Job Description
We are seeking a skilled
Senior Cybersecurity Consultant to join our Cybersecurity Practice. In this role, you will work closely with cloud, infrastructure, network, endpoint, and application teams to design, implement, and maintain enterprise security controls that protect our digital environments.
Your responsibilities will span Identity & Access Management (IAM), Data Security, Cloud Security, Endpoint Security, and Network Security. You will support the implementation of security best practices, monitor security posture, identify risks, and contribute to improving the overall security architecture across hybrid IT environments.
You will assist in assessing security architectures, identifying vulnerabilities, implementing security solutions, and supporting incident response activities to ensure confidentiality, integrity, and availability of systems and data. The role requires hands-on technical expertise, strong analytical capabilities, and the ability to translate security requirements into practical and scalable security solutions.
Responsibilities
Key Responsibilities:
- Enterprise Security Architecture and Risk Assessment:Support the assessment of enterprise IT and cloud environments to identify security risks and recommend appropriate controls across identity, data, network, endpoint, and cloud domains. Conduct security reviews of infrastructure, configurations, and deployments and provide actionable remediation recommendations aligned with industry best practices.
- Identity and Access Management (IAM):Implement and support secure identity and access controls, including role-based access control (RBAC), least privilege, multi-factor authentication (MFA), privileged access management (PAM), and identity governance practices across enterprise and cloud environments.
- Data Security:Assist in implementing data protection controls including data classification, encryption at rest and in transit, key management, data loss prevention (DLP), and secure data handling practices to ensure regulatory and organizational compliance.
- Cloud Security:Support secure configuration and monitoring of public, private, and hybrid cloud platforms. Implement security controls related to IAM, network segmentation, workload protection, encryption, logging, and compliance monitoring. Contribute to cloud security posture management and vulnerability remediation efforts.
- Endpoint Security:Support deployment and management of endpoint protection solutions including EDR/XDR platforms, antivirus, device control, patch management, and hardening baselines. Monitor endpoint security alerts and assist in incident investigation and response.
- Security Technology Stack:Support the implementation and management of security platforms and monitoring tools to strengthen security posture, improve visibility, and enhance threat detection across enterprise and cloud environments.
- Documentation and Reporting:Prepare and maintain documentation related to security configurations, risk assessments, incident reports, and operational procedures. Provide regular security posture updates to internal stakeholders and clients as required.
Qualifications
QUALIFICATIONS
- Education: Bachelor's / college degree in Computer Science, Information Security, or a related field.
- Experience: At least 8 years of experience in cloud security, cloud infrastructure, cybersecurity operations, or a closely related role.
- Certifications: Relevant professional certifications are highly desirable. These may include, but are not limited to:
- Microsoft Azure Security Engineer Associate (AZ-500)
- CompTIA Security+, CySA+, or similar
- ISC2 (e.g., CC or SSCP)
- CSA or other cloud security certifications.).
- Technical Skills: Hands-on experience with security technologies including identity platforms (such as Entra ID and Active Directory), cloud-native security tools, endpoint protection solutions (EDR/XDR), network security technologies (firewalls, IDS/IPS, VPN), SIEM and log monitoring solutions, encryption and key management systems, and vulnerability management tools. Familiarity with integrating security controls across enterprise and cloud environments is preferred.
- Knowledge: Strong understanding of cybersecurity principles including defense-in-depth, zero trust, least privilege, segmentation, encryption, vulnerability management, and incident response. Familiarity with security frameworks and guidelines (e.g., CIS Benchmarks, NIST, ISO 27001) and general compliance/governance concepts. Knowledge of Qatar National Information Assurance (NIA) is a plus.