34 Firewall Engineer jobs in Qatar

GBM is hiring a experienced and highly motivated Mid-Career Network Security Engineer to join our information security team. The ideal candidate will be responsible for designing, implementing, maintaining, and troubleshooting our organization’s network security infrastructure. This role requires a strong understanding of network protocols, security principles, and a proven ability to protect sensitive data and systems from evolving cyber threats. This position demands a balance between technical expertise and strong client-facing skills, focusing on network security solutions.

Key Responsibilities:

• Design, implement, and manage network security solutions, including firewalls (e.g., Palo Alto, Cisco ASA, Fortinet), intrusion detection/prevention systems (IDS/IPS), VPNs, web application firewalls (WAFs) and other security appliances.
• Monitor network security systems for anomalies, alerts and potential security breaches, and respond effectively to incidents.
• Conduct vulnerability assessments and penetration testing to identify and address security weaknesses in the network infrastructure.
• Develop, implement, and enforce network security policies, standards, and procedures in alignment with industry best practices and compliance requirements.
• Perform reviews of network configurations to ensure compliance and identify areas for improvement.
• Administer and troubleshoot network devices such as routers, switches, and wireless access points, with a focus on their security configurations.
• Participate in the evaluation and selection of new security technologies and tools.
• Collaborate with IT operations, development teams, and other stakeholders to integrate security into all phases of the system development lifecycle.
• Develop and maintain comprehensive documentation for network security architecture, configurations, and procedures.
• Stay up-to-date with the latest security trends, threats, vulnerabilities and technologies.
• Provide technical guidance and mentorship to team members as needed.

Requirements:

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity or a related field.
  (Relevant experience may substitute for a degree).
• 5 to 8 years of progressive experience in network security engineering or a similar role.
• Strong expertise with various security technologies, including:
  • Next Generation Firewalls (e.g., Palo Alto Networks, Cisco ASA, Fortinet).
  • IDS/IPS solutions.
  • VPN technologies (IPsec, SSL VPN).
  • Network Access Control (NAC) solutions.
  • SIEM (Security Information and Event Management) platforms.
  • Symantec (Broadcom) Web Proxy
  • Endpoint security solutions (AV and EDR).
• In-depth knowledge of networking protocols and services: TCP/IP, DNS, DHCP, HTTP/S, BGP, OSPF, VLANs, etc.
• Proven experience in incident response, forensics, and remediation.
• Excellent problem-solving, analytical, and communication skills.
• Ability to work independently and as part of a team in a fast-paced environment.
• Collaboration with pre-sales, project team, vendors and contractors.
• Strong attention to detail and commitment to security best practices.
• Sound experience in implementing multi-vendor security solutions.

Preferred Skills and Certifications:

Any of the below mentioned skills/certifications would be preferred.

• Professional level security certifications (e.g: CCNP Security, PCNSE, etc .) — Must
• Certified experience with Cisco ISE — Must
• Certified Information Systems Security Professional (CISSP) — Preferred
• Certified Ethical Hacker (CEH) — Preferred
• CompTIA Security+ — Preferred
• Competitive salary and benefits.
• Opportunity to work on innovative projects.
• Collaborative and flexible work environment.
• Opportunities for professional development and learning.

How To Apply:

Submit your updated resume and a cover letter detailing your experience as Network Security Engineer

#J-18808-Ljbffr

ROLE PURPOSE The L2 Network Security Engineer will be responsible for designing, implementing, and maintaining network security solutions to protect the organization's data and systems. You will work closely with other IT teams to ensure the security and integrity of the network infrastructure. ROLES & RESPONSIBILITIES Design and implement Cisco-based network security architectures, including firewalls, intrusion prevention systems, VPNs, and access control lists (ACLs). Configure and manage Cisco security products, such as PaloAlto, FortiGate, Cisco Firepower, Cisco ASA, Cisco Umbrella, and Cisco ISE. Coordinate with vendors for product support, updates, and upgrades. Develop and implement network security policies, standards, and procedures. Configure, monitor, and maintain firewalls to control network access and protect against unauthorized intrusion. Implement and manage intrusion detection and prevention systems (IDS / IPS) to identify and mitigate security threats. Configure and manage virtual private networks (VPNs) to enable secure remote access. Investigate and respond to security incidents, including data breaches and unauthorized access. Handle escalated security incidents from L1 support and manage incident response processes. Perform in-depth analysis of security breaches and vulnerabilities. Coordinate with relevant teams for incident containment, eradication, and recovery. Manage, configure, and troubleshoot security appliances like firewalls, VPNs, intrusion prevention systems (IPS), and web proxies. Apply firewall policies and rules to ensure compliance with organizational security policies. Work with other departments, such as network and systems engineers, to implement and manage security solutions. Coordinate patch management activities, ensuring all security patches and updates are applied across systems and network devices in a timely manner. REQUIRED COMPETENCIES Industry certifications such as Cisco Certified Network Professional (CCNP Security). Experience: 10+ years of experience in network engineering or administration, with exposure to complex troubleshooting and network security management. Technical Skills : CCNP Security or equivalent certification. Experience with Advanced Malware Protection (AMP) PaloAlto, FortiGate, Cisco Identity Services Engine (ISE), FMC & FTD, ASA. Experience with VPNs and network access control (NAC). Familiarity with tools like SolarWinds, Nagios, or PRTG for monitoring network performance. Familiarity with SD-WAN technologies. Experience working in cross-functional IT teams and with third-party vendors. Ability to communicate technical issues clearly with both technical and non-technical stakeholders. Excellent problem-solving and analytical skills. Strong communication and interpersonal skills. Ability to work independently and as part of a team. EXPERIENCE AND QUALIFICATION o Bachelor's degree in Computer Science, Information Technology, or a related field.

#J-18808-Ljbffr

GBM is hiring a experienced and highly motivated Mid-Career Network Security Engineer to join our information security team. The ideal candidate will be responsible for designing, implementing, maintaining, and troubleshooting our organization’s network security infrastructure. This role requires a strong understanding of network protocols, security principles, and a proven ability to protect sensitive data and systems from evolving cyber threats. This position demands a balance between technical expertise and strong client-facing skills, focusing on network security solutions. Key Responsibilities: Design, implement, and manage network security solutions, including firewalls (e.g., Palo Alto, Cisco ASA, Fortinet), intrusion detection/prevention systems (IDS/IPS), VPNs, web application firewalls (WAFs) and other security appliances. Monitor network security systems for anomalies, alerts and potential security breaches, and respond effectively to incidents. Conduct vulnerability assessments and penetration testing to identify and address security weaknesses in the network infrastructure. Develop, implement, and enforce network security policies, standards, and procedures in alignment with industry best practices and compliance requirements. Perform reviews of network configurations to ensure compliance and identify areas for improvement. Administer and troubleshoot network devices such as routers, switches, and wireless access points, with a focus on their security configurations. Participate in the evaluation and selection of new security technologies and tools. Collaborate with IT operations, development teams, and other stakeholders to integrate security into all phases of the system development lifecycle. Develop and maintain comprehensive documentation for network security architecture, configurations, and procedures. Stay up-to-date with the latest security trends, threats, vulnerabilities and technologies. Provide technical guidance and mentorship to team members as needed. Requirements: Bachelor’s degree in Computer Science, Information Technology, Cybersecurity or a related field. (Relevant experience may substitute for a degree). 5 to 8 years of progressive experience in network security engineering or a similar role. Strong expertise with various security technologies, including:

Next Generation Firewalls (e.g., Palo Alto Networks, Cisco ASA, Fortinet). IDS/IPS solutions. VPN technologies (IPsec, SSL VPN). Network Access Control (NAC) solutions. SIEM (Security Information and Event Management) platforms. Symantec (Broadcom) Web Proxy Endpoint security solutions (AV and EDR).

In-depth knowledge of networking protocols and services: TCP/IP, DNS, DHCP, HTTP/S, BGP, OSPF, VLANs, etc. Proven experience in incident response, forensics, and remediation. Excellent problem-solving, analytical, and communication skills. Ability to work independently and as part of a team in a fast-paced environment. Collaboration with pre-sales, project team, vendors and contractors. Strong attention to detail and commitment to security best practices. Sound experience in implementing multi-vendor security solutions. Preferred Skills and Certifications: Any of the below mentioned skills/certifications would be preferred. Professional level security certifications (e.g: CCNP Security, PCNSE, etc .) — Must Certified experience with Cisco ISE — Must Certified Information Systems Security Professional (CISSP) — Preferred Certified Ethical Hacker (CEH) — Preferred CompTIA Security+ — Preferred Competitive salary and benefits. Opportunity to work on innovative projects. Collaborative and flexible work environment. Opportunities for professional development and learning. How To Apply: Submit your updated resume and a cover letter detailing your experience as Network Security Engineer

#J-18808-Ljbffr

Join to apply for the

Senior Network Security Engineer

role at

Commercial Bank Join to apply for the

Senior Network Security Engineer

role at

Commercial Bank About Commercial Bank Of Qatar

Commercial Bank, founded in 1975 and headquartered in Doha, plays a vital role in Qatar’s economic development by offering a range of personal, business, government, international and investment services. We believe in empowering our employees, providing them with opportunities for growth and professional development. About Commercial Bank Of Qatar

Commercial Bank, founded in 1975 and headquartered in Doha, plays a vital role in Qatar’s economic development by offering a range of personal, business, government, international and investment services. We believe in empowering our employees, providing them with opportunities for growth and professional development.

By Joining us, you’ll be part of a workplace culture that fosters innovation, supports work-life balance, and encourages you to reach your full potential.

Join us in shaping the future of banking!

Job Summary

The Senior Network Security Engineer will be responsible for implementing, supporting and maintaining the Network Security Solutions and Infrastructure of CBQ, ensuring the highest level of Security, Availability, Resiliency and performance levels based on best practices and Industry standards.

Establish technical priorities, standards and procedures, ensure sufficient network/system capacities for organizational needs. Be a key member in defining IT strategy.

Key Accountabilities

Implementation, Configuring, troubleshooting and monitoring of all the network security devices within the bank, which includes Firewalls ( Cisco ASA, Check Point, Palo-Alto, Firepower) Symantec Proxy, CAS, WSS Ironport Email Security Tipping Point Intrusion Prevention System & SMS Sonicwall SSL VPN TrendMicro Apex one RSA Authentication Manager Forescout NAC Cisco ISE F5 LTM, ASM Design, implement and manage enterprise wide multi-tiered, secure and high availability infrastructure based on best practices & banks policy. Upgrading firmwares of all devices, remediating vulnerabilities based on the advisories. Provide accurate problem diagnosis and solutions. Daily monitoring and housekeeping of the Network Security Devices and support for any network security related issues around the clock. Remain proficient in support scope of the Network Security Environment. Maintain service guidelines as outlined by CBQ. Taking configuration backups of network security devices. Well versed in using Wireshark and other packet capture methods to troubleshoot encrypted & unencrypted traffic.

Other Accountabilities

Coordinating with vendors to get level 2 and 3 support in case of critical situations. Perform on-demand activities based on the projects or adhoc request from the management. Coordinating with internal IT and application support teams to facilitate their requirements on timely basis. Stream line support and monitoring to improve overall network efficiency. Day to day network troubleshooting and maintaining best practices and lessons learned. Responsible to provide highest level of service availability, restoring business services from network outages, participating in Incident & Problem management. Technology Refreshments – Technical consulting, BoQ validation and implementation / migration support. Carrying out periodic / planned failover testing & DR Drills. Project coordination, initiation, implementation and closure support to project management team. Hardening the devices as per Industry standards & CBQ policies.

Availability for support outside working days & working hours.

Key Competencies

Quick Problem solving & Analytical skills. Self-Initiative. Ability to work under pressure. Adaptability to CB Environment & Work Culture. Must possess good work ethics. Capable to work independently with minimal guidance and be team player.

Qualifications And Experiences

Bachelor in Engineering or Computer Science. Must have 8+ years of experience in enterprise level network security domain. Must possess valid certifications CCSA, CCSE, CCIE Security. Must have enterprise level network implementation, migration & operational experiences. Hands on experience with various security protocols.

Well versed & hands-on in emerging technologies related to Security domain.

Why Commercial Bank?

Best Digital Bank in the Middle East 2024 by World Finance and Best Mobile Banking App in the Middle East 2024 by Global Finance. An Innovation-Driven, Digital-First Environment where employees work with the latest tools and technologies to redefine banking Opportunities for Global Partnerships & International Exposure, connecting employees with global networks and perspectives. A focus on Employee Well-being & Work-Life Balance, ensuring a healthy and supportive environment for all team members Competitive Compensation & Benefits that ensure our employees are rewarded for their dedication and performance A strong Commitment to Diversity, Equity & Inclusion, fostering a culture that values every individual’s unique perspective

At Commercial Bank, we don’t just offer careers, We shape futures by pioneering

digital transformation

in Qatar’s banking sector, blending

digital-first

approach to redefine banking through

innovative

solutions.

Disclaimer

We appreciate your interest in joining CBQ! Please note that only selected candidates will be contacted for further steps in the hiring process. This job posting is for informational purposes only, and CBQ reserves the right to modify, withdraw, or close it at any time without notice. Seniority level

Seniority level Mid-Senior level Employment type

Employment type Full-time Job function

Job function Information Technology Industries Banking Referrals increase your chances of interviewing at Commercial Bank by 2x Get notified about new Senior Network Security Engineer jobs in

Doha, Qatar . We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

We are seeking a highly skilled System Security Engineer to strengthen our cybersecurity posture across on-premise and hybrid environments. The ideal candidate will have a strong background in Windows infrastructure security, identity and access management, scripting, and compliance frameworks. This role is critical to ensuring the protection, integrity, and resilience of our IT systems, while supporting secure business operations and digital transformation initiatives.

Key Responsibilities:

• Design, implement, and manage security solutions across Active Directory, ADFS, and Exchange (on-premise and hybrid).
  
• Harden and secure endpoints, infrastructure, and communications systems against evolving cyber threats.
  
• Automate security tasks and perform system audits using PowerShell and other scripting tools.
  
• Manage patching processes using WSUS, SCCM, or third-party tools.
  
• Integrate security logs and data into SIEM platforms and support threat detection/response initiatives.
  
• Collaborate with IT and business units to enforce identity and access management policies including MFA and Zero Trust architectures.
  
• Support compliance efforts aligned with ISO 27001, NIST, and CIS Controls.
  
• Assess and respond to security incidents using frameworks like MITRE ATT&CK.
  
• Continuously evaluate and improve system and application security controls.
  

RequirementsQualifications:

Required:

• Bachelor’s degree in Information Security, Computer Engineering, or related field.
  
• One or more of the following certifications:
  
  

-Microsoft Certified: Security Operations Analyst
Associate (MS-SC200)

-Microsoft Certified: Identity and Access
Administrator Associate (SC-300)

-Microsoft Certified Cybersecurity Architect
Expert

Preferred:

• Master’s degree in Information Security or Computer Engineering
  
• Additional certifications such as:
  
  

-Systems Security Certified Practitioner (SSCP)

-CompTIA Cybersecurity Analyst (CySA+)

-Certified Information Systems Security
Professional (CISSP)

Experience & Knowledge Requirements:

• 5+ years of experience in Windows infrastructure
  security (Active Directory, Exchange, endpoint hardening)
  
• In-depth knowledge of:
  

- Active Directory (LDAP, Kerberos, Group Policy,
ADFS)

- Exchange security (transport rules,
SPF/DMARC/DKIM, hybrid configurations)

- Patch management systems (WSUS, SCCM, etc.)

• Strong
  PowerShell scripting capabilities for security automation and audits
  
• Proficient in
  Zero Trust architecture and multi-factor authentication practices
  
• Understanding
  of compliance frameworks: ISO 27001, NIST, CIS Controls
  
• Experience
  integrating with on-premise SIEM solutions
  
• Familiarity
  with MITRE ATT&CK and advanced threat detection techniques
  
• Solid
  background in systems, networks, and/or application security
  

Skills
Requirements:

• Security architecture and system
  hardening
  
• Scripting and automation (PowerShell)
  
• Threat detection, SIEM integration, and
  log analysis
  
• Identity and access management (IAM)
  
• Compliance and regulatory knowledge
  
• Problem-solving and incident response
  
• Strong communication and documentation
  skills
  

#J-18808-Ljbffr

BAE Systems Strategic Aerospace Services WLL | Full time

We are seeking a highly skilled System Security Engineer to strengthen our cybersecurity posture across on-premise and hybrid environments. The ideal candidate will have a strong background in Windows infrastructure security, identity and access management, scripting, and compliance frameworks. This role is critical to ensuring the protection, integrity, and resilience of our IT systems, while supporting secure business operations and digital transformation initiatives.

Key Responsibilities:

• Design, implement, and manage security solutions across Active Directory, ADFS, and Exchange (on-premise and hybrid).
  
• Harden and secure endpoints, infrastructure, and communications systems against evolving cyber threats.
  
• Automate security tasks and perform system audits using PowerShell and other scripting tools.
  
• Manage patching processes using WSUS, SCCM, or third-party tools.
  
• Integrate security logs and data into SIEM platforms and support threat detection/response initiatives.
  
• Collaborate with IT and business units to enforce identity and access management policies including MFA and Zero Trust architectures.
  
• Support compliance efforts aligned with ISO 27001, NIST, and CIS Controls.
  
• Assess and respond to security incidents using frameworks like MITRE ATT&CK.
  
• Continuously evaluate and improve system and application security controls.
  

Requirements

Qualifications:

Required:

• Bachelor’s degree in Information Security, Computer Engineering, or related field.
  

One or more of the following certifications:

- Microsoft Certified: Security Operations AnalystAssociate (MS-SC200)

- Microsoft Certified: Identity and AccessAdministrator Associate (SC-300)

- Microsoft Certified Cybersecurity ArchitectExpert

Preferred:

• Master’s degree in Information Security or Computer Engineering
  

Additional certifications such as:

- Systems Security Certified Practitioner (SSCP)

- CompTIA Cybersecurity Analyst (CySA+)

- Certified Information Systems SecurityProfessional (CISSP)

Experience & Knowledge Requirements:

• 5+ years of experience in Windows infrastructuresecurity (Active Directory, Exchange, endpoint hardening)
  
• In-depth knowledge of:
  

- Active Directory (LDAP, Kerberos, Group Policy,ADFS)

- Exchange security (transport rules,SPF/DMARC/DKIM, hybrid configurations)

• StrongPowerShell scripting capabilities for security automation and audits
  
• Proficient inZero Trust architecture and multi-factor authentication practices
  
• Understandingof compliance frameworks: ISO 27001, NIST, CIS Controls
  
• Experienceintegrating with on-premise SIEM solutions
  
• Familiaritywith MITRE ATT&CK and advanced threat detection techniques
  
• Solidbackground in systems, networks, and/or application security
  

SkillsRequirements:

• Security architecture and systemhardening
  
• Scripting and automation (PowerShell)
  
• Identity and access management (IAM)
  
• Compliance and regulatory knowledge
  
• Problem-solving and incident response
  
• Strong communication and documentationskills
  

#J-18808-Ljbffr

Join to apply for the Ubuntu Security Engineer role at Canonical

2 days ago Be among the first 25 applicants

Join to apply for the Ubuntu Security Engineer role at Canonical

Get AI-powered advice on this job and more exclusive features.

Canonical is a leading provider of open source software and operating systems to the global enterprise and technology markets. Our platform, Ubuntu, is very widely used in breakthrough enterprise initiatives such as public cloud, data science, AI, engineering innovation, and IoT. Our customers include the world's leading public cloud and silicon providers, and industry leaders in many sectors. The company is a pioneer of global distributed collaboration, with 1200+ colleagues in 75+ countries and very few office-based roles. Teams meet two to four times yearly in person, in interesting locations around the world, to align on strategy and execution.

The company is founder-led, profitable, and growing.

Canonical is building a team dedicated to providing security coverage across a wide range of ecosystems and environments, working to make the world a better, safer place. We are hiring an Ubuntu Security Engineer to join an industry-leading security engineering team and help protect the open source community and Ubuntu users from emerging threats. We are looking for candidates across all levels of experience, from Graduate to Senior.

As part of the Ubuntu Security Team, you will work with some of the best and brightest people in technology to monitor, triage, respond to, and document new and existing vulnerabilities in open source software. You will collaborate with internal teams and external partners to identify issues, prioritize them, and coordinate remediation.

This is an engineering-focused role that may also involve activities such as producing security assessments, building features, conducting code reviews, developing internal tools, engaging with the open source community, and participating in industry initiatives and events.

This role requires international travel at least twice a year, usually for one week. It also requires the ability to be productive in a globally distributed team through self-discipline and self-motivation.

Location: Worldwide, this is a globally remote role

The role entails

• Analyzing, fixing, and testing vulnerabilities in open source packages
• Keeping track of vulnerabilities in the Ubuntu ecosystem as they are discovered, researched, and fixed, leveraging internal tools
• Collaborating with other teams in the Ubuntu community and upstream developers, as needed, to exchange or develop vulnerability patches and ensure that Ubuntu includes the most robust security features
• Auditing source code for vulnerabilities
• Building features and tools to help teams strengthen the security of their products and contribute to the overall security of Ubuntu
  
  

What we are looking for in you

• You have a thorough understanding of the common categories of security vulnerabilities and techniques for fixing them
• You are familiar with coordinated disclosure practices
• You are familiar with open source development tools and methodologies
• You are skilled in one or more of C, Python, Go, Rust, Java, Ruby, PHP or JavaScript/TypeScript
• You have excellent logic, problem-solving, troubleshooting, and decision-making skills
• You can clearly and effectively communicate with the team and Ubuntu community members
• Experience with Linux (Debian or Ubuntu preferred)
• Excellent interpersonal skills, curiosity, flexibility, and accountability
• Appreciative of diversity, polite, and effective in a multi-cultural, multi-national organization
• Thoughtfulness and self-motivation
• Result-oriented, with a personal drive to meet commitments
  
  

What we offer colleagues

We consider geographical location, experience, and performance in shaping compensation worldwide. We revisit compensation annually (and more often for graduates and associates) to ensure we recognize outstanding performance. In addition to base pay, we offer a performance-driven annual bonus or commission. We provide all team members with additional benefits which reflect our values and ideals. We balance our programs to meet local needs and ensure fairness globally.

• Distributed work environment with twice-yearly team sprints in person
• Personal learning and development budget of USD 2,000 per year
• Annual compensation review
• Recognition rewards
• Annual holiday leave
• Maternity and paternity leave
• Team Member Assistance Program & Wellness Platform
• Opportunity to travel to new locations to meet colleagues
• Priority Pass and travel upgrades for long-haul company events
  
  

About Canonical

Canonical is a pioneering tech firm at the forefront of the global move to open source. As the company that publishes Ubuntu, one of the most important open-source projects and the platform for AI, IoT, and the cloud, we are changing the world of software. We recruit on a global basis and set a very high standard for people joining the company. We expect excellence; in order to succeed, we need to be the best at what we do. Most colleagues at Canonical have worked from home since our inception in 2004. Working here is a step into the future and will challenge you to think differently, work smarter, learn new skills, and raise your game.

Canonical is an equal opportunity employer

We are proud to foster a workplace free from discrimination. Diversity of experience, perspectives, and background create a better work environment and better products. Whatever your identity, we will give your application fair consideration.

Seniority level

• Seniority level Entry level

Employment type

• Employment type Full-time

Job function

• Job function Information Technology
• Industries Software Development

Referrals increase your chances of interviewing at Canonical by 2x

Sign in to set job alerts for “Security Engineer” roles. Junior Software Engineer - Cross-platform C++ - Multipass Software Engineer - Solutions Engineering Graduate Software Engineer, Open Source and Linux, Canonical Ubuntu Software Engineer - Cross-platform C++ - Multipass Software Engineer - Python - Container Images Software Engineer - Python - Container Images Software Engineer - Python - Container Images Distributed Systems Software Engineer, Python / Go Python and Kubernetes Software Engineer - Data, AI/ML & Analytics Software Engineer, Ceph & Distributed Storage Software Engineer - Immutable Ubuntu Desktop Python Software Engineer - Ubuntu Hardware Certification Team Software Engineer - Data Infrastructure - Kafka

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

Location: Qatar
Job Type: Full-Time
Experience Level: Minimum 2 years (Hands-on Security Implementation)
Industry: Government / Enterprise IT Security
Function: Information Security / Cybersecurity
Language: Bi-lingual preferred (English required; Arabic an advantage)

Job Summary:
We are seeking a technically proficient Enterprise Security Engineer to join a structured and security-focused IT environment. The ideal candidate will have hands-on experience in both network security and cybersecurity, working with technologies such as PAM, DLP, EDR/XDR, firewalls, NAC, and network security appliances. This role is based on-site in Qatar and is open to candidates with valid work authorization or the ability to relocate.

Key Responsibilities:
Implement and administer:

• Privileged Access Management (PAM)

• Data Loss Prevention (DLP)

• Endpoint Detection and Response (EDR/XDR)

• Firewalls and Network Security Appliances

• Network Access Control (NAC)
  Conduct vulnerability assessments and penetration testing
  Monitor and respond to real-time security alerts and incidents
  Manage patching and configuration of security appliances and systems
  Ensure compliance with security frameworks (e.g., NIST, ISO 27001)
  Collaborate with IT and development teams to embed secure design principles
  Support cloud security initiatives across AWS, Azure, or GCP
  Assist with incident investigations, documentation, and mitigation
  Continuously evaluate and recommend security tools and technologies

Optional Leadership Exposure:
Contribute to security risk management and compliance processes
Participate in developing enterprise-wide security governance and policies

Qualifications:
Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related discipline

Certifications (Preferred):
CISSP, CEH, CompTIA Security+, or equivalent

Skills & Competencies:
2+ years hands-on experience in cybersecurity and/or network security roles
Proficient in firewalls (Palo Alto, Fortinet, Cisco), SIEM, IDS/IPS, DLP, NAC, and vulnerability scanners
Experience in patch management and incident response
Familiar with ISO 27001, NIST Cybersecurity Framework, and CIS Controls
Knowledge of cloud security practices in AWS, Azure, or Google Cloud
Strong analytical thinking and troubleshooting skills
Excellent communication skills, with a preference for bi-lingual candidates (English required, Arabic preferred)

Work Environment & Compliance:
Must comply with internal health, safety, and information security protocols
Will interact with cross-functional teams and regulatory bodies

Application Instructions:
Interested applicants should submit their CV clearly highlighting their hands-on experience with PAM, EDR/XDR, NAC, and DLP systems. Only candidates with relevant and ongoing experience in security engineering will be considered.

#J-18808-Ljbffr

We are seeking a highly skilled

System Security Engineer

to strengthen our cybersecurity posture across on-premise and hybrid environments. The ideal candidate will have a strong background in Windows infrastructure security, identity and access management, scripting, and compliance frameworks. This role is critical to ensuring the protection, integrity, and resilience of our IT systems, while supporting secure business operations and digital transformation initiatives.

Key Responsibilities:

Design, implement, and manage security solutions across Active Directory, ADFS, and Exchange (on-premise and hybrid).

Harden and secure endpoints, infrastructure, and communications systems against evolving cyber threats.

Automate security tasks and perform system audits using PowerShell and other scripting tools.

Manage patching processes using WSUS, SCCM, or third-party tools.

Integrate security logs and data into SIEM platforms and support threat detection/response initiatives.

Collaborate with IT and business units to enforce identity and access management policies including MFA and Zero Trust architectures.

Support compliance efforts aligned with ISO 27001, NIST, and CIS Controls.

Assess and respond to security incidents using frameworks like MITRE ATT&CK.

Continuously evaluate and improve system and application security controls.

Requirements Qualifications:

Required:

Bachelor’s degree in Information Security, Computer Engineering, or related field.

One or more of the following certifications:

- Microsoft Certified: Security Operations Analyst Associate (MS-SC200)

- Microsoft Certified: Identity and Access Administrator Associate (SC-300)

- Microsoft Certified Cybersecurity Architect Expert

Preferred:

Master’s degree in Information Security or Computer Engineering

Additional certifications such as:

- Systems Security Certified Practitioner (SSCP)

- CompTIA Cybersecurity Analyst (CySA+)

- Certified Information Systems Security Professional (CISSP)

Experience & Knowledge Requirements:

5+ years of experience in Windows infrastructure security (Active Directory, Exchange, endpoint hardening)

In-depth knowledge of:

-

Active Directory (LDAP, Kerberos, Group Policy, ADFS)

-

Exchange security (transport rules, SPF/DMARC/DKIM, hybrid configurations)

-

Patch management systems (WSUS, SCCM, etc.)

Strong PowerShell scripting capabilities for security automation and audits

Proficient in Zero Trust architecture and multi-factor authentication practices

Understanding of compliance frameworks: ISO 27001, NIST, CIS Controls

Experience integrating with on-premise SIEM solutions

Familiarity with MITRE ATT&CK and advanced threat detection techniques

Solid background in systems, networks, and/or application security

Skills Requirements:

Security architecture and system hardening

Scripting and automation (PowerShell)

Threat detection, SIEM integration, and log analysis

Identity and access management (IAM)

Compliance and regulatory knowledge

Problem-solving and incident response

Strong communication and documentation skills

#J-18808-Ljbffr