• Proficiency with compliance platforms : OneTrust, TrustArc, or similar for PIAs and consent management.
• Familiarity with cloud security (AWS / Azure / GCP IAM, storage ACLs) and data residency requirements.
• Knowledge of privacy-enhancing technologies (PETs) such as differential privacy or homomorphic encryption.
• Experience with incident response tools for breach detection and analysis.
• Basic scripting skills (Python, SQL) for data mapping and workflow automation.

CERTIFICATIONS

• Required : CIPP (Certified Information Privacy Professional) or CIPM (Certified Information Privacy Manager).
• Preferred : ISO 27001 Lead Implementer, CDPSE (Certified Data Privacy Solutions Engineer).
• Advantageous : Cloud-specific certifications.

REQUIRED EXPERIENCE

• 3+ years in data protection, privacy compliance, or PII governance roles.
• Demonstrated experience conducting PIAs, managing DSARs, and responding to data breaches.
• Proven track record in implementing GDPR / CCPA / Qatar PDPPL requirements within complex organizations.
• Familiarity with third-party risk management frameworks and contract negotiation.

IDEAL CANDIDATE PROFILE

You are a detail-oriented professional with a deep understanding of global privacy regulations and the technical acumen to translate legal requirements into actionable controls. You thrive in collaborative environments, excel at simplifying complex privacy concepts for non-technical stakeholders, and are passionate about fostering a privacy-first culture. Your ability to balance proactive risk mitigation with operational efficiency will be critical in protecting the organization’s reputation and maintaining stakeholder trust.

• Skillset Required : Proactive, Loss Prevention, Iso 27001, Devops, Azure, Policy Development, Information Security, Compliance, Intellect, Python, Data Handling, Workflow, Iam, Excel, Triggers, Detail-oriented, Sql, Design Principles, Trends

Nair Systems is currently looking Data Privacy Officer for our Qatar operations with the following terms & conditions.

Knowledge & Experience:

• Bachelor's degree in law, Information Security, Data/IT, or related; advanced certification preferred (e.g., CIPP/E, CIPM, ISO 27701 Lead Implementer).

• 8–12 years' experience including 4+ in privacy/data governance, ideally within insurance/financial services and healthcare data contexts.

• Demonstrated experience in building privacy frameworks, PIAs/ROPA, third-party risk, incident response, and regulatory liaison.

• Deep knowledge of Qatar PDPL and QCB Data Handling & Protection Regulation; familiarity with international standards (e.g., ISO 27701/27001).

• Independence of mind and absence of operational conflicts.

SKILLS & COMPETENCIES:

• Deep knowledge of Qatar's Personal Data Privacy Law (Law No. 13 of 2016) and relevant QCB/QFMA rules, with the ability to turn legal requirements into practical policies and controls.

• Proven experience leading PIAs (privacy impact assessments) and maintaining the ROPA (record of processing activities) across systems and business units.

• Third-party & data-transfer governance: vendors, enforces DPAs, and ensures appropriate safeguards for cross-border processing.

• Training & culture: designs privacy training, builds awareness, and tracks KPIs/audit readiness to drive continuous improvement

Joining time frame: 2 weeks (maximum 1 month)

Should you be interested in this opportunity, please send your latest resume in MS Word format at the earliest

Job Summary
We mandated to hired a highly skilled Data Privacy Engineer to design, implement, and maintain privacy-focused systems in compliance with Qatar’s Personal Data Privacy Protection Law (PDPPL) and global privacy standards. The role requires expertise in translating privacy requirements into technical solutions, conducting privacy impact assessments, and embedding privacy into system architecture. The successful candidate will bring hands-on technical proficiency, strong regulatory knowledge, and experience working in Qatar or the GCC, ensuring alignment with Qatar’s regulatory environment, cybersecurity mandates, and organizational compliance priorities .

Key Responsibilities

• Implement and manage privacy engineering solutions ensuring compliance with Qatar’s PDPPL , GDPR, CCPA/CPRA, and other global data protection regulations.

• Collaborate with legal, compliance, and IT governance teams to align technical controls with Qatar’s National Cybersecurity Frameworks and industry standards.

• Design and maintain systems for data classification, mapping, and Data Loss Prevention (DLP) to safeguard sensitive personal and national information.

• Conduct Privacy Impact Assessments (PIAs), Data Transfer Impact Assessments (DTIAs), and Records of Processing Activities (ROPAs) for new and existing systems.

• Develop and deliver privacy training programs for employees handling personal and sensitive data in Qatar , ensuring awareness of local and international obligations.

• Oversee privacy governance for tracking technologies and cross-border data transfers , ensuring compliance with Qatar’s Ministry of Communications and Information Technology (MCIT) guidelines .

• Configure, manage, and optimize privacy tools such as OneTrust, Archer GRC, BigID, SecuritiAI, MS Purview , and others.

• Support incident response, regulatory reporting, and breach notifications in line with Qatar’s Data Privacy Law requirements.

• Provide executive-level reporting to senior leadership and regulators, demonstrating compliance readiness.

• Stay updated on evolving privacy regulations in Qatar, GCC, and globally , and adjust technical frameworks accordingly.

Qualifications

• Bachelor’s or Master’s degree in Information Technology, Cybersecurity, Computer Science, or related field.

• 7+ years of experience in privacy engineering, data governance, or data protection, ideally with experience in Qatar or GCC markets .

• Strong knowledge of Qatar’s PDPPL , GDPR, UK-GDPR, HIPAA, NIST, ISO/IEC 27701, ISO 27001, PCI-DSS, and other global privacy frameworks.

• Hands-on expertise with cloud and on-premises environments : AWS, Azure, GCP, Kubernetes.

• Certifications strongly preferred: CIPT, CIPP/E, CIPM, FIP , or equivalent.

• Proficiency in SQL, Python, and reporting tools (Power BI, Tableau).

• Strong stakeholder management and ability to work with multicultural teams in Qatar’s government and private sector .

• Bilingual proficiency in English and Arabic is mandatory.

Responsible for developing, implementing, and maintaining comprehensive data privacy and governance frameworks in alignment with international data protection regulations and organizational policies in the health sector.

Required Candidate profile

Certified Data Privacy Professional (CIPP, CIPM, CIPT, or equivalent).

Strong understanding of healthcare data regulations (e.g. HIPAA, PDPL, GDPR)

Knowledge of Electronic Health Records (EHR) systems