IT Security Specialist
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
malomatia is seeking an IT Security Specialist to implement security policies, manage security devices, monitor networks, and respond to incidents. Requires a Bachelor's degree in computer engineering, CISSP/CISM/CEH certifications, and hands-on experience with security tools.
Key Skills for This Role
Responsibilities
- Act as custodian of IT Department’s Information Security policies and procedures and ensure these are implemented successfully and review periodically
- Liaise with IS manager and internal auditors on IT security governance
- Ensure applicable regulations, standards and audit observations are implemented with necessary controls
- Oversee/Manage IT Budget relating to Information security
- Define, manage, and monitor both cloud and on premises security devices and software
- Monitor access logs and perform periodic data audits and backups
- Correlate network activity across networks to identify trends of unauthorized use
- Research emerging threats and vulnerabilities to aid in the identification of network incidents
- Monitor networks and systems for security breaches or intrusions
- Proactively investigate suspicious activities to prevent potential security incidents through identification, analysis, investigation, and escalation
- Detect, report, and respond to security incidents. Review alerts and data from sensors and network devices and Conduct network monitoring and intrusion detection analysis using Computer Network Defense (CND) tools, such as Intrusion Detection/Prevention Systems (IDS/IPS), firewalls, Host Based Security System (HBSS), etc.
- Work directly with servers and networks team; perform setup, enhancement, and maintenance tasks
Requirements
- Bachelor’s degree in computer engineering or related
- Certified Information Systems Security Professional (CISSP) and/or Certified Information Security Manager (CISM), Certified Ethical Hacking (CEH)
- Technical expertise in Intrusion Prevention System (IPS)/Intrusion Detection System (IDS), SIEMs and other Computer Network Defense (CND) security tools
- Hands on experience IT security tools like Wireshark, Nessus Pro, Kali Linux OS, Burp suite, Nmap, Advanced port and IP scanning tools
- Good experience in Computer Incident Response Team (CIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC) or a Security Operations Center (SOC) and any other IT functions, especially IT Audit
- Good knowledge of regulatory compliance and information security management frameworks (e.g., IS027000, COBIT, NIST 800, etc.)
- Knowledge and experience in Risk management, compliance, security awareness training and documentation
- Experience with Microsoft Cloud Security Solutions, Microsoft Defender EDR, Azure Sentinel, Azure Security Center, Microsoft Cloud App Security, Microsoft 365 Security
- Experience with Azure Key Vault, HSM modules and BYOK encryption
- Experience with Windows OS administration, maintenance and hardening
- Experience with antivirus, application control, firewall, S2S VPN, SSL, intrusion detection or intrusion prevention, and other network component policies
- Experience in managing SIEM environments, firewalls, content filters, proxy servers, HIPS, and packet capture devices
Full Job Posting
Responsibilities
- Act as custodian of IT Department’s Information Security policies and procedures and ensure these are implemented successfully and review periodically.
- Liaise with IS manager and internal auditors on IT security governance.
- Ensure applicable regulations, standards and audit observations are implemented with necessary controls.
- Oversee/Manage IT Budget relating to Information security.
- Define, manage, and monitor both cloud and on premises security devices and software.
- Monitor access logs and perform periodic data audits and backups.
- Correlate network activity across networks to identify trends of unauthorized use.
- Research emerging threats and vulnerabilities to aid in the identification of network incidents.
- Monitor networks and systems for security breaches or intrusions.
- Proactively investigate suspicious activities to prevent potential security incidents through identification, analysis, investigation, and escalation.
- Detect, report, and respond to security incidents. Review alerts and data from sensors and network devices and Conduct network monitoring and intrusion detection analysis using Computer Network Defense (CND) tools, such as Intrusion Detection/Prevention Systems (IDS/IPS), firewalls, Host Based Secur
- Work directly with servers and networks team; perform setup, enhancement, and maintenance tasks.
Responsibilities (continued)
- Perform periodic security assessments of applications and infrastructure. Perform vendor coordination, conduct PoC and prepare report to Management.
- Configure, implement, maintain all security platforms and any other related software, such as anti virus, Anti SPAM, intrusion detection or intrusion prevention, firewalls and test all components prior incorporating to QFZ environment.
- Implement network security best practices through regular monitoring of router, switch, firewall configurations etc.
- Maintain network security devices to enable proactive defense of networks.
- Work under strict change control processes to ensure only authorized changes are made to devices.
- Prepare formal, technical incident reports if security breach occurs.
- Supports the creation of business continuity/disaster recovery plans. Conduct disaster recovery tests, publish test results, and make changes necessary to address deficiencies.
- Make decisions to weigh relative costs and benefits of potential actions and identify the most appropriate one.
Qualifications
- Bachelor’s degree in computer engineering or related.
- Certified Information Systems Security Professional (CISSP) and/or Certified Information Security Manager (CISM), Certified Ethical Hacking (CEH)
- Vendor certifications in CISCO, Palo Alto, F5, Barracuda preferred.
Required Skills And Competencies
- Technical expertise in Intrusion Prevention System (IPS)/Intrusion Detection System (IDS), SIEMs and other Computer Network Defense (CND) security tools.
- Hands on experience IT security tools like Wireshark, Nessus Pro, Kali Linux OS, Burp suite, Nmap, Advanced port and IP scanning tools.
- Good experience in Computer Incident Response Team (CIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC) or a Security Operations Center (SOC) and any other IT functions, especially IT Audit.
- Good knowledge of regulatory compliance and information security management frameworks (e.g., IS027000, COBIT, NIST 800, etc.)
- Knowledge and experience in Risk management, compliance, security awareness training and documentation.
- Upgrade Networking Security Devices Software to stable Operating Systems as per the OEM recommendation.
- Experience with Microsoft Cloud Security Solutions, Microsoft Defender EDR, Azure Sentinel, Azure Security Center, Microsoft Cloud App Security, Microsoft 365 Security.
- Experience with Azure Key Vault, HSM modules and BYOK encryption
- Experience with Windows OS administration, maintenance and hardening.
- Experience with antivirus, application control, firewall, S2S VPN, SSL, intrusion detection or intrusion prevention, and other network component policies.
- Experience in managing SIEM environments, firewalls, content filters, proxy servers, HIPS, and packet capture devices.
- Experience with Firewall and WAF configuration and administration.
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at malomatia
SOC Thread Specialist
Doha, QAT
Malomatia seeks a SOC Threat Specialist to protect IT and OT environments by detecting, investigating, and hunting cyber threats. The role requires 10 years of information security experience, threat hunting, and malware
Red Team Expert
Doha, QAT
Malomatia in Doha seeks a Red Team Expert to join their Cyber Assurance Team, responsible for conducting ethical hacking, adversary simulations, and developing custom malware to strengthen security defenses. Requires adv
Consultant- Internal Auditing
Doha, QAT
Malomatia seeks an Internal Auditor for a client in Doha to evaluate financial and operational processes, ensure compliance, and strengthen internal controls. The role requires 6-22 years of experience in internal auditi
Information Technology Internal Auditor
Doha, QAT
Malomatia is seeking an experienced IT Internal Auditor for a client in Qatar to evaluate IT systems, financial and operational processes, and ensure compliance with internal policies and regulatory standards. The role f
Internal Auditor
Doha, QAT
malomatia is seeking Financial Internal Auditors for a client in Qatar to evaluate financial and operational processes, ensure compliance, and strengthen internal controls. Candidates need proven experience in internal a
Consultant - Cybersecurity
Doha, QAT
malomatia is seeking a Cybersecurity Consultant to perform risk assessments, support security architecture, and contribute to data security, disaster recovery, and GRC activities. The role requires 2-3 years of cybersecu
Presales Solution Consultant
Doha, QAT
Malomatia seeks a Presales Solution Consultant to shape and present tailored software solutions for government and enterprise clients. You will act as a technical advisor, designing scalable applications and leading tech
Presales Consultant - Business Applications
Doha, QAT
malomatia seeks a Presales Solution Consultant for its Application Development & Modernization unit. You will act as a trusted advisor, leading discovery, solution design, technical presentations, and proposals for custo
SOC Thread Specialist
Doha, QAT
Red Team Expert
Doha, QAT
Consultant- Internal Auditing
Doha, QAT
Information Technology Internal Auditor
Doha, QAT
Internal Auditor
Doha, QAT
Consultant - Cybersecurity
Doha, QAT
Presales Solution Consultant
Doha, QAT
Presales Consultant - Business Applications
Doha, QAT