Broxer
Join
QatarEnergy

Senior Information Security Analyst

QatarEnergy

Doha, Doha Municipality, Qatar · Full Time

Be the first to apply

Experience
10+ yrs
Salary
Openings
1
Posted
1 day ago

Where you'll work

Job description

Role Overview

This position is responsible for steering and executing the Information Security Management System (ISMS) across both IT and OT environments. The role focuses on building and maintaining the policies, standards, and procedures that support enterprise security governance, compliance, and operational resilience.

Key Responsibilities

  • Lead the governance and day-to-day execution of the ISMS, including the creation of policies, standards, and procedures for corporate information security in IT and OT settings.
  • Set the information security rules and operating guidelines for the assigned domain, and drive awareness of those requirements across stakeholders.
  • Verify that effective IT controls are in place to satisfy current and future security compliance obligations.
  • Perform compliance checks and maturity reviews to help ensure secure and efficient operation of information and operational technology environments under ISMS guidance.
  • Build reporting packs, dashboards, and evidence records to track compliance activity.
  • Partner with IT teams, project managers, and business owners to support vendor risk reviews, due diligence assessments, and definition of security requirements, while maintaining third-party assessment records.
  • Keep pace with new security developments, threat patterns, and industry practices to strengthen the organization’s security stance.
  • Work with cross-functional stakeholders, including AI and digital teams, to align security governance with new technologies and applied intelligence initiatives.
  • Handle additional security-related duties assigned by the team lead.

Requirements

  • Bachelor’s degree in Information Security, Computer Science, or Engineering.
  • At least 10 years of relevant professional experience.
  • Professional credentials in information security management and standards compliance, such as CISSP, CISM, CRISC, GIAC, or ISO 27001.
  • Hands-on experience with control frameworks such as the NIST Cybersecurity Control Framework.
  • Exposure to large ICS and ICT environments in the energy industry, ideally oil and gas.
  • Practical understanding of customized information security management systems.
  • Background in defining Governance, Risk, and Compliance processes and using industry-standard GRC tools and platforms.
  • Knowledge of information security capability mapping and requirements analysis.
  • Familiarity with applicable state laws, industry regulations, and security standards.
  • Strong written, verbal, and presentation communication skills.

Additional Information

This role is based in Doha, Qatar and is a full-time, onsite position.

The opportunity is focused on security governance for both IT and OT domains, with close collaboration across technical, business, and digital teams.

Skills

Risk Assessment Stakeholder Management Security Compliance Policy Development OT Security Security Reporting ISMS management Information Security Governance Vendor Risk Management IT Controls GRC Processes NIST Framework

Leave it if you'd like a reply — we won't use it for anything else.

Click to browse, drag & drop, or paste a screenshot

PNG, JPG, GIF, MP4, WebM, MOV · Max 20MB each · Up to 5 files