QatarEnergy
Senior Cyber Security Incident Responder (IT & OT/Industrial)
- Permanent
- Doha, Qatar
- Experience 10 - 15 yrs
- Urgent
Job expiry date: 06/03/2026
Job overview
Date posted
20/01/2026
Location
Doha, Qatar
Salary
QAR 30,000 - 40,000 per month
Compensation
Comprehensive package
Experience
10 - 15 yrs
Seniority
Senior & Lead
Qualification
Bachelors degree
Expiration date
06/03/2026
Job description
The Senior Cyber Security Incident Responder at QatarEnergy serves as a subject matter expert within the Cyber Security team, providing proactive detection, analysis, isolation, suppression, and interruption of advanced threats that bypass existing security measures. The role manages incident response activities across both IT and OT/Industrial systems on a 24/7 basis, using state-of-the-art tools to analyze and investigate incidents. The incumbent ensures effective real-time hands-on management of all stages of the cyber security incident lifecycle and advises on immediate actions or recommendations to safeguard QatarEnergy assets. This position requires deep expertise in incident management, malware management, penetration testing, SIEM, anti-malware solutions, and networking technologies, with emphasis on advanced persistent threats and crime-ware mitigation.
Required skills
Key responsibilities
- Act as a subject matter expert in Cyber Security to provide proactive detection and handling of advanced threats
- Manage cyber security incident response activities for IT and OT/Industrial areas on a 24/7 basis
- Perform real-time hands-on incident management throughout all stages of the cyber security incident lifecycle
- Analyze and investigate security incidents using state-of-the-art tools and recommend or take immediate corrective actions
- Conduct malware analysis and security investigations as a key member of the incident response team
- Ensure proper management and remediation of vulnerabilities, security alerts, and threat intelligence
- Coordinate with SOC and other IT teams to ensure rapid containment, eradication, and recovery from cyber security incidents
- Apply networking principles and security technologies including IDS, IPS, firewall, WAF, and SIEM to secure infrastructure
Experience & skills
- 10+ years’ experience in a large-scale IT environment with focus on Information Security and knowledge of Operational Technology
- 6+ years’ experience in a Security Operations Centre conducting security investigations
- Proven track record in incident response, malware analysis, or similar roles
- Advanced knowledge of Anti-Malware, Vulnerability Management, Intrusion Detection/Protection, Perimeter Security, Security Incident Management, Security Information and Event Management (SIEM), and Penetration Testing
- Strong understanding of networking principles including TCP/IP, WANs, LANs, and Internet protocols (SMTP, HTTP, FTP, POP, LDAP)
- Demonstrated experience in combating crime-ware or Advanced Persistent Threats (APT)
- Bachelor’s degree in Information Security, Computer Science, or Systems Engineering