malomatia

IT Security Specialist

malomatia

Doha, Doha Municipality, Qatar · Full Time

Be the first to apply

Experience
Any
Salary
Openings
1
Posted
3 hours ago
Work mode
In office
Education
Bachelor’s degree in computer engineering or related
Eligibility
Applicants with a bachelor’s degree in computer engineering or a related field, plus the required security certifications and hands-on experience in enterprise security operations, audit, compliance, or SOC/CIRT-type environments.
Resume
Required to apply

Where you'll work

Job description

Role overview

Malomatia is seeking an IT Security Specialist to take ownership of security governance, controls, and operational protection across both cloud and on-premises environments in Doha, Qatar. The role requires close coordination with internal stakeholders, audit teams, and infrastructure teams to strengthen the organization’s security posture, keep controls current, and support incident response and business continuity planning.

Key responsibilities

  • Serve as the owner of the IT department’s information security policies and procedures, ensuring they are effectively applied and periodically reviewed.
  • Coordinate with the Information Security Manager and internal auditors on IT security governance matters.
  • Make sure regulatory obligations, industry standards, and audit findings are translated into the required controls and implemented properly.
  • Manage the IT budget related to information security.
  • Define, administer, and continuously monitor security tools and platforms across cloud and on-premises environments.
  • Review access logs and carry out recurring data audits and backup checks.
  • Analyze activity across networks to spot signs of unauthorized behavior and emerging trends.
  • Track new threats and vulnerabilities to support incident identification and response.
  • Monitor systems and networks for possible breaches, intrusions, and suspicious activity.
  • Investigate unusual events proactively, then identify, analyze, escalate, and help prevent security incidents.
  • Detect, document, and respond to incidents, including reviewing alerts and sensor data and performing network monitoring and intrusion detection using CND tools such as IDS/IPS, firewalls, and HBSS.
  • Work closely with server and network teams on setup, improvements, and ongoing maintenance tasks.
  • Conduct periodic security reviews of applications and infrastructure, coordinate with vendors, support PoCs, and prepare management reports.
  • Configure, implement, maintain, and test security solutions such as anti-virus, anti-spam, IDS/IPS, firewalls, and related software before deployment into the QFZ environment.
  • Apply network security best practices by regularly reviewing router, switch, and firewall configurations.
  • Maintain security devices to support a proactive defense posture.
  • Operate within strict change-control procedures so that only approved changes are made to devices.
  • Draft formal technical incident reports in the event of a security breach.
  • Support business continuity and disaster recovery planning, including DR testing, test-result publication, and follow-up remediation for identified gaps.
  • Use sound judgment to compare risks, costs, and benefits and choose the most appropriate action.

Qualifications and requirements

  • A bachelor’s degree in computer engineering or a closely related field is required.
  • CISSP and/or CISM and CEH certifications are expected or strongly preferred.
  • Vendor certifications from Cisco, Palo Alto, F5, or Barracuda are preferred.
  • Hands-on knowledge of IDS/IPS, SIEM, and other computer network defense tools is essential.
  • Practical experience with tools such as Wireshark, Nessus Pro, Kali Linux, Burp Suite, Nmap, and advanced port/IP scanning utilities is required.
  • Experience working in or with CIRT, CERT, CSIRC, SOC, or similar IT functions, especially IT audit, is important.
  • Strong understanding of compliance requirements and information security management frameworks such as ISO 27000, COBIT, and NIST 800 is needed.
  • Background in risk management, compliance, security awareness training, and documentation is expected.
  • Ability to upgrade network security device software to stable operating systems according to OEM recommendations.
  • Experience with Microsoft cloud security tools, including Microsoft Defender for Endpoint, Azure Sentinel, Azure Security Center, Microsoft Cloud App Security, and Microsoft 365 Security.
  • Experience with Azure Key Vault, HSM modules, and BYOK encryption.
  • Working knowledge of Windows OS administration, maintenance, and hardening.
  • Experience with antivirus, application control, firewalls, site-to-site VPN, SSL, intrusion detection/prevention, and other network security controls.
  • Experience administering SIEM environments, firewalls, content filters, proxy servers, HIPS, and packet capture devices.
  • Experience configuring and administering firewalls and WAF solutions.
  • Exposure to Cisco FTD, Palo Alto firewalls, Barracuda CloudGen firewalls, and NAC solutions.
  • Strong understanding of antivirus technologies, virus outbreak handling, and how to distinguish malware activity from targeted attack patterns.

Additional information

This is a full-time onsite position based in Doha, Qatar. No salary, stipend, number of openings, start date, or application deadline was specified in the source.

Leave it if you'd like a reply — we won't use it for anything else.

Click to browse, drag & drop, or paste a screenshot

PNG, JPG, GIF, MP4, WebM, MOV · Max 20MB each · Up to 5 files

🤖
Broxer Assistant
Online · instant AI help
🤖
AI-powered · answers from Broxer Help