81 Head Of Information Security Governance jobs in Qatar

Role Purpose

The Information Security Officer (ISO) will be responsible for developing, implementing, and overseeing the bank’s information security strategy, policies, and controls. The role ensures that the bank’s data, systems, applications, and infrastructure are safeguarded against internal and external threats while meeting local regulatory requirements (QCB, QFCRA, NCSA-Q) and international standards (ISO 27001, NIST, GDPR, PCI-DSS as relevant).

Governance & Compliance

• Establish, maintain, and enforce the bank’s information security framework, aligned with QCB, QFCRA, and local cybersecurity regulations.
• Ensure compliance with international standards (ISO 27001, NIST CSF, COBIT, PCI-DSS) and conduct regular gap analyses.
• Prepare and present security risk assessments and reports to senior management, regulators, and the Board Risk Committee.
• Design, implement, and enforce security policies and procedures to safeguard the bank’s infrastructure and data.

Security Operations

• Oversee Security Operations Center (SOC) activities, incident response, and threat intelligence monitoring.
• Develop and maintain business continuity, disaster recovery, and incident response plans.
• Implement and monitor Data Loss Prevention (DLP), intrusion detection/prevention (IDS/IPS), endpoint protection, and other security tools.
• Lead investigations of security breaches, develop strategies for handling incidents, and ensure lessons learned are integrated into policies and processes.
• Stay current with the latest security systems, standards, and products to ensure optimal protection.
• Regularly evaluate the effectiveness of security measures and update them against emerging threats and industry best practices.
• Conduct regular staff training on security awareness, best practices, and incident procedures.
• Collaborate with IT and business management to continuously improve security controls and culture.

Risk Management

• Conduct enterprise-wide risk assessments on systems, applications, vendors, and third-party service providers.
• Identify vulnerabilities and ensure timely remediation through patch management and secure configurations.
• Work with IT and business units to integrate security into new product initiatives.

Vendor & Technology Oversight

• Evaluate and approve technology vendors, outsourcing partners, and cloud solutions for compliance with security standards.
• Manage penetration tests, vulnerability assessments, and external audits.

Requirements

• Bachelor’s degree in information security, Computer Science, or related field. Master’s degree preferred.
• Professional certifications: CISSP or CISM required; CISA and ISO 27001 Lead Implementer preferred.
• Cloud security certifications (e.g., CCSP, AWS Security) are a plus.
• 8–12 years in information security, with at least 5 years in the financial-services sector.
• Strong background in banking systems, digital channels, payment systems, and regulatory environments.
• Proven experience engaging with regulators (QCB, QFCRA, CMA, or equivalent).
• Proven experience in implementing SEIM Solutions, managing SOC Team.
• Expertise in cybersecurity frameworks, network security, cryptography, and identity & access management.
• Strong risk management and analytical skills.
• Excellent communication and stakeholder-management skills, capable of engaging effectively with regulators, auditors, and the Board.
• Ability to influence across departments, build a culture of security, and lead change initiatives without direct authority

Company Description Job Description

We are currently looking Senior Information Security Manager for our Qatar operations with the following terms & conditions.

Education & Experience Requirements:

• Bachelor's degree preferably in computer science, computer engineering or related subjects. Master's degree
• preferred.
• At least 8 years of relevant experience, preferably within a highly rated international bank or large corporate in an
• information security engineering capacity.
• Professional certification such as CISSP, CISM, CISA is mandatory
• Security engineering certifications and qualifications in Microsoft operating systems (such as Azure, MCSA,
• MCSE, et al) or Linux (such as RHCP, et al) are mandatory.

Required Special Skills:

• Excellent understanding of Information security technologies including firewalls, proxies, web application firewalls,
• IDS/IPS, ATP and sandbox solutions, EDR, vulnerability scanners, DLP, data classification tools, PAM, IAM,

Joining time frame: 2 weeks (maximum 1 month)

Additional Information

Terms and conditions:

Joining time frame: maximum 4 weeks

Nair Systems
is currently looking
Senior Manager, Security Technology Engineering
for our
Qatar
operations with the following terms & conditions.

Education & Experience Requirements:

·   Bachelor's degree preferably in computer science, computer engineering or related subjects. Master's degree

·   preferred.

·   At least 8 years of relevant experience, preferably within a highly rated international bank or large corporate in an

·   information security engineering capacity.

·   Professional certification such as CISSP, CISM, CISA is mandatory

·   Security engineering certifications and qualifications in Microsoft operating systems (such as Azure, MCSA, MCSE, et al) or Linux (such as RHCP, et al) are mandatory.

Required Special Skills:

·   Excellent understanding of Information security technologies including firewalls, proxies, web application firewalls,

·   IDS/IPS, ATP and sandbox solutions, EDR, vulnerability scanners, DLP, data classification tools, PAM, IAM,

·   DDOS mitigation systems and more

·   Good understanding of infrastructure and application security controls.

·   Ability to communicate information security-related concepts to a broad spectrum of technical and non-technical staff.

·   Risk Management skills (risk identification, risk assessment, risk mitigation)

·   Maintain an understanding of all pertinent regulations as well as best practices pertaining to information security.

·   Self-motivated, eye for detail.

·   Ability to persuade others.

·   Flexible team player and able to work and deliver under pressure.

·   Ability to inspire and motivate others to gain commitment.

Should you be interested in this opportunity, please send your latest resume in MS Word format at the earliest

Job Description

We are currently looking Information Security Manager for our Qatar operations with the following terms & conditions.

Education & Experience Requirements:

• Bachelor's degree preferably in computer science, computer engineering or related subjects. Master's degree
• preferred.
• At least 8 years of relevant experience, preferably within a highly rated international bank or large corporate in an
• information security engineering capacity.
• Professional certification such as CISSP, CISM, CISA is mandatory
• Security engineering certifications and qualifications in Microsoft operating systems (such as Azure, MCSA,
• MCSE, et al) or Linux (such as RHCP, et al) are mandatory.

Required Special Skills:

• Excellent understanding of Information security technologies including firewalls, proxies, web application firewalls,
• IDS/IPS, ATP and sandbox solutions, EDR, vulnerability scanners, DLP, data classification tools, PAM, IAM,
• DDOS mitigation systems and more
• Good understanding of infrastructure and application security controls.
• Ability to communicate information security-related concepts to a broad spectrum of technical and non-technical staff.
• Risk Management skills (risk identification, risk assessment, risk mitigation)
• Maintain an understanding of all pertinent regulations as well as best practices pertaining to information security.
• Self-motivated, eye for detail.
• Ability to persuade others.
• Flexible team player and able to work and deliver under pressure.
• Ability to inspire and motivate others to gain commitment.

Joining time frame: 2 weeks (maximum 1 month)