Jobs / Cisco Network Engineer Jobs / IT Security Specialist[Qatar]

IT Security Specialist[Qatar]

lxbfYeaa - Qatar - Doha
Employment: Full Time

Job Purpose:

IT Security Specialist is responsible for security risk assessments, protection of IT assets, building of resilience to defend against security attacks and responding to security incidents. He/She is technically proficient in IT network security and cloud security and is also conversant with IT security frameworks/policies and procedures, e.g., ISO27001. IT Security Specialist can also evaluate security systems including fire protection systems and theft protection and ensure that potential safety hazards are addressed.


Detailed Responsibilities

Act as custodian of QFZA IT Department’s Information Security policies and procedures and ensure these are implemented successfully and review periodically.

• Liaise with QFZA IS manager and internal auditors on IT security governance.

• Ensure applicable regulations, standards and audit observations are implemented with necessary controls.

• Oversee/Manage IT Budget relating to Information security.

• Define, manage, and monitor both cloud and on-premises security devices and software.

• Monitor access logs and perform periodic data audits and backups.

• Correlate network activity across networks to identify trends of unauthorized use.

• Research emerging threats and vulnerabilities to aid in the identification of network incidents.

• Monitor networks and systems for security breaches or intrusions.

• Proactively investigate suspicious activities to prevent potential security incidents through identification, analysis, investigation, and escalation.

• Detect, report, and respond to security incidents. Review alerts and data from sensors and network devices and Conduct network monitoring and intrusion detection analysis using Computer Network Defense (CND) tools, such as Intrusion Detection/Prevention Systems (IDS/IPS), firewalls, Host-Based Security System (HBSS), etc.

• Work directly with QFZA servers and networks team; perform setup, enhancement, and maintenance tasks.

• Perform periodic security assessments of applications and infrastructure. Perform vendor coordination, conduct PoC and prepare report to Management.

Configure, implement, maintain all security platforms and any other related software, such as anti-virus, Anti-SPAM, intrusion detection or intrusion prevention, firewalls and test all components prior incorporating to QFZ environment.

• Implement network security best practices through regular monitoring of router, switch, firewall configurations etc.

• Maintain network security devices to enable pro-active defense of networks.

• Work under strict change control processes to ensure only authorized changes are made to devices.

• prepare formal, technical incident reports if security breach occurs.

• Supports the creation of business continuity/disaster recovery plans. Conduct disaster recovery tests, publish test results, and make changes necessary to address deficiencies.

• Make decisions to weigh relative costs and benefits of potential actions and identify the most appropriate one.


Education and Certifications

Bachelor’s degree in communications, marketing, psychology, or a related field (or

relevant experience in these areas); master’s preferred.

• Certified Information Systems Security Professional (CISSP) and/or Certified

Information Security Manager (CISM), Certified Ethical Hacking (CEH)

• Vendor certifications in CISCO, Palo Alto, F5, Barracuda preferred.


Experience /Skills

  • Technical expertise in Intrusion Prevention System (IPS)/Intrusion Detection System(IDS), SIEMs and other Computer Network Defense (CND) security tools.
  • Hands on experience IT security tools like Wireshark, Nessus Pro, Kali Linux OS, Burpsuite, Nmap, Advanced port and IP scanning tools.
  • Over eight years of experience in information security, especially on a Computer Incident Response Team (CIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC) or a Security Operations Center (SOC).
  • Over three years of experience in another IT function, especially IT Audit.
  • Over three years of experience with regulatory compliance and information security management frameworks (e.g., IS027000, COBIT, NIST 800, etc.)
  • Knowledge and experience in Risk management, compliance, security awareness training and documentation.
  • Upgrade Networking Security Devices Software to stable Operating Systems as per the OEM recommendation.
  • Experience with Microsoft Cloud Security solutions, Microsoft Defender EDR, Azure Sentinel, Azure Security Center, Microsoft Cloud App Security, Microsoft 365 Security.
  • Experience with Azure Key Vault, HSM modules and BYOK encryption.
  • Experience with Microsoft Active Directory security and Azure Active Directory.
  • Experience with Windows OS administration, maintenance and hardening.
  • Experience with antivirus, application control, firewall, S2S VPN, SSL, intrusion detection or
  • intrusion prevention, and other network component policies.
  • Experience in managing SIEM environments, firewalls, content filters, proxy servers, HIPS,
  • packet capture devices.
  • Experience with Firewall and WAF configuration and administration.
  • Experience on Cisco FTD Firewall, Palo Alto Firewalls, Barracuda Cloud gen Firewalls and NAC solutions.
  • Technical expertise in anti-virus solutions, virus outbreak management, and ability to differentiate virus activity from directed attack patterns.
Apply on the Job Website
Post date: Today
Publisher: LinkedIn
Post date: Today
Publisher: LinkedIn