Security Specialist

Important Note: This Job requires Relocation to Qatar.

Primary Purpose of the Role

The Security Specialist is responsible for administering the organization’s information and data security policies and practices, ensuring that information remains protected in terms of confidentiality, integrity, and availability while being accessible to authorized users. The role follows security best practice guidelines and focuses on endpoint security and data leak prevention.

Key ResponsibilitiesService Management & Operations

• Develop, maintain, and enforce security policies, standards, and procedures.
• Monitor compliance with security operations and investigate actual or potential breaches.
• Ensure security-related system changes are implemented promptly and records are accurate.

Strategy & Architecture

• Conduct vulnerability assessments and security risk assessments for applications and systems.
• Investigate major security breaches and recommend control improvements.
• Provide authoritative guidance on security strategies and ensure proportionate responses to risks.
• Perform risk assessments, business impact analysis, and accreditation for critical systems.

Endpoint Security & Data Leak Prevention

• Develop and implement endpoint security policies across desktops, laptops, servers, and mobile devices.
• Hands-on experience with endpoint security monitoring, EDR, XDR, antivirus, encryption, and DLP systems.
• Design and enforce strategies to prevent unauthorized transmission of sensitive data.
• Monitor data flows to identify and mitigate potential data leaks.
• Act as a first responder to endpoint and data leak incidents, including investigations and remediation.
• Continuously monitor emerging security threats and trends.
• Collaborate with IT and compliance teams to maintain endpoint security standards.
• Manage and optimize security tools such as Microsoft Defender XDR, Endgame EDR, Microsoft DLP, Microsoft Purview, Microsoft Insider Risk Management, and Microsoft Priva.

Technology & Compliance

• Strong knowledge of operating systems, networking protocols, firewalls, IDS/IPS, SIEM, and enterprise desktop software deployment.
• Work with vulnerability scanning tools like Tenable and Burp Suite.
• Ensure compliance with data protection regulations and frameworks (GDPR, HIPAA, ISO 27001, Qatar 2022 CSF, etc.).
• Support organizational initiatives for information and records management.

Data Security & Analysis

• Conduct data analysis and quality assessments.
• Understand data lifecycle (definitions, lineage, quality, and usage in business processes).
• Evaluate impact of data use on business outcomes.

Candidate Qualifications

• Bachelor’s degree/Engineering in Information Security, Computer Science, or related field.
• Mandatory Certifications:
• CompTIA Security+
• Certified Information Privacy Professional (CIPP)
• Microsoft Security Operations Analyst (SC-200)
• Preferred Certifications (not mandatory): CISSP, CEH, A+, Network+, SANS GIAC (GSEC/GCED).

Experience Requirements

• 5–6 years of cybersecurity experience, preferably in a SOC environment.
• Proven expertise in incident response, threat hunting, DLP, vulnerability management, and endpoint security monitoring.
• Experience with Microsoft security products is a must.
• Strong background in security incident response, threat analysis, and vulnerability scanning tools.
• Knowledge of data privacy and protection best practices.

Skills & Attributes

• Excellent analytical and problem-solving abilities.
• High attention to detail with strong monitoring and reporting skills.
• Ability to clearly communicate security concepts to both technical and non-technical stakeholders.
• Proactive, collaborative, and adaptable to organizational change.

Job Type: Full-time

Work Location: In person