143 Information Security jobs in Qatar
SR. SECURITY ANALYST
Posted 7 days ago
Job Viewed
Job Description
Lead and implement QatarEnergy Corporate Security Program and management systems, lead assurance, standardization of security operations for commercial, industrial, international assets.
Monitor geopolitical and security incidents, threats, and internal and external security risks to then evaluate, analyse, and create risk advice and business intelligence disseminated to all levels of QatarEnergy, Joint Ventures, governmental agencies in Qatar and overseas.
Guide and support QatarEnergy, Joint Ventures and governmental agencies in security response planning, security emergencies, business continuity and crisis management and provide best practice advise for security design and practice.
Experience
At least 15 years working experience with 10 years of in Operational Security, military, police; prefer experience in energy sector.
Qualifications
Bachelor's degree in Engineering/Science/Security or relevant discipline from an internationally recognized university; professional qualifications in Security highly desirable.
Exposure and good understanding of cyber security.
Excellent communication skills in English and preferably Arabic.
Strong leadership, management, decision making, networking, and influencing skills.
Ability to influence and guide senior management in QatarEnergy, external stakeholders.
Good understanding of the geopolitical security risks.
Information Security Analyst
Posted today
Job Viewed
Job Description
Information Security Analyst
We are hiring an Information Security Analyst to join our growing team in Umm-Salal. The ideal candidate will have a strong background in information security and a passion for protecting sensitive data. As an Information Security Analyst, you will be responsible for ensuring the confidentiality, integrity, and availability of our company's information systems. This includes conducting risk assessments, implementing security measures, and monitoring for potential threats.
Responsibilities:
- Conduct regular risk assessments to identify vulnerabilities and potential threats
- Develop and implement security policies and procedures to protect company data
- Monitor network activity and investigate any suspicious behavior or incidents
- Collaborate with IT teams to ensure proper security measures are in place for new systems or upgrades
- Stay informed about the latest trends and developments in information security
- Perform regular audits to ensure compliance with industry standards and regulations
- Train employees on best practices for information security awareness
- Respond promptly to any security breaches or incidents
Requirements:
- Bachelor's degree in Computer Science, Information Technology, or a related field
- Proven experience as an Information Security Analyst or similar role
- In-depth knowledge of network security protocols, firewalls, and intrusion detection systems
- Familiarity with risk assessment tools and techniques
- Strong understanding of industry standards such as ISO 27001/27002, NIST, or COBIT
- Excellent communication skills and ability to collaborate with cross-functional teams
- Relevant certifications such as CISSP, CISM, or GIAC are preferred but not required
Salary: 1200 USD per month
Employment Type: Full-time
Location: Umm-Salal
Preference: Indian candidates preferred
Language Requirement: Fluent in English
Note: This position does not include accommodation.
We are an equal opportunities employer and welcome applications from all qualified candidates.
Assistant Director AI security Architect
Posted today
Job Viewed
Job Description
About the Role:
The AI Security Architect is a senior customer-facing role responsible for designing and guiding the secure implementation of AI platforms and workloads across Ooredoo's enterprise and government client base. The role ensures that AI solutions delivered by Ooredoo are secure, compliant, and resilient tailored to meet the regulatory, operational, and risk requirements of each customer.
This role involves working directly with clients' IT, cybersecurity, and data science teams to advise on secure architectures for AI/ML, safeguard sensitive data, and ensure compliance with local and international standards such as Q-CERT, CRA, and GDPR.
Functional Context:This role sits within the Professional Services team and directly contributes to project acquisition and delivery. The Senior Manager leads the technical realization of AI solutions, ensuring architectural consistency, operational scalability, and compliance with local regulatory standards. The role collaborates closely with presales, delivery, and vendor teams to ensure successful execution of complex AI and infrastructure projects.
Key Responsibilities:- Lead security design and architecture for AI/ML solutions delivered to customers across sectors such as healthcare, public sector, energy, and finance.
- Develop and present secure AI reference architectures customized to each client's regulatory and operational environment.
- Design and implement security controls across the AI lifecycle, including model training, inference, data pipelines, and platform access.
- Ensure secure deployment of AI workloads in customer environments, whether on-premise, in hybrid infrastructure, or on public cloud platforms (Azure, AWS, GCP).
- Apply industry best practices for securing Kubernetes, containerized AI workloads, GPUs, APIs, and model endpoints.
- Work with customers to implement role-based access controls, encryption (at-rest and in-transit), audit logging, and identity federation for AI platforms.
- Support threat modeling, vulnerability assessments, and risk mitigation strategies tailored for AI workloads and data.
- Advise on model governance, explainability, and adversarial ML protection to ensure customer trust and regulatory alignment.
- Conduct workshops and technical sessions with customer security, IT, and data science teams to transfer knowledge and align on solution design.
- Collaborate with internal teams (Sales, Solution Architects, Delivery) to align customer-specific AI security designs with Ooredoo's offerings.
- Participate in customer RFPs and proposal development, ensuring all security aspects of AI solutions are clearly addressed.
- Stay up to date with AI security research, adversarial attack vectors, and new security tooling in the AI/ML space.
- Ensure all customer solutions adhere to applicable security standards (e.g., Q-CERT, CRA, GDPR, ISO 27001, NIST).
- Act as the key security advisor during customer AI solution design, pilot deployments, and production rollouts.
Bachelor's in Cybersecurity, Computer Engineering, or related fields (Master's preferred)
Minimum Experience, Essential Knowledge & Skills: Technical Expertise:- Minimum 12 years of experience
- 6+ years in technical consulting, solution architecture, or infrastructure engineering.
- 4+ years' experience with cloud and hybrid, or on premises infrastructure, architecture designs, migrations, industry standards, and/or technology management.
- Familiarity with enterprise platforms such as Azure, GCP, Oracle, and ISVs like VMware, and RedHat.
- Expertise in GPU-enabled architecture design, cloud migrations, and hybrid environments.
- Hands-on with Kubernetes, container platforms, and orchestration tools.
- Proficiency in AI/ML workflows and APIs (OpenAI, Azure AI, Hugging Face).
- Deep knowledge of networking (including InfiniBand) and security architectures in enterprise/cloud contexts.
- Experience working in or with telecom, government, or regulated industries.
- Familiarity with Qatari and regional ICT compliance standards (e.g., CRA, Q-CERT).
Ability to identify the customer requirements and convert them into a new potential AI use case or identify an existing use case, thereby helping Customer to build the AI solution
Strong Communication and Interpersonal Skills- Ability to collaborate effectively with various Customers and internal stakeholders and communicate complex Solutions and AI use cases clearly
Head of Information Security (Network Operations)
Posted today
Job Viewed
Job Description
Role Purpose:
Spearhead the development and execution of robust information security frameworks, emphasizing protection during mega sports events and non-event periods. Lead initiatives and deployment of the technologies to secure sensitive data and manage risks across various domains. Responsible for leading the strategy, architecture, and operations of secure network infrastructure across the organization. This role ensures all network environments-on-premises, hybrid, and cloud-are protected from evolving cyber threats through robust design, proactive controls, and continuous monitoring.
Responsibilities:
Design & Architecture
- Oversee design and enforcement of secure network architecture (core, distribution, access, and data center layers).
- Validate network security in new technology deployments (e.g., NGFW, IPS, DDoS protection, ZTNA, WAF, Proxy).
- Evaluate emerging technologies (SASE, micro segmentation) and recommend improvements.
Operations & Risk Management:
- Lead or oversee firewall management, rule reviews, and change control process.
- Ensure effective monitoring and incident response for network-based threats.
- Collaborate with SOC, IT Infrastructure, and Application teams to maintain layered defence.
- Professionals with domain expertise in the listed OEM technology platforms: Cisco NGFW, Palo Alto FW, Fortinet Firewalls, F5 WAF & Load Balancers, Email Gateways & Antispam solution.
Strategy and Governance
- Define and lead the enterprise network security strategy in alignment with business and regulatory requirements (e.g., NIST, ISO 27001, NCSA).
- Lead development of network segmentation, firewall policies, zero-trust architecture, and secure access initiatives.
- Own security controls across LAN/WAN, VPN, cloud connectivity, SD-WAN, and remote access environments.
- Responsible for preparing and Evaluating RFPs, technical proposals, and the IT security budget.
Leadership and Collaboration:
- Lead a team of network security engineers and analysts; coach, mentor, and build capability.
- Manage vendors and MSSP contracts related to perimeter and network security technologies.
- Represent network security in audits, risk reviews, and executive committees.
Skills:
- Strategic thinking and security architecture design
- Strong leadership and team management
- Cross-functional collaboration and stakeholder communication
- Analytical mindset and incident response capability
- Risk-based decision-making
Certifications:
- CISSP or similar OEM certifications
- Palo Alto PCNSE, Fortinet NSE certifications
- Cloud Security certifications (CCSP, Azure/Google cloud security certifications)
Engineer - Network Security
Posted today
Job Viewed
Job Description
Engineer - Network Security role at Galfar Al Misnad Engineering and Contracting W.L.L. The candidate should have deft knowledge in QatarEnergy Cyber Security Standards (OT/IT standards).
Responsibilities- Firewall hardening standards
- Hardening test standards
- Modbus firewall tests
- OPC/Exa OPC/Exa Quantum communication tests
- Firmware upgradation for firewalls, switches, and accessories
- AV and backup solutions
- Application Whitelisting
- User Management and Active Directory integration
- VLAN configurations and permissions
- USB decontamination solutions
- Anomaly detection systems
- IT security policies
Able to support in design, implementation, testing and commissioning of Software and Hardware related Cyber security as mentioned above.
Seniority level- Entry level
- Full-time
- Information Technology
- Construction
SR. INFORMATION SECURITY ANALYST
Posted today
Job Viewed
Job Description
Join to apply for the SR. INFORMATION SECURITY ANALYST role at QatarEnergy
Primary purpose of the jobGovernance and execution of the Information Security Management System (ISMS) including developing policies, standards and procedures required for the corporate information security in both an Information technology (IT) and Operational Technology (OT) capacity. Define required information security policies, standards and procedures related to their areas of operation as well as raising awareness of those polices, standards and procedures. Ensure adequate and effective IT controls exist to meet applicable current and future security compliance requirements. Conduct compliance and operational maturity assessments to ensure optimal operation of the information and operational technology environments under the guidelines of the ISMS. Develop reporting metrics, dashboards and evidences of compliance activities. Coordinate with IT stakeholders, project managers, and business owners to facilitate vendor risk assessments, due diligence review and security requirements definition. Maintain third-party assessment documentation. Stay updated on the latest security trends, emerging threats and best practices to continuously improve the overall security posture. Coordinate and align activities between Information Security and Business Continuity, and liaise within IT Department to ensure business continuity and disaster recovery plans are in place, tested, and report regularly. Carry out other Security related activities as assigned by team Lead.
Responsibilities- Governance and execution of the ISMS, including developing policies, standards and procedures for IT and OT security.
- Define information security policies, standards and procedures and raise awareness among stakeholders.
- Ensure IT controls meet current and future security compliance requirements.
- Conduct compliance and operational maturity assessments of IT and OT environments.
- Develop reporting metrics, dashboards, and evidences of compliance activities.
- Coordinate with IT stakeholders, project managers, and business owners for vendor risk assessments and due diligence.
- Maintain third-party assessment documentation.
- Stay updated on security trends and best practices to improve security posture.
- Coordinate with Business Continuity and IT to ensure disaster recovery plans are in place and tested.
- Perform other security activities as assigned by team lead.
- 10+ years of relevant professional experience.
- Experience with large ICS & ICT environments in the Energy sector, preferably in Oil & Gas.
- Experience with and understanding of customized information security management systems.
- Experience in defining Governance, Risk, and Compliance (GRC) processes and leveraging industry-standard GRC tools and products.
- Knowledge of information security capabilities and requirements analysis.
- Knowledge of relevant state laws, industry regulations, and security standards.
- Excellent written, verbal and presentation communication skills.
Bachelor degree in information security, computer science, or engineering.
- Professional certifications in information security management and standards compliance (e.g., CISSP, CISM, CRISC, GIAC, ISO27001, etc.) and experience with control frameworks (e.g., NIST Cybersecurity Control Framework).
- Not Applicable
- Full-time
- Information Technology
- Oil and Gas
Head of Information Security (Security Operations)
Posted 1 day ago
Job Viewed
Job Description
Spearhead the development and execution of robust information security frameworks, emphasizing protection during mega sports events and non-event periods. Lead initiatives and deployment of the technologies to secure sensitive data and manage risks across various domains.
Responsibilities- Security Operations Management
- Oversee daily SOC activities, including SIEM/SOAR monitoring, incident detection, and response.
- Lead triage and remediation of high-severity incidents.
- Ensure 24/7 monitoring coverage and SLA compliance.
- Drive proactive threat hunting, vulnerability management and intelligence-led operations.
- SOC Architecture and Design
- Lead the design, architecture, and optimization of SOC capabilities.
- Define SOC workflows, playbooks, escalation procedures, and KPIs.
- Ensure scalability and integration of IT and OT security monitoring.
- Continuously enhance SOC maturity based on industry standards (NIST, ISO 27001, MITRE ATT&CK).
- Risk and Incident Management
- Oversee incident investigations, forensic analysis, and root cause identification.
- Ensure lessons learned are documented and integrated into processes.
- Maintain crisis management readiness and coordinate executive updates.
- Align incident handling with regulatory and compliance requirements.
- Procurement and Vendor Management
- Lead RFP preparation, vendor evaluation, and procurement of SOC and cybersecurity tools.
- Manage vendor relationships and service-level reviews.
- Ensure security solutions meet compliance with Qatar-approved frameworks.
- Conduct cost-benefit and effectiveness analysis of deployed tools.
- OT Security Operations
- Integrate IT and OT monitoring within SOC environment.
- Ensure security of ICS/SCADA systems and critical infrastructure.
- Implement and oversee OT segmentation strategies.
- Monitor emerging threats targeting OT environments and coordinate mitigations.
- Compliance and Governance
- Ensure compliance with Qatar's NCSA framework and international standards.
- Develop, enforce, and update security policies and access controls.
- Conduct audits and assessments to measure security posture.
- Report compliance gaps and oversee remediation.
- Client & Stakeholder
- Act as the primary liaison with internal stakeholders, regulators, and external partners.
- Deliver clear and actionable reports to senior leadership.
- Provide consultations to application developers, network engineers, and OT teams.
- Represent the organization during audits and compliance reviews.
- Team Leadership and Development
- Manage and mentor SOC analysts, incident responders, and engineers.
- Define team structure, roles, and performance KPIs.
- Deliver training and awareness programs to enhance capabilities.
- Foster a culture of continuous improvement and knowledge sharing.
- Technology and Continuous Improvement
- Oversee deployment, maintenance, and optimization of SIEM, SOAR, EDR, firewalls, IDS/IPS, and sandboxing solutions.
- Drive automation and orchestration for efficiency gains.
- Evaluate emerging technologies and recommend adoption.
- Continuously refine processes to strengthen detection and response.
- Proven expertise in SOC architecture, design, and optimization.
- Experience in RFP preparation, vendor evaluation, and procurement of cybersecurity solutions.
- Strong background in incident response, threat intelligence, and risk management.
- Knowledge of IT and OT security integration, including ICS/SCADA environments and segmentation strategies.
- Familiarity with compliance and governance frameworks such as Qatar NCSA, ISO 27001, NIST, and MITRE ATT&CK.
- Demonstrated ability to manage cross-functional teams, crisis response, and executive-level reporting.
- CISSP (Certified Information Systems Security Professional)
- Or CISM (Certified Information Security Manager)
- Or CRISC (Certified in Risk and Information Systems Control)
- ISO/IEC 27001 Lead Implementer or Lead Auditor.
Be The First To Know
About the latest Information security Jobs in Qatar !
Senior Network Security Engineer
Posted 1 day ago
Job Viewed
Job Description
Join to apply for the Senior Network Security Engineer role at Commercial Bank
Join to apply for the Senior Network Security Engineer role at Commercial Bank
About Commercial Bank Of Qatar
Commercial Bank, founded in 1975 and headquartered in Doha, plays a vital role in Qatar's economic development by offering a range of personal, business, government, international and investment services. We believe in empowering our employees, providing them with opportunities for growth and professional development.
About Commercial Bank Of Qatar
Commercial Bank, founded in 1975 and headquartered in Doha, plays a vital role in Qatar's economic development by offering a range of personal, business, government, international and investment services. We believe in empowering our employees, providing them with opportunities for growth and professional development.
By Joining us, you'll be part of a workplace culture that fosters innovation, supports work-life balance, and encourages you to reach your full potential.
Join us in shaping the future of banking!
Job Summary
The Senior Network Security Engineer will be responsible for implementing, supporting and maintaining the Network Security Solutions and Infrastructure of CBQ, ensuring the highest level of Security, Availability, Resiliency and performance levels based on best practices and Industry standards.
Establish technical priorities, standards and procedures, ensure sufficient network/system capacities for organizational needs. Be a key member in defining IT strategy.
Key Accountabilities
- Firewalls ( Cisco ASA, Check Point, Palo-Alto, Firepower)
- Symantec Proxy, CAS, WSS
- Ironport Email Security
- Tipping Point Intrusion Prevention System & SMS
- Sonicwall SSL VPN
- TrendMicro Apex one
- RSA Authentication Manager
- Forescout NAC
- Cisco ISE
- F5 LTM, ASM
- Design, implement and manage enterprise wide multi-tiered, secure and high availability infrastructure based on best practices & banks policy.
- Upgrading firmwares of all devices, remediating vulnerabilities based on the advisories.
- Provide accurate problem diagnosis and solutions.
- Daily monitoring and housekeeping of the Network Security Devices and support for any network security related issues around the clock.
- Remain proficient in support scope of the Network Security Environment.
- Maintain service guidelines as outlined by CBQ.
- Taking configuration backups of network security devices.
- Well versed in using Wireshark and other packet capture methods to troubleshoot encrypted & unencrypted traffic.
- Coordinating with vendors to get level 2 and 3 support in case of critical situations.
- Perform on-demand activities based on the projects or adhoc request from the management.
- Coordinating with internal IT and application support teams to facilitate their requirements on timely basis.
- Stream line support and monitoring to improve overall network efficiency.
- Day to day network troubleshooting and maintaining best practices and lessons learned.
- Responsible to provide highest level of service availability, restoring business services from network outages, participating in Incident & Problem management.
- Technology Refreshments - Technical consulting, BoQ validation and implementation / migration support.
- Carrying out periodic / planned failover testing & DR Drills.
- Project coordination, initiation, implementation and closure support to project management team.
- Hardening the devices as per Industry standards & CBQ policies.
Key Competencies
- Quick Problem solving & Analytical skills.
- Self-Initiative.
- Ability to work under pressure.
- Adaptability to CB Environment & Work Culture.
- Must possess good work ethics.
- Capable to work independently with minimal guidance and be team player.
- Bachelor in Engineering or Computer Science.
- Must have 8+ years of experience in enterprise level network security domain.
- Must possess valid certifications CCSA, CCSE, CCIE Security.
- Must have enterprise level network implementation, migration & operational experiences.
- Hands on experience with various security protocols.
Why Commercial Bank?
- Best Digital Bank in the Middle East 2024 by World Finance and Best Mobile Banking App in the Middle East 2024 by Global Finance.
- An Innovation-Driven, Digital-First Environment where employees work with the latest tools and technologies to redefine banking
- Opportunities for Global Partnerships & International Exposure, connecting employees with global networks and perspectives.
- A focus on Employee Well-being & Work-Life Balance, ensuring a healthy and supportive environment for all team members
- Competitive Compensation & Benefits that ensure our employees are rewarded for their dedication and performance
- A strong Commitment to Diversity, Equity & Inclusion, fostering a culture that values every individual's unique perspective
Disclaimer
We appreciate your interest in joining CBQ! Please note that only selected candidates will be contacted for further steps in the hiring process. This job posting is for informational purposes only, and CBQ reserves the right to modify, withdraw, or close it at any time without notice. Seniority level
- Seniority level Mid-Senior level
- Employment type Full-time
- Job function Information Technology
- Industries Banking
Referrals increase your chances of interviewing at Commercial Bank by 2x
Get notified about new Senior Network Security Engineer jobs in Doha, Qatar .
We're unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
Associate Security Architect
Posted 2 days ago
Job Viewed
Job Description
Job Summary
The Security Architect plays a pivotal role in safeguarding the digital and physical assets of a water and electricity government company. As public utilities are essential to national well-being and economic stability, this position is both highly strategic and deeply technical. The Security Architect is responsible for designing, implementing, and maintaining robust security frameworks that protect the organization's critical infrastructure from a constantly evolving landscape of threats.
Key Responsibilities:
- Security Strategy & Architecture Design: Develop, update, and maintain the company's enterprise security architecture, ensuring alignment with best practices, regulatory requirements, and business objectives.
- Risk Assessment & Management: Conduct comprehensive risk assessments of information systems, operational technology (OT), and industrial control systems (ICS/SCADA) environments.
- Policy Development & Compliance: Lead the creation and enforcement of security policies, standards, and guidelines.
- Incident Response Planning: Design and test incident response and disaster recovery plans, ensuring rapid and coordinated responses to security incidents and breaches.
- Security Solutions Implementation: Oversee deployment of security solutions in both IT and OT environments.
- Governance, Risk, and Compliance (GRC): Work with internal and external auditors to assess and document compliance with security requirements.
- Vendor & Third-Party Security: Evaluate and manage security risks associated with vendors, contractors, and service providers.
- Security Awareness & Training: Develop and deliver training programs for employees and contractors, promoting a culture of security awareness and shared responsibility across the organization.
- Innovation & Continuous Improvement: Stay abreast of emerging threats, technologies, and regulatory requirements.
Required Qualifications:
- Bachelor's or Master's degree in Computer Science, Information Security, Cybersecurity, Engineering, or related field.
- Relevant certifications such as CISSP, CISM, SABSA, TOGAF, or equivalent.
- 5-10 years of hands-on experience in information security, preferably within critical infrastructure sectors.
- In-depth knowledge of security architecture methodologies and frameworks.
- Strong understanding of operational technology (OT) security, ICS/SCADA systems, and the unique challenges of securing industrial environments.
Preferred Skills & Attributes:
- Experience with cloud security architecture in hybrid environments.
- Familiarity with smart grid technologies, IoT security, and protocols used in water and electricity distribution networks.
- Knowledge of physical security systems (CCTV, access control, perimeter defenses) integrated with digital security operations.
Information Security Analyst
Posted 2 days ago
Job Viewed
Job Description
Information Security Analyst vacancy in Umm-Salal, Qatar.
We are currently hiring for the position of Information Security Analyst in Umm-Salal. As an Information Security Analyst, you will be responsible for protecting our company's sensitive information and ensuring the security of our systems and networks. Your main duties will include conducting security audits, identifying vulnerabilities and risks, implementing security measures, and responding to security incidents. You will also be responsible for educating employees on security best practices and keeping up-to-date with the latest security trends and technologies.
Responsibilities- Conduct security audits; identify vulnerabilities and risks; implement security measures; respond to security incidents.
- Educate employees on security best practices.
- Keep up-to-date with the latest security trends and technologies.
- Work with IT teams to protect information systems and networks.
- Strong understanding of information security principles.
- Experience with network and system security tools.
- A degree in computer science or a related field is preferred.
- Excellent communication skills to convey complex technical concepts to non-technical stakeholders.
- Detail-oriented with the ability to work independently and manage multiple tasks.
Salary: 1200$ per month. Opportunities for career growth.
How to ApplyIf you are passionate about protecting sensitive information and have the necessary skills and qualifications, we would love to hear from you. Apply now to join our dynamic team.