52 Information Security Isms Consultants jobs in Qatar

• This role is designed for a professional deeply committed to safeguarding sensitive personal data and ensuring compliance with global and regional data protection regulations (e.g., GDPR, CCPA, Qatar PDPPL). You will lead efforts to identify, classify, and protect PII across the organization while embedding privacy-by-design principles into business processes. Your responsibilities will span data lifecycle governance, third-party risk management, regulatory compliance, and incident response, ensuring that all data processing activities align with legal and ethical standards.
• This position requires a strategic thinker who can balance technical controls with regulatory requirements, collaborate cross-functionally to mitigate risks, and foster a culture of data privacy

KEY RESPONSIBILITIES

1. Data Governance & Compliance

Data Lifecycle Governance :

• Design and implement end-to-end data lifecycle policies to govern data from creation / collection to archival and secure deletion, ensuring compliance with legal, regulatory, and business requirements.
• Define retention schedules, archival protocols, and secure disposal methods for sensitive data (e.g., PII, financial records) in collaboration with legal and IT teams.

Data Classification

• Develop / Enhance Data Classification Frameworks : Design and implement a tiered classification system (e.g., Public, Internal, Restricted, Confidential) to categorize data based on sensitivity, regulatory requirements, and business impact.
• Define Classification Standards : Establish clear criteria for labeling data types (e.g., PII, financial records, intellectual property) and enforce metadata tagging for traceability.

Regulatory Compliance :

• Ensure adherence to GDPR, CCPA, Qatar PDPPL, and other applicable laws by implementing consent management frameworks, data subject rights workflows, and breach notification protocols.

2. Technical Safeguards & Risk Mitigation

Data Protection Controls :

• Implement encryption, tokenization, and pseudonymization for PII at rest and in transit.
• Deploy Data Loss Prevention (DLP) tools to monitor and restrict unauthorized data transfers.

3. Third-Party & Vendor Oversight

• Assess third-party vendors for compliance with data protection obligations through questionnaires, audits, and contractual reviews.

Data Processing Agreements (DPAs) :

• Draft and enforce DPAs to ensure vendors adhere to organizational privacy standards and regulatory mandates.

TECHNICAL REQUIREMENTS

• Expertise in data protection technologies : DLP, encryption (AES-256, TLS), and anonymization tools.
• Proficiency with compliance platforms : OneTrust, TrustArc, or similar for PIAs and consent management.
• Familiarity with cloud security (AWS / Azure / GCP IAM, storage ACLs) and data residency requirements.
• Knowledge of privacy-enhancing technologies (PETs) such as differential privacy or homomorphic encryption.
• Experience with incident response tools for breach detection and analysis.
• Basic scripting skills (Python, SQL) for data mapping and workflow automation.

CERTIFICATIONS

• Required : CIPP (Certified Information Privacy Professional) or CIPM (Certified Information Privacy Manager).
• Preferred : ISO 27001 Lead Implementer, CDPSE (Certified Data Privacy Solutions Engineer).
• Advantageous : Cloud-specific certifications.

REQUIRED EXPERIENCE

• 3+ years in data protection, privacy compliance, or PII governance roles.
• Demonstrated experience conducting PIAs, managing DSARs, and responding to data breaches.
• Proven track record in implementing GDPR / CCPA / Qatar PDPPL requirements within complex organizations.
• Familiarity with third-party risk management frameworks and contract negotiation.

IDEAL CANDIDATE PROFILE

You are a detail-oriented professional with a deep understanding of global privacy regulations and the technical acumen to translate legal requirements into actionable controls. You thrive in collaborative environments, excel at simplifying complex privacy concepts for non-technical stakeholders, and are passionate about fostering a privacy-first culture. Your ability to balance proactive risk mitigation with operational efficiency will be critical in protecting the organization’s reputation and maintaining stakeholder trust.

• Skillset Required : Proactive, Loss Prevention, Iso 27001, Devops, Azure, Policy Development, Information Security, Compliance, Intellect, Python, Data Handling, Workflow, Iam, Excel, Triggers, Detail-oriented, Sql, Design Principles, Trends

Engineer - Network Security role at Galfar Al Misnad Engineering and Contracting W.L.L. The candidate should have deft knowledge in QatarEnergy Cyber Security Standards (OT/IT standards).

• Firewall hardening standards
• Hardening test standards
• Modbus firewall tests
• OPC/Exa OPC/Exa Quantum communication tests
• Firmware upgradation for firewalls, switches, and accessories
• AV and backup solutions
• Application Whitelisting
• User Management and Active Directory integration
• VLAN configurations and permissions
• USB decontamination solutions
• Anomaly detection systems
• IT security policies

Able to support in design, implementation, testing and commissioning of Software and Hardware related Cyber security as mentioned above.

• Entry level

• Full-time

• Information Technology

• Construction

GBM is hiring a experienced and highly motivated Mid-Career Network Security Engineer to join our information security team. The ideal candidate will be responsible for designing, implementing, maintaining, and troubleshooting our organization's network security infrastructure. This role requires a strong understanding of network protocols, security principles, and a proven ability to protect sensitive data and systems from evolving cyber threats. This position demands a balance between technical expertise and strong client-facing skills, focusing on network security solutions.

Key Responsibilities:

• Design, implement, and manage network security solutions, including firewalls (e.g., Palo Alto, Cisco ASA, Fortinet), intrusion detection/prevention systems (IDS/IPS), VPNs, web application firewalls (WAFs) and other security appliances.
• Monitor network security systems for anomalies, alerts and potential security breaches, and respond effectively to incidents.
• Conduct vulnerability assessments and penetration testing to identify and address security weaknesses in the network infrastructure.
• Develop, implement, and enforce network security policies, standards, and procedures in alignment with industry best practices and compliance requirements.
• Perform reviews of network configurations to ensure compliance and identify areas for improvement.
• Administer and troubleshoot network devices such as routers, switches, and wireless access points, with a focus on their security configurations.
• Participate in the evaluation and selection of new security technologies and tools.
• Collaborate with IT operations, development teams, and other stakeholders to integrate security into all phases of the system development lifecycle.
• Develop and maintain comprehensive documentation for network security architecture, configurations, and procedures.
• Stay up-to-date with the latest security trends, threats, vulnerabilities and technologies.
• Provide technical guidance and mentorship to team members as needed.

Requirements:

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity or a related field.
  (Relevant experience may substitute for a degree).
• 5 to 8 years of progressive experience in network security engineering or a similar role.
• Strong expertise with various security technologies, including:
  • Next Generation Firewalls (e.g., Palo Alto Networks, Cisco ASA, Fortinet).
  • IDS/IPS solutions.
  • VPN technologies (IPsec, SSL VPN).
  • Network Access Control (NAC) solutions.
  • SIEM (Security Information and Event Management) platforms.
  • Symantec (Broadcom) Web Proxy
  • Endpoint security solutions (AV and EDR).
• In-depth knowledge of networking protocols and services: TCP/IP, DNS, DHCP, HTTP/S, BGP, OSPF, VLANs, etc.
• Proven experience in incident response, forensics, and remediation.
• Excellent problem-solving, analytical, and communication skills.
• Ability to work independently and as part of a team in a fast-paced environment.
• Collaboration with pre-sales, project team, vendors and contractors.
• Strong attention to detail and commitment to security best practices.
• Sound experience in implementing multi-vendor security solutions.

Preferred Skills and Certifications:

Any of the below mentioned skills/certifications would be preferred.

• Professional level security certifications (e.g: CCNP Security, PCNSE, etc ) - Must
• Certified experience with Cisco ISE - Must
• Certified Information Systems Security Professional (CISSP) - Preferred
• Certified Ethical Hacker (CEH) - Preferred
• CompTIA Security+ - Preferred
• Competitive salary and benefits.
• Opportunity to work on innovative projects.
• Collaborative and flexible work environment.
• Opportunities for professional development and learning.

How To Apply:

Submit your updated resume and a cover letter detailing your experience as Network Security Engineer

Engineer - Network Security role at Galfar Al Misnad Engineering and Contracting W.L.L. The candidate should have deft knowledge in QatarEnergy Cyber Security Standards (OT/IT standards).

• Firewall hardening standards
• Hardening test standards
• Modbus firewall tests
• OPC/Exa OPC/Exa Quantum communication tests
• Firmware upgradation for firewalls, switches, and accessories
• AV and backup solutions
• Application Whitelisting
• User Management and Active Directory integration
• VLAN configurations and permissions
• USB decontamination solutions
• Anomaly detection systems
• IT security policies

Able to support in design, implementation, testing and commissioning of Software and Hardware related Cyber security as mentioned above.

• Entry level

• Full-time

• Information Technology

• Construction

GBM is hiring a experienced and highly motivated Mid-Career Network Security Engineer to join our information security team. The ideal candidate will be responsible for designing, implementing, maintaining, and troubleshooting our organization’s network security infrastructure. This role requires a strong understanding of network protocols, security principles, and a proven ability to protect sensitive data and systems from evolving cyber threats. This position demands a balance between technical expertise and strong client-facing skills, focusing on network security solutions.

Key Responsibilities:

• Design, implement, and manage network security solutions, including firewalls (e.g., Palo Alto, Cisco ASA, Fortinet), intrusion detection/prevention systems (IDS/IPS), VPNs, web application firewalls (WAFs) and other security appliances.
• Monitor network security systems for anomalies, alerts and potential security breaches, and respond effectively to incidents.
• Conduct vulnerability assessments and penetration testing to identify and address security weaknesses in the network infrastructure.
• Develop, implement, and enforce network security policies, standards, and procedures in alignment with industry best practices and compliance requirements.
• Perform reviews of network configurations to ensure compliance and identify areas for improvement.
• Administer and troubleshoot network devices such as routers, switches, and wireless access points, with a focus on their security configurations.
• Participate in the evaluation and selection of new security technologies and tools.
• Collaborate with IT operations, development teams, and other stakeholders to integrate security into all phases of the system development lifecycle.
• Develop and maintain comprehensive documentation for network security architecture, configurations, and procedures.
• Stay up-to-date with the latest security trends, threats, vulnerabilities and technologies.
• Provide technical guidance and mentorship to team members as needed.

Requirements:

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity or a related field.
  (Relevant experience may substitute for a degree).
• 5 to 8 years of progressive experience in network security engineering or a similar role.
• Strong expertise with various security technologies, including:
  • Next Generation Firewalls (e.g., Palo Alto Networks, Cisco ASA, Fortinet).
  • IDS/IPS solutions.
  • VPN technologies (IPsec, SSL VPN).
  • Network Access Control (NAC) solutions.
  • SIEM (Security Information and Event Management) platforms.
  • Symantec (Broadcom) Web Proxy
  • Endpoint security solutions (AV and EDR).
• In-depth knowledge of networking protocols and services: TCP/IP, DNS, DHCP, HTTP/S, BGP, OSPF, VLANs, etc.
• Proven experience in incident response, forensics, and remediation.
• Excellent problem-solving, analytical, and communication skills.
• Ability to work independently and as part of a team in a fast-paced environment.
• Collaboration with pre-sales, project team, vendors and contractors.
• Strong attention to detail and commitment to security best practices.
• Sound experience in implementing multi-vendor security solutions.

Preferred Skills and Certifications:

Any of the below mentioned skills/certifications would be preferred.

• Professional level security certifications (e.g: CCNP Security, PCNSE, etc .) — Must
• Certified experience with Cisco ISE — Must
• Certified Information Systems Security Professional (CISSP) — Preferred
• Certified Ethical Hacker (CEH) — Preferred
• CompTIA Security+ — Preferred
• Competitive salary and benefits.
• Opportunity to work on innovative projects.
• Collaborative and flexible work environment.
• Opportunities for professional development and learning.

How To Apply:

Submit your updated resume and a cover letter detailing your experience as Network Security Engineer