Cyber Security Engineer

Cybersecurity Engineer/Specialist

1. Multicloud Security Architecture & Governance

• Lead security reviews and risk assessments across OCI, Microsoft Azure, and Google Cloud Platform (GCP) environments deployed within MCIT’s government digital infrastructure.
• Design and enforce cloud security baselines, guardrails, and governance controls aligned with Zero Trust Architecture (ZTA) principles and MCIT Cloud First Security Policy.
• Evaluate and validate cloud architecture designs submitted by system integrators and third- party vendors for security compliance before deployment approval.
• Oversee Identity and Access Management (IAM) configurations across multi-cloud environments, ensuring RBAC, Segregation of Duties (SoD), and least-privilege principles are enforced.
• Define and maintain the multicloud security reference architecture and ensure alignment across all government cloud tenancies.

2. Privileged Access Management (PAM)

• Govern all privileged access requests across cloud platforms, including review and approval of Access Control Matrices (ACM) and Privileged Access Request Forms (PARF) submitted by vendors such as Deloitte and other system integrators.
• Enforce privileged access lifecycle management including provisioning, periodic review, and revocation within mandated SLAs (24-hour revocation under NIAS requirements).
• Ensure MFA enforcement, SSO federation design, session timeout controls, and break-glass account governance are implemented per NF 6.1.44.x and MCIT Identity Governance standards.
• .
• Lead access revocation planning and audit evidence collection for all privileged access events across all cloud environments.

3. NCSA Regulatory Compliance & Cybersecurity Governance

• Serve as the primary subject matter expert for Qatar National Cybersecurity Agency (NCSA) frameworks including NIAS v2.1, NIMF, National Data Classification Policy v3.0, NCSA AI Secure Adoption Guidelines, and the National Cyber Security Strategy 2024–2030.
• Lead the preparation, review, and submission of mandatory governance artefacts required for vendor access to government cloud environments, including NDAs, personnel background check confirmations, and security design documents.
• Conduct cybersecurity design reviews for infrastructure and cloud deployments against MCIT NFRs (NF 6.1.x, NF 6.2.x, NF 2.4.x) and national policy requirements.
• Maintain MCIT’s cloud governance documentation, access management policies, and compliance registers across all multicloud environments.
• Represent MCIT in governance forums, technical committees, and regulatory engagements related to cybersecurity compliance.

4. SIEM, Audit Logging & Threat Monitoring

• Oversee the design and implementation of audit logging pipelines across cloud platforms (OCI Events, Azure Monitor, GCP Cloud Logging) integrating into MCIT’s SIEM platform per NF 6.2.14.
• Define log retention policies, access controls on audit logs, alerting models, and sample payload specifications for all privileged actions.
• Monitor security events, investigate anomalies, and coordinate incident response activities across multicloud environments.
• Ensure continuous compliance monitoring and reporting dashboards are maintained for management visibility.

5. Vendor & Third-Party Security Oversight

• Evaluate and enforce cybersecurity compliance requirements for all third-party vendors and system integrators (e.g., Deloitte, EY) engaging with MCIT cloud environments.
• Review NDA terms, subcontractor access clauses, and background check confirmations to ensure alignment with NCSA and MCIT governance requirements.
• Chair or co-chair weekly cybersecurity technical review meetings with vendors and internal teams.
• Manage the change management and Design Authority (DA) approval workflow for all privileged administrative actions performed by external parties.

6. Risk Management & Reporting

• Lead privileged access risk assessments covering risk identification, compensating controls, monitoring procedures, and mitigation plans for each cloud environment.
• Produce executive-level cybersecurity reports and dashboards for MCIT leadership summarising cloud security posture, open risks, and compliance status.
• Advise senior management on emerging multicloud threats, regulatory updates from NCSA, and recommended security investments.

Education

• Bachelor’s degree in Computer Science, Information Security, Information Technology, or a related field (required).
• Master’s degree in Cybersecurity, Information Assurance, or a related discipline (preferred).

Experience

• 6+ years of progressive experience in cybersecurity with a minimum of 3 years in multicloud security roles covering at least two of: OCI, Microsoft Azure, or Google Cloud Platform (GCP).
• Proven experience working in government, critical national infrastructure, or highly regulated environments.
• Demonstrated track record in cybersecurity governance, policy development, and regulatory
• compliance within a GCC or international government context.
• Experience managing vendor and third-party security compliance at a senior level.
• Prior involvement in large-scale ERP or government digital transformation programmes (e.g.,
• Oracle Fusion, SAP) is a strong advantage.

Technical Skills

• Deep expertise in OCI security: IAM Domains, Security Zones, Cloud Guard, Vault, Audit Logs, Events, Service Connectors, and OCI Bastion.
• Strong knowledge of Azure security: Entra ID (AAD), Defender for Cloud, Sentinel, Azure Policy, and Privileged Identity Management (PIM).
• Solid understanding of GCP security: Google Cloud IAM, Security Command Center,
• Chronicle SIEM, VPC Service Controls, Cloud Armor, and Cloud Logging.
• Expert-level knowledge of SSO/MFA federation, Zero Trust Architecture, SIEM integration,
• and PAM tools.
• Azure sentinel , Splunk / IBM Q-Radar.
• In-depth knowledge of NCSA frameworks: NIAS v2.1, NIMF, National Data Classification
• Policy v3.0, MCIT Cloud First Security Policy, and UGRP Appendix 3 NFRs.
• Strong ability to review, author, and critique cybersecurity architecture documents, access
• management frameworks, and governance artefacts.

• Certified Ethical Hacker (required)

• Certified Information Systems Security Professional – CISSP (required/ Trained)
• Certified Cloud Security Professional – CCSP (required/Trained)
• Oracle Cloud Infrastructure Security Professional (strongly preferred)
• Microsoft Certified: Azure Security Engineer Associate (AZ-500) (preferred)
• Google Cloud Professional Cloud Security Engineer (preferred)
• ISO 27001 Lead Implementer or Lead Auditor (preferred)
• CISM – Certified Information Security Manager (preferred)

Soft Skills

• Excellent written and verbal communication skills in English; Arabic is a significant advantage.
• Strong leadership, negotiation, and influencing skills when engaging with vendors and senior stakeholders.
• High attention to detail with the ability to interpret and apply complex regulatory requirements.
• Ability to work autonomously and lead complex, time-sensitive cybersecurity and Cloud engagements.
• Strong documentation and report-writing skills are suitable for both technical and executive audiences.