QatarEnergy LNG

Senior Analyst Cyber Assurance

QatarEnergy LNG

Qatar · Full Time

Be the first to apply

Experience
5+ yrs
Salary
Openings
1
Posted
2 weeks ago
Work mode
In office
Education
Bachelor’s degree in information security, computer science, or engineering
Eligibility
Experienced cybersecurity professionals with a background in offensive security/red teaming and the required academic and certification profile can apply.
Resume
Required to apply

Where you'll work

Job description

Role overview

QatarEnergy LNG is looking for a Senior Analyst to join its Cyber Assurance function within the Information Risk Management Department. Reporting to the Cyber Assurance Lead, this role plays an important part in strengthening the company’s security posture through proactive assessment of defenses, ethical hacking, and adversary simulation. The position is focused on finding weaknesses and control gaps early, then turning those findings into practical recommendations that help protect digital assets and improve resilience.

What you will do

  • Build realistic threat simulation scenarios using cyber threat intelligence and attacker tactics, techniques, and procedures.
  • Set up, tune, and operate security assessment tools such as vulnerability scanners and web application scanning platforms.
  • Review scan outputs to spot weaknesses and exposure that could be abused in simulated attacks.
  • Plan and run targeted phishing exercises to evaluate employee awareness and the human side of security.
  • Partner with blue teams to share attack insights, strengthen detection logic, and improve overall defense capability.

Role context and challenges

This position requires strong depth in ethical hacking, penetration testing methods, and offensive cybersecurity practices. It also supports the Information Risk Management Division Manager in a period of heightened cyber risk linked to the geopolitical environment. A key part of the role is contributing to the continuous improvement of the SOC as its maturity evolves and threats change. Staying current with IT and OT information security practices, as well as relevant regulatory expectations, is essential.

What we are looking for

  • A bachelor’s degree in information security, computer science, or engineering.
  • Professional certifications in information security management and standards, such as OSCP, CRTP, CRTO, OSWE, or similar credentials.
  • At least 5 years of experience in offensive security or red teaming.
  • Strong knowledge of current development and service delivery methods, with recognized expertise in at least one specialist area.
  • Understanding of key strategic and business issues affecting IT, along with the safety and availability needs of OT and organizational leadership.
  • Awareness of management and control principles, plus a solid grasp of professional conduct and ethics.
  • Good working knowledge of IT and OT business applications.
  • Ability to assess risk, consider the impact of legislation, and encourage compliance.
  • Capability to build strong working relationships with OT OEM contacts and QatarEnergy LNG operation leaders.
  • Comfort dealing with stakeholders at all levels and maintaining integrity, objectivity, and fairness.
  • Strong analytical thinking and practical judgment when applying rules and standards.

Additional information

The role requires the candidate to keep pace with developments in IT and OT security and stay informed about changing regulatory requirements in both environments.

Leave it if you'd like a reply — we won't use it for anything else.

Click to browse, drag & drop, or paste a screenshot

PNG, JPG, GIF, MP4, WebM, MOV · Max 20MB each · Up to 5 files

🤖
Online · instant AI help