Security Operations Officer – Security Assessment & Assurance
Doha, Doha Municipality, Qatar · Full Time
Be the first to apply
- Experience
- 8+ yrs
- Salary
- QAR 30,000 / month
- Openings
- 1
- Posted
- 1 hour ago
- Work mode
- In office
- Eligibility
- Experienced information security professionals who can take ownership of enterprise security assurance work and operate from Doha, Qatar on a full-time onsite basis.
- Resume
- Required to apply
Where you'll work
Job description
Role overview
This senior-level opportunity is for an information security specialist who will steer security assurance across a broad technology landscape. The role focuses on reviewing applications, infrastructure, cloud platforms, identity systems, and external services to confirm that controls are effective and security expectations are met. The position also covers defining secure configuration standards, supporting secure delivery practices, and embedding security throughout the technology lifecycle.
The compensation for this role is up to 30,000 QAR.
Key responsibilities
You will lead assurance activity across enterprise platforms and convert technical issues into clear business-risk language for stakeholders.
- Run security assessments across multiple technology environments and service types.
- Carry out architecture reviews, vulnerability assessments, and validation of security controls.
- Build, maintain, and improve a structured security assurance approach.
- Monitor remediation work from issue discovery through to closure verification.
- Explain technical findings in a way that supports business decision-making.
- Review web applications, APIs, mobile solutions, cloud services, infrastructure, and container platforms.
- Identify risks such as weak authentication, privilege escalation paths, flawed business logic, and other sophisticated attack opportunities.
- Confirm that architectures and cloud protections are designed and operating securely.
- Contribute to Secure SDLC and DevSecOps activities.
- Create secure baseline configurations for operating systems, network infrastructure, databases, cloud services, identity platforms, and security tools.
- Align hardening standards with recognized industry guidance.
- Support continuous configuration monitoring, detect drift, and work with engineering teams to remediate gaps.
- Perform security design reviews, architecture assessments, and threat modelling.
- Ensure solutions follow enterprise architecture requirements and Zero Trust principles.
- Assess third-party vendors and externally hosted solutions.
- Review encryption, privacy, and data protection controls.
- Support resilience tests, red team activities, and incident response simulations.
- Take part in security reviews for operational technology environments when needed.
- Assist with audits, compliance activities, metrics, KPI reporting, and executive-level updates.
- Maintain alignment with recognized security frameworks and standards.
Required experience and qualifications
- At least 8 years of experience in information security.
- Deep background in security assurance and security assessment work.
- Strong understanding of application, cloud, infrastructure, and identity security.
- Practical experience in vulnerability management and security architecture review.
- Experience defining secure baselines and hardening systems.
- Strong verbal and written communication skills for technical and non-technical audiences.
Preferred certifications
- Offensive Security certifications.
- CISSP.
- Cloud security certifications.
- Industrial cyber security certifications, which are considered an advantage.
Additional information
This is a senior position within the Information Security department. The role is based in Doha, Qatar, and is structured as a full-time onsite opportunity.