29 System Security jobs in Doha

• Design, implement, and manage security solutions across Active Directory, ADFS, and Exchange (on-premise and hybrid).
  
• Harden and secure endpoints, infrastructure, and communications systems against evolving cyber threats.
  
• Automate security tasks and perform system audits using PowerShell and other scripting tools.
  
• Manage patching processes using WSUS, SCCM, or third-party tools.
  
• Integrate security logs and data into SIEM platforms and support threat detection/response initiatives.
  
• Collaborate with IT and business units to enforce identity and access management policies including MFA and Zero Trust architectures.
  
• Support compliance efforts aligned with ISO 27001, NIST, and CIS Controls.
  
• Assess and respond to security incidents using frameworks like MITRE ATT&CK.
  
• Continuously evaluate and improve system and application security controls.
  

Required:

• Bachelor’s degree in Information Security, Computer Engineering, or related field.
  
• One or more of the following certifications:
  
  

-Microsoft Certified: Security Operations Analyst
Associate (MS-SC200)

-Microsoft Certified: Identity and Access
Administrator Associate (SC-300)

-Microsoft Certified Cybersecurity Architect
Expert

Preferred:

• Master’s degree in Information Security or Computer Engineering
  
• Additional certifications such as:
  
  

-Systems Security Certified Practitioner (SSCP)

-CompTIA Cybersecurity Analyst (CySA+)

-Certified Information Systems Security
Professional (CISSP)

Experience & Knowledge Requirements:

• 5+ years of experience in Windows infrastructure
  security (Active Directory, Exchange, endpoint hardening)
  
• In-depth knowledge of:
  

- Active Directory (LDAP, Kerberos, Group Policy,
ADFS)

- Exchange security (transport rules,
SPF/DMARC/DKIM, hybrid configurations)

- Patch management systems (WSUS, SCCM, etc.)

• Strong
  PowerShell scripting capabilities for security automation and audits
  
• Proficient in
  Zero Trust architecture and multi-factor authentication practices
  
• Understanding
  of compliance frameworks: ISO 27001, NIST, CIS Controls
  
• Experience
  integrating with on-premise SIEM solutions
  
• Familiarity
  with MITRE ATT&CK and advanced threat detection techniques
  
• Solid
  background in systems, networks, and/or application security
  

• Security architecture and system
  hardening
  
• Scripting and automation (PowerShell)
  
• Threat detection, SIEM integration, and
  log analysis
  
• Identity and access management (IAM)
  
• Compliance and regulatory knowledge
  
• Problem-solving and incident response
  
• Strong communication and documentation
  skills
  

Accountabilities

Deliver Engineering Dossiers with robust cybersecurity definitions and fit-for-purpose designs that meet project specifications, standards, and operational requirements.

Ensure assigned project tasks are executed in line with the Project Execution Plan, contractual requirements, and cybersecurity standards.

Act as the focal point for all cybersecurity discipline matters, interfacing with project engineering teams, corporate cybersecurity teams, and EPC packages.

Provide technical support for audits, studies, inspections, and meetings related to cybersecurity.

Review and validate project documents, ensuring compliance with standards, identifying potential derogations, and driving optimized, cost-effective design outcomes.

• Ensure cybersecurity design is properly implemented and coordinated with all project stakeholders.
• Monitor, audit, and guide cybersecurity-related activities performed by ICSS OEMs, contractors, and integrators.
• Act as project representative during cybersecurity audits, tests, FAT / SAT, and inspections.
• Track closure of cybersecurity punch items and ensure compliance with project requirements.
• Coordinate with other engineering disciplines (ICSS, Electrical, Telecom, Instrumentation, Construction, Commissioning) to maintain consistency and integration.
• Participate in and support project studies such as HAZOP, Cyber PHA (Risk Assessments), SIL, and HAZID.
• Review, comment, and approve project cybersecurity documentation within required timelines.
• Promote value engineering initiatives to optimize cybersecurity design, cost, and schedule.
• Support lessons learned, risk assessments, and deviations / derogations processes in coordination with cybersecurity teams.
• Provide technical advice to ensure vendor packages and equipment comply with cybersecurity requirements.
• Contribute to project reporting, including progress, risks, and technical issue updates.

• Education : Degree in Electrical, Electronics, Instrumentation, or Control Engineering (or equivalent).
• Experience : 10–15 years in ICSS and package cybersecurity engineering in offshore oil & gas projects.
• Proven expertise in cybersecurity risk assessments, mitigation planning, and risk treatment implementation.
• Strong knowledge of industry standards and frameworks (ISA99 / IEC 62443, IEC 61511, NIST, Qatar ICS security).
• Offshore certifications (OPITO T-BOSIET, OPITO H2S, QE pass, medical fitness).
• Industry ICS Security certifications preferred (ISA99 / IEC 62443, GICSP, CISSP).
• Strong knowledge of project design, execution, and package interfaces.
• Proficient in cybersecurity design-related software.
• Excellent leadership, analytical, and communication skills.
• Fluent in English; experience in multicultural project environments.
• Familiarity with Total General Specifications and international codes / standards is an advantage.
• Willingness to travel for global project assignments.
• Submission date : Please submit CV's on or before 02nd October 2025.

BAE Systems Strategic Aerospace Services WLL | Full time

The Information Security Engineer willfocus on ensuring the organization's applications and data is secure and builtaccording to best security standards. This role will be the subject matterexpert on building secure code, application security, vulnerability testing,and providing security validation to the organization's environments.

• Performscheduled penetration testing of the company's applications
  
• Performwhite, gray and black box security assessments.
  
• Supportthe organization, JVs and Subsidiaries in implementing Secure Softwaredevelopment lifecycle.
  
• PerformMobile Services security Assessments.
  
• Supportthe organizations’ environment monitoring by using available tools or helpbuild internal tools to enable advanced threat detection and response.
  
• ConductSecurity Vulnerability Assessments and impact assessment on company’s electronicassets.
  
• PerformSecurity Assessments on ERP and other on-premise solutions.
  
  
  

Skills,Knowledge and Behaviors:

• Ability to lead directand indirect resources
  
• Ability to communicatetechnical challenges to non-technical audiences
  
• Ability to quantify riskand impact vectors
  
• Certified Ethical Hacker
  
• OCSP level of technicalexpertise
  
• Strong Scriptingcapability
  
• Strong Applicationsecurity background
  
• Strong Infrastructuresecurity Background
  
• Strong experience in open source security tools
  

• SecurityCertification focusing on offensive or defensive practices
  
• Bachelor’s degreein Information Security or Computer Engineering
  
• 10 + years incybersecurity field
  
• System, networkand/or application background
  

Location: Qatar
Job Type: Full-Time
Experience Level: Minimum 2 years (Hands-on Security Implementation)
Industry: Government / Enterprise IT Security
Function: Information Security / Cybersecurity
Language: Bi-lingual preferred (English required; Arabic an advantage)

Job Summary:
We are seeking a technically proficient Enterprise Security Engineer to join a structured and security-focused IT environment. The ideal candidate will have hands-on experience in both network security and cybersecurity, working with technologies such as PAM, DLP, EDR/XDR, firewalls, NAC, and network security appliances. This role is based on-site in Qatar and is open to candidates with valid work authorization or the ability to relocate.

Key Responsibilities:
Implement and administer:

• Privileged Access Management (PAM)

• Data Loss Prevention (DLP)

• Endpoint Detection and Response (EDR/XDR)

• Firewalls and Network Security Appliances

• Network Access Control (NAC)
  Conduct vulnerability assessments and penetration testing
  Monitor and respond to real-time security alerts and incidents
  Manage patching and configuration of security appliances and systems
  Ensure compliance with security frameworks (e.g., NIST, ISO 27001)
  Collaborate with IT and development teams to embed secure design principles
  Support cloud security initiatives across AWS, Azure, or GCP
  Assist with incident investigations, documentation, and mitigation
  Continuously evaluate and recommend security tools and technologies

Optional Leadership Exposure:
Contribute to security risk management and compliance processes
Participate in developing enterprise-wide security governance and policies

Qualifications:
Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related discipline

Certifications (Preferred):
CISSP, CEH, CompTIA Security+, or equivalent

Skills & Competencies:
2+ years hands-on experience in cybersecurity and/or network security roles
Proficient in firewalls (Palo Alto, Fortinet, Cisco), SIEM, IDS/IPS, DLP, NAC, and vulnerability scanners
Experience in patch management and incident response
Familiar with ISO 27001, NIST Cybersecurity Framework, and CIS Controls
Knowledge of cloud security practices in AWS, Azure, or Google Cloud
Strong analytical thinking and troubleshooting skills
Excellent communication skills, with a preference for bi-lingual candidates (English required, Arabic preferred)

Work Environment & Compliance:
Must comply with internal health, safety, and information security protocols
Will interact with cross-functional teams and regulatory bodies

Application Instructions:
Interested applicants should submit their CV clearly highlighting their hands-on experience with PAM, EDR/XDR, NAC, and DLP systems. Only candidates with relevant and ongoing experience in security engineering will be considered.

GBM is hiring a experienced and highly motivated Mid-Career Network Security Engineer to join our information security team. The ideal candidate will be responsible for designing, implementing, maintaining, and troubleshooting our organization’s network security infrastructure. This role requires a strong understanding of network protocols, security principles, and a proven ability to protect sensitive data and systems from evolving cyber threats. This position demands a balance between technical expertise and strong client-facing skills, focusing on network security solutions.

Key Responsibilities:

• Design, implement, and manage network security solutions, including firewalls (e.g., Palo Alto, Cisco ASA, Fortinet), intrusion detection/prevention systems (IDS/IPS), VPNs, web application firewalls (WAFs) and other security appliances.
• Monitor network security systems for anomalies, alerts and potential security breaches, and respond effectively to incidents.
• Conduct vulnerability assessments and penetration testing to identify and address security weaknesses in the network infrastructure.
• Develop, implement, and enforce network security policies, standards, and procedures in alignment with industry best practices and compliance requirements.
• Perform reviews of network configurations to ensure compliance and identify areas for improvement.
• Administer and troubleshoot network devices such as routers, switches, and wireless access points, with a focus on their security configurations.
• Participate in the evaluation and selection of new security technologies and tools.
• Collaborate with IT operations, development teams, and other stakeholders to integrate security into all phases of the system development lifecycle.
• Develop and maintain comprehensive documentation for network security architecture, configurations, and procedures.
• Stay up-to-date with the latest security trends, threats, vulnerabilities and technologies.
• Provide technical guidance and mentorship to team members as needed.

Requirements:

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity or a related field.
  (Relevant experience may substitute for a degree).
• 5 to 8 years of progressive experience in network security engineering or a similar role.
• Strong expertise with various security technologies, including:
  • Next Generation Firewalls (e.g., Palo Alto Networks, Cisco ASA, Fortinet).
  • IDS/IPS solutions.
  • VPN technologies (IPsec, SSL VPN).
  • Network Access Control (NAC) solutions.
  • SIEM (Security Information and Event Management) platforms.
  • Symantec (Broadcom) Web Proxy
  • Endpoint security solutions (AV and EDR).
• In-depth knowledge of networking protocols and services: TCP/IP, DNS, DHCP, HTTP/S, BGP, OSPF, VLANs, etc.
• Proven experience in incident response, forensics, and remediation.
• Excellent problem-solving, analytical, and communication skills.
• Ability to work independently and as part of a team in a fast-paced environment.
• Collaboration with pre-sales, project team, vendors and contractors.
• Strong attention to detail and commitment to security best practices.
• Sound experience in implementing multi-vendor security solutions.

Preferred Skills and Certifications:

Any of the below mentioned skills/certifications would be preferred.

• Professional level security certifications (e.g: CCNP Security, PCNSE, etc .) — Must
• Certified experience with Cisco ISE — Must
• Certified Information Systems Security Professional (CISSP) — Preferred
• Certified Ethical Hacker (CEH) — Preferred
• CompTIA Security+ — Preferred
• Competitive salary and benefits.
• Opportunity to work on innovative projects.
• Collaborative and flexible work environment.
• Opportunities for professional development and learning.

How To Apply:

Submit your updated resume and a cover letter detailing your experience as Network Security Engineer