Security Operations Officer
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
Implement data security architecture, privacy controls, and risk management while ensuring compliance with regulations and managing security operations.
Key Skills for This Role
Full Job Posting
• Data Security Architecture & Implementation
- Security Architecture: Design and implement data security controls including DLP, encryption, and data protection mechanisms across structured and unstructured environments.
- Control Enforcement: Ensure consistent enforcement of data classification, encryption, and access controls across databases, endpoints, and cloud platforms.
- Compliance Enablement: Translate PDPPL and national data classification requirements (C0–C4) into enforceable technical controls.
• Data Privacy Engineering
- Privacy Controls Implementation: Embed privacy controls (masking, tokenization, anonymization) into applications and data platforms.
- DPIA Execution: Conduct Data Protection Impact Assessments (DPIAs) with a focus on identifying and mitigating technical risks.
- Data Visibility: Implement data discovery, classification, and lineage tooling to track sensitive data flows.
- Data Residency Controls: Enforce data residency and sovereignty requirements across cloud platforms (Azure/GCP).
• AI Data Security
- AI Security Controls: Implement safeguards for Generative AI and LLM usage, including access control, logging, and data leakage prevention.
- Data Sanitization: Apply masking and anonymization techniques to datasets used in AI/ML pipelines.
- Third-Party Risk (Technical): Perform technical security validation of AI vendors, focusing on data handling and model training exposure risks.
• IT And OT Data Protection Integration
- Secure Data Transfer: Implement encryption and data filtering controls for data flows between OT and IT/cloud environments.
- Segmentation Controls: Enforce security controls at Industrial DMZ and integration points (e.g., firewalls, proxies, encryption gateways).
- Monitoring & Risk Detection: Support detection of data exposure risks from industrial systems through logging and monitoring solutions.
- ________________________________________
• Data Protection Operations & Cryptography
- Encryption & Key Management: Operate and manage encryption solutions including HSMs and Cloud KMS (BYOK/HYOK).
- Security Tools Operation: Deploy, tune, and operate DLP, Database Activity Monitoring (DAM), and data classification tools (e.g., Microsoft Purview / Azure Information Protection).
- Monitoring & Response: Support incident detection and response related to data leakage, misuse, or unauthorized access.
Security Assurance & Risk Management
- Lead security assessments, architecture reviews, vulnerability management, and assurance activities.
- Establish and operate a structured Security Assurance Framework covering control validation, coverage tracking, and continuous assurance.
- Manage the full security lifecycle from risk identification through remediation and validation.
- Translate technical findings into business-level risk statements and remediation plans.
Application, Cloud & Infrastructure Security
- Perform in-depth security assessments of web applications, APIs, mobile applications, cloud platforms, containers, and infrastructure.
- Identify advanced security risks such as business logic flaws, authentication weaknesses, privilege abuse, and modern attack techniques.
- Validate secure architectures, configuration baselines, and cloud-native security controls.
- Support secure SDLC and DevSecOps practices, including security testing and release controls.
Configuration Baselines & Continuous Hardening (New)
- Define and maintain secure configuration baselines across the enterprise technology stack (OS, databases, network devices, cloud services, identity platforms, and security tools).
- Align baselines with industry standards (e.g., CIS Benchmarks) and organizational risk requirements.
- Implement automated configuration compliance checks and continuous monitoring mechanisms.
- Conduct periodic reviews and validation of configurations to detect drift, misconfigurations, and unauthorized changes.
- Work with engineering and operations teams to enforce hardening standards and remediate deviations.
Architecture, Threat Modeling & Secure Design
- Lead security architecture and design reviews across applications, platforms, and integrations.
- Conduct threat modeling to identify attack paths, risks, and mitigation strategies.
- Ensure alignment with enterprise security architecture and Zero Trust principles.
Third-Party, Data Protection & Resilience
- Conduct security assessments of vendors, SaaS providers, and external integrations.
- Validate data protection, encryption, and privacy controls for sensitive and regulated data.
- Support cyber resilience activities, including OT/ICS security reviews, red team exercises, and incident response simulations.
Governance, Compliance & Reporting
- Ensure continuous alignment with regulatory and framework requirements (ISO 27001, NIST CSF, Qatar NIA, QCSF).
- Support internal and external audits with defensible, evidence-based controls.
- Define and report on security metrics, KPIs, and executive dashboards.
- ________________________________________
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at Starlink WLL
Security Engineer – Firewall
Doha, QAT
Role Summary We are looking for a Security Engineer specializing in firewall technologies to manage, configure, and secure the organization's perimeter and internal network defe...
Network Engineer
Doha, QAT
Seeking an experienced Network Engineer to design and maintain enterprise LAN/WAN infrastructure with expertise in routing, switching, and network security.
Call Center Agent
Doha, QAT
Provide exceptional customer service by addressing inquiries, resolving complaints, and offering solutions tailored to individual customer needs. Utilize active listening skills...
VT Engineer
Doha, QAT
Responsible for planning AV/ELV solutions, managing projects, providing technical support, and requiring strong knowledge in AV/ELV technologies and project management.
SOC Engineer
Doha, QAT
Security Monitoring & Threat Detection • Administration, management, and Support deployment and tuning of OT security tools (Nozomi, Forescout). Monitor OT/ICS environments usin...
Manager, Channel & Market Execution (Consultant)
Doha, QAT
Serve as the central SME for channel strategy and execution excellence, providing specialized expertise, standardized playbooks, and strategic second opinion to ensure regional ...
Audio-Visual (AV) Consultant
Doha, QAT
Lead audio-visual systems design for large venues, integrating LED displays and ensuring compliance with technical requirements, while managing project coordination.
Senior Manager- IPTV & VAS
Doha, QAT
Manage operation and maintenance of IPTV and VAS platforms, ensuring service availability, performance monitoring, and effective problem resolution while driving revenue growth.
Security Engineer – Firewall
Doha, QAT
Network Engineer
Doha, QAT
Call Center Agent
Doha, QAT
VT Engineer
Doha, QAT
SOC Engineer
Doha, QAT
Manager, Channel & Market Execution (Consultant)
Doha, QAT
Audio-Visual (AV) Consultant
Doha, QAT
Senior Manager- IPTV & VAS
Doha, QAT