Security Operations Officer – Data Security Specialist

About This Role

Black & Grey HR is recruiting for an established technology solutions and services provider in Doha, Qatar. Our client is seeking an experienced Security Operations Officer – Data Security Specialist responsible for executing and enhancing security operations, monitoring and responding to threats with a focus on mega sports events and non-event periods. Collaborate across teams to implement effective security measures for information systems.

Key Responsibilities

Data Security Engineering

• Design and implement data protection controls across enterprise, cloud environments and Artificial Intelligence Solutions.
• Deploy and manage solutions such as Data Loss Prevention (DLP), data masking, and tokenization.
• Collaborate with application and infrastructure teams to embed security into data lifecycle management.
• Implement and manage data discovery and classification tools to identify, categorize, and label sensitive data across the organization.
• Continuously monitor data security posture and produce regular compliance and risk reports.
• Assist the incident response team in investigating and responding to data security incidents, including insider threats and breaches.

Cloud Data Security

• Implement and manage data protection controls in GCP and Azure.
• Secure databases and data lakes.
• Configure encryption at rest, in transit, and in use, with BYOK strategies.
• Deploy cloud-native data discovery and classification solutions.
• Manage secrets management and ensure secure access to data storage systems.
• Implement controls for AI data governance.

Cryptography

• Define and enforce cryptographic practices and key management standards.
• Manage enterprise encryption practices for data at rest, in transit, and in use.
• Ensure compliance with organizational and industry cryptographic standards.

Data Privacy

• Ensure compliance with privacy regulations (GDPR, HIPAA, PDPPL).
• Embed privacy-by-design principles and requirements into technical controls.
• Drive data classification and governance programs to safeguard personal and sensitive information.

Database Security

• Secure structured and unstructured data repositories, including relational and NoSQL databases.
• Implement database activity monitoring (DAM) and user access controls.
• Perform regular security reviews and hardening of database systems.

Collaboration & Governance

• Collaborate with other stakeholders on data protection strategies.
• Ensure compliance with Qatar’s NCSA framework and international standards.
• Conduct data security assessments for vendors and third-party integrations.
• Review and approve data sharing agreements.
• Define and track data security KPIs and metrics.
• Maintain data security dashboards for continuous monitoring.
• Stay current with emerging threats, technologies, and industry best practices.

Requirements

• 8+ years of experience in information security with a focus on data protection, cryptography, and database security.
• Bilingual (Arabic Speaker) Preferred.
• Hands-on experience with cloud platforms, especially GCP and Azure.
• Strong understanding of encryption standards, cryptographic protocols, and key management processes.
• Practical experience with secrets management (HashiCorp Vault, AWS Secrets Manager, Azure Key Vault, GCP Secret Manager).
• Proven expertise in cloud-native data protection across multi-cloud environments.
• Experience implementing data masking, tokenization, and anonymization techniques.
• Bachelor’s degree in computer science, Information Security, or related field.
• Professional certifications such as CISSP, CCSP, CDPSE, or CCSK.
• Cloud security certifications (GCP, Azure, or AWS Security Specialty) preferred.

Required Skillsets

• Hands-on experience with DLP solutions (Forcepoint, Microsoft Purview, Google Cloud DLP).
• Implementation of data anonymization, pseudonymization, and masking techniques.
• Configuration and monitoring of DAM solutions (Imperva, IBM Guardium).
• Experience with data discovery and classification tools (Forcepoint, Microsoft Purview).
• Strong knowledge of cryptographic and key management systems (KMS, GCP Cloud KMS, Azure Key Vault).
• Securing relational, NoSQL, and data lake environments.
• Performing database vulnerability assessments and security audits.
• Working knowledge of secret management solutions and integration with CI/CD pipelines.