69 Offensive Security jobs in Qatar

Overview

Nair Systems is currently looking Offensive Cyber Security Specialist for our Qatar operations with the following terms & conditions.

• University graduate preferably with a Major in Marketing, Banking, Finance, Accounting, Economics, Business
• Administration or Information Technology (related field of study), Masters preferred.
• At least 4 years of experience in undertaking technical security assessments of complex IT solutions including
• penetration testing, preferably within a highly rated international bank.
• Experience in undertaking red team activities is beneficial
• Professional certification such as CISSP, CISM, CISA is mandatory
• Previous Banking or Big 4 Consultancy work experience is mandatory

• Good interpersonal and presentation skills.
• Understanding of the relevant laws, regulations, and practices.
• Ability to make decisions and follow through with initiatives.
• Personal integrity and self-management.
• Planning, organising, and analytical ability.
• Results oriented.
• Strong analytical skills and the ability to communicate both verbally and in writing with all levels of management.
• Strong knowledge of penetration testing tools and techniques of application and infrastructure components.
• Strong knowledge of DevOps/DevSecOps processes including cloud native architecture and relevant controls
• Strong knowledge of operating systems (Windows, Linux, Android & iOS)
• Strong knowledge of Kubernetes and container orchestration platforms
• An understanding or experience with source code scanning and application development frameworks
• Experience in designing and risk assessing multi-forest Active Directory domains
• Programming experience (Python, Go, Rust, C#, etc)
• Ability to work under pressure
• Strong client focus Operating Environment/Location:

• Ability to adhere to divisional KPI’s for performance monitoring and quality measurement purposes.
• Implements KPI’s and best practices for the SVP Offensive Cyber Security.
• Promote cost consciousness and efficiency and enhance productivity, to minimise cost, avoid waste, and optimise benefits for the bank.
• Act within the limits of the powers delegated to the incumbent and delegate authority to the respective staff and monitor exercise of the same.
• Demonstrate clear understanding of the important factors behind the bank's financial & non-financial performance.

• Ability to customise and use established methodologies, conduct technical reviews and penetration testing activities of business applications and infrastructure projects e.g. technical risk assessments of internet facing applications, workstation and server build platforms, databases, networking, and virtualisation technologies.
• Architecture design, compliance to IT security policies and relevant standards.
• Ability to provide subject matter expertise for the enhancement of cyber security posture of the organization.
• Ability to develop close relationships with IT and business teams. Understand and manage their requirements for GIS risk services.
• Ability to assist other teams in the Risk organisation with technical IT Security reviews and provide guidance as a subject matter expert for cyber security.
• Ability to provide Ad-hoc consultancy for risks of new technologies and propose with potential solutions.
• Ability to identify opportunities and develop new ideas that will lead to improvements.
• Ability to adapt/change behaviour or plans to better achieve the target/objective.
• Ability to analyse a complex problem and identify potential solutions by exploring and analysing diverse alternatives, including, where applicable, risks and potential business impact. Ability to make the right decisions based on the necessary information and to take measures accordingly.
• Ability to liaise with external consultants appointed from time to time to assess the adequacy and effectiveness of the Group’s information security efforts.
• To assist customers in all their queries on Bank’s product and seek solution to their requests.
• Maintain activities in accordance with Service Level Agreements (SLAs) with internal departments/units to achieve improvements in turn-around time.
• Build and maintain strong/effective relationships with related departments/units to achieve the Group’s objectives.
• Provide timely/accurate data to external/internal Auditors, Compliance, Financial Control and Risk when required.

• * Ability to set high targets/objectives for self and department. Prefers to take the initiative than to stay passive if events happen. Committed to improving productivity. Unwilling to accept average performance. Tries to be above the requested performance.
• * Ability identify own strengths and limitations. Seeks guidance and advice when appropriate to accomplish tasks and perform the role in an effective and efficient way.
• * Ability to play a constructive role as member of the team.
• Ability to assess the effectiveness of the various information security systems and network topologies and evaluate
• * Ability to provide required support for enforcing the security policies of the organization.
• * Ability to build and maintain strong and effective relationship with all other related departments and units to achieve the Group’s goals/ objectives.
• * Ability to keep Group Information Security Management apprised of the latest security trends and vulnerabilities.

• * Possess an understanding of business processes and controls in all related operational areas.
• * Must have an expert understanding of information security issues, best practices, and a working knowledge of IT systems.
• * Proactively identify areas for professional development of self and undertake development activities.
• * Seek out opportunities to remain current with all developments in professional field.

• * Comply with all applicable legal, regulatory and internal compliance requirements including, but not limited to, Group Compliance Policies and Procedures (AML & CTF, Sanctions Policy, Data Protection Policy, Fraud Control Policy, Whistle Blowing Policy, Conflict of Interest and Insider Dealing Policy).
• * Understand and effectively perform your role under the Three Lines of Defence principle to identify measure, monitor, manage and report risks.
• * Ensure systematic good outcomes for clients in accordance with Conduct Risk policy.
• * Support the framework of RCSA, KRI, Incident reporting and remediation, as appropriate, in accordance with the Operational Risk Management requirements.
• * Maintain appropriate knowledge to ensure full qualification to undertake the role.
• * Complete all mandatory training provided by the Bank, attain, and maintain the required levels of competence.
• * Attend mandatory (internal and external) seminars as instructed by the Bank.

• Good interpersonal and presentation skills.
• Understanding of the relevant laws, regulations, and practices.
• Ability to make decisions and follow through with initiatives.
• Personal integrity and self-management.
• Planning, organising, and analytical ability.
• Results oriented.
• Strong analytical skills and the ability to communicate both verbally and in writing with all levels of management.
• Strong knowledge of penetration testing tools and techniques of application and infrastructure components.
• Strong knowledge of DevOps/DevSecOps processes including cloud native architecture and relevant controls
• Strong knowledge of operating systems (Windows, Linux, Android & iOS)
• Strong knowledge of Kubernetes and container orchestration platforms
• An understanding or experience with source code scanning and application development frameworks
• Experience in designing and risk assessing multi-forest Active Directory domains
• Programming experience (Python, Go, Rust, C#, etc)
• Ability to work under pressure
• Strong client focus Operating Environment/Location:

Nair Systems is currently looking Senior Offensive Security Consultant for our Qatar operations with the following terms & conditions.

Required Qualifications and Experience:

• University graduate in Computer Science subject

• Strong understanding of offensive security concepts and frameworks, including MITRE ATT&CK, vulnerability exploitation, DevSecOps and OWASP top ten projects.

• Experience managing or integrating SAST, DAST, attack simulation, and container security tools into CI/CD platforms (e.g., Jenkins, GitLab CI, Azure DevOps)

• Awareness of current breach and attack simulation platforms and AI-driven CI/CD pen testing solutions and their use cases (e.g., Cytix, SafeBreach, AttackIQ, Cymulate).

• Strong knowledge of container and kubernetes security

• Ability to work independently and manage multiple priorities in a fast-paced environment.

• Excellent verbal and written communication skills.

• Proven work experience in the UK, US, or Europe

Key Responsibilities:

Security Tool Management & Integration

• Own the deployment, configuration, and maintenance of:

• Static Application Security Testing (SAST) tools

• Dynamic Application Security Testing (DAST) tools

• Breach and Attack Simulation (BAS) tools

• Container Security Solutions (e.g., image scanning, runtime protection)

• Integrate security tools into CI/CD pipelines to enable automated and continuous security validation.

• Monitor tool performance, ensure scalability, and optimize configurations for accuracy and efficiency.

• Security Strategy & Enablement

• Provide strategic guidance on offensive security practices including:

o Vulnerability identification

o Exploitation techniques

• Support red team and penetration testing efforts by enabling tooling and providing technical insights.

• Collaborate with development, DevOps, and cloud teams to embed security early in the SDLC.

• Container & Cloud Security

• Evaluate and enhance the security posture of containerized environments (e.g., Docker, Kubernetes).

• Implement container image scanning, runtime protection, and orchestration security best practices.

• Work with cloud-native security tools and configurations across AWS, Azure, or GCP.

Autonomous Execution & Ownership

• Take full ownership of assigned projects and deliverables with minimal supervision.

• Proactively identify gaps in security tooling, processes, or coverage and propose solutions.

• Maintain documentation, dashboards, and reporting mechanisms for tool usage and effectiveness.

Communication & Collaboration

• Translate technical findings into clear, actionable insights for both technical and non-technical stakeholders.

• Present risk assessments, tool evaluations, and remediation strategies to leadership.

• Mentor junior team members and contribute to internal knowledge sharing and training initiatives.

Preferred Qualifications and Experience:

• Certifications such as OSCP, CRTO, OSCE, or equivalent.

• Experience of streamlining SDLC processes and workflows using AI techniques and approaches

• Experience with cloud platforms (AWS, Azure, GCP) and their native security services.

Framework & Boundaries:

• Group's overall strategic plan.

• Applicable policies and procedures.

• Delegated authorities as per the delegation of authority structure.

• Instructions of the Head of Cyber Risk Assessments and Group Chief Information Security Officer

Joining time frame: 2 weeks (maximum 1 month)

Should you be interested in this opportunity, please send your latest resume in MS Word format at the earliest

Nair Systems is currently looking Offensive Security Manager for Qatar

Should have banking domain experience

Project Duration: long term

Should you be interested please send resume

Nair Systems is currently looking for Senior Offensive Security Consultant for Qatar

•Strong understanding of offensive security concepts and frameworks, including MITRE ATT&CK, vulnerability exploitation, DevSecOps and OWASP top ten projects.

* Experience managing or integrating SAST, DAST, attack simulation, and container security tools into CI/CD platforms (e.g., Jenkins, GitLab CI, Azure DevOps)

•Awareness of current breach and attack simulation platforms and AI-driven CI/CD pen testing solutions and their use cases (e.g., Cytix, Safe Breach, AttackIQ, Cymulate).

* Strong knowledge of container and Kubernetes security

"Prior or current work experience in the US, UK, or Europe is required."

Should you be interested please send resume

Nair Systems
is currently looking
Senior Offensive Security Consultant
  for our
Qatar
operations with the following terms & conditions.

Required Qualifications and Experience:

• University graduate in Computer Science subject

• Strong understanding of offensive security concepts and frameworks, including MITRE ATT&CK, vulnerability exploitation, DevSecOps and OWASP top ten projects.

• Experience managing or integrating SAST, DAST, attack simulation, and container security tools into CI/CD platforms (e.g., Jenkins, GitLab CI, Azure DevOps)

• Awareness of current breach and attack simulation platforms and AI-driven CI/CD pen testing solutions and their use cases (e.g., Cytix, SafeBreach, AttackIQ, Cymulate).

• Strong knowledge of container and kubernetes security

• Ability to work independently and manage multiple priorities in a fast-paced environment.

• Excellent verbal and written communication skills.

Proven work experience in the UK, US, or Europe

Should you be interested please send resume

Job Description

We are currently looking Senior Offensive Security Consultant for our Qatar operations with the following terms & conditions.

Required Qualifications and Experience:

• University graduate in Computer Science subject
• Strong understanding of offensive security concepts and frameworks, including MITRE ATT&CK, vulnerability exploitation, DevSecOps and OWASP top ten projects.
• Experience managing or integrating SAST, DAST, attack simulation, and container security tools into CI/CD platforms (e.g., Jenkins, GitLab CI, Azure DevOps)
• Awareness of current breach and attack simulation platforms and AI-driven CI/CD pen testing solutions and their use cases (e.g., Cytix, SafeBreach, AttackIQ, Cymulate).
• Strong knowledge of container and kubernetes security
• Ability to work independently and manage multiple priorities in a fast-paced environment.
• Excellent verbal and written communication skills.
• Proven work experience in the UK, US, or Europe

Key Responsibilities:

Security Tool Management & Integration

• Own the deployment, configuration, and maintenance of:
• Static Application Security Testing (SAST) tools
• Dynamic Application Security Testing (DAST) tools
• Breach and Attack Simulation (BAS) tools
• Container Security Solutions (e.g., image scanning, runtime protection)
• Integrate security tools into CI/CD pipelines to enable automated and continuous security validation.
• Monitor tool performance, ensure scalability, and optimize configurations for accuracy and efficiency.
• Security Strategy & Enablement

Preferred Qualifications and Experience:

• Certifications such as OSCP, CRTO, OSCE, or equivalent.
• Experience of streamlining SDLC processes and workflows using AI techniques and approaches
• Experience with cloud platforms (AWS, Azure, GCP) and their native security services.

Framework & Boundaries:

• Group's overall strategic plan.
• Applicable policies and procedures.
• Delegated authorities as per the delegation of authority structure.
• Instructions of the Head of Cyber Risk Assessments and Group Chief Information Security Officer

Joining time frame: 2 weeks (maximum 1 month)

Overview

Responsible for overseeing security operations, managing a team, and ensuring compliance with security standards. Requires valid Qatari driving license, English proficiency, and willingness to transfer sponsorship.

• Lead design and implementation of Fortinet security solutions and manage complex firewall environments.
• Mentor junior engineers and ensure compliance with security standards.
• Assist in overseeing daily security operations, ensuring client satisfaction, compliance, and operational efficiency while managing schedules and training personnel.
• Responsible for installation, configuration, and maintenance of IP Video Surveillance and Access Control Systems, ensuring compliance with technical standards.
• Configure, maintain, and troubleshoot Access Control Systems while providing technical support, ensuring security compliance, and managing user access permissions.
• Establish information security frameworks, ensure compliance with standards, manage risks, and oversee security operations and vendor assessments.
• Specialize in installation, repair, and maintenance of automatic doors and rolling shutters, requiring technical certification and independent work capability.
• Conduct payroll processing, ensure compliance with Qatari labor laws, and maintain employee data accuracy while supporting audits and responding to queries.
• Monitor entrances, conduct searches, manage behavior, investigate theft, and ensure safety procedures in a hotel environment.
• Maintain safety through required security certifications, strong communication, observational skills, and ability to perform patrol duties.
• Provide technical support and sales engineering, design security solutions, prepare proposals, and collaborate with teams to meet client needs.
• Assist in developing security policies, supervise security teams, monitor surveillance systems, conduct patrols, and provide training while ensuring compliance.
• Design and maintain secure IP Video Surveillance networks, requiring expertise in network architecture, security protocols, and relevant certifications.
• Security supervisors should have good communication and critical thinking skills, with experience as a police or security officer and a valid driver's license.
• Conduct vulnerability scans and collaborate with IT teams for remediation and reporting using tools like Tenable.
• Client acquisition, relationship management, sales target achievement, and providing technical support in Steel Fabrication and Security Fencing.
• Assist in supervising security operations, enforce policies, respond to emergencies, and provide first aid; degree in hotel management preferred.
• Deliver Certified Information Systems Security Manager training, customize materials, support exam preparation, and engage participants with strong communication skills.
• Implement and maintain network security solutions, troubleshoot devices, and ensure high availability and performance in a secure infrastructure.
• Conduct security patrols, manage access control systems, provide customer service, and demonstrate strong communication skills with a focus on safety.
• Conduct security patrols and support emergency coordination while ensuring safety and compliance.
• Engage in offensive cyber security activities, requiring strong analytical skills, knowledge of penetration testing, and excellent English and Arabic communication.
• Manage and integrate security tools, provide strategic guidance on offensive security, and enhance container and cloud security in a fast-paced environment.
• Oversee daily security operations, lead staff, develop policies, conduct inspections, and ensure compliance with safety regulations and protocols.
• Lead vulnerability assessments and penetration testing while managing ethical hackers to enhance the bank's security posture and ensure compliance.
• Design and develop complex service design security solutions, collaborate with teams, ensure quality, and utilize technologies for innovative information security.
• Drive growth in the security sector by identifying business opportunities, managing client relationships, and delivering customized security solutions.
• Oversee cleanliness and sanitation, implement food safety standards, conduct inspections, and maintain hygiene compliance in a hotel environment.
• Manage offshore security and health, safety, and environmental activities, requiring military experience, certifications, and strong English communication skills.

Offshore HSE & Security Advisor – Orion Engineering Services Limited, Doha, Qatar. 10 - 12 Years of experience.

Top Employers on Naukrigulf: Apparel FZCO; Hamad International Airport. Various roles in consumer brand, retail, and security sectors.

Note: This description consolidates multiple job elements found in the listing and retains the original language where possible without adding new facts.