Job Description

Roles & Responsibilities

Key Responsibilities

- Operate SIEM, EDR/XDR, and vulnerability management tools across the enterprise estate.

- Manage IAM/PAM controls, including Active Directory and Azure AD security configurations.

- Lead and execute security incident response, including triage, containment, and forensics.

- Conduct vulnerability assessments and drive remediation across servers, endpoints, and applications.

- Implement Zero Trust principles, conditional access policies, and least-privilege models.

- Maintain compliance with ISO/IEC 27001, NESA, and Qatar NIA standards.

- Develop and update security policies, standards, and procedures.

- Deliver security awareness training and phishing simulation campaigns.

- Coordinate with internal teams and external auditors on security audits and certifications.

Desired Candidate Profile

Required Qualifications

- Bachelor's degree in Computer Science, Information Technology, or Information Security.

- 5+ years' experience in IT security operations within enterprise environments.

- Hands-on with at least one major SIEM (Splunk, QRadar, Microsoft Sentinel) and one EDR (CrowdStrike, Microsoft Defender for Endpoint, SentinelOne).

- Strong working knowledge of network security: firewalls, IDS/IPS, secure remote access, web proxy.

- Active Directory, Group Policy, Azure AD security deep familiarity.

- One or more of: CISSP, CEH, CompTIA Security+, GCIH.

- Native or fluent Arabic AND professional English preferred (not mandatory).

- Currently in Qatar OR willing to relocate within 60 days.

Preferred / Nice to Have

- ISO/IEC 27001 Lead Implementer or Lead Auditor.

- Cloud security certifications (AWS Security Specialty, Azure Security Engineer).

- Familiarity with Qatar NIA and NESA UAE frameworks.

- Prior experience in government, oil & gas, or large enterprise sector.

- Hands-on with SOAR platforms (XSOAR, Splunk SOAR, Microsoft Sentinel playbooks).