Offensive Security Engineer (DevSecOps & Cloud Focus)

Location: Qatar

What You’ll Be Doing:

Security Tool Ownership & Automation

• Lead the deployment and optimization of key tools such as SAST, DAST, Breach & Attack Simulation (BAS), and container security solutions
• Integrate tools directly into CI/CD pipelines to automate security testing
• Continuously monitor and tune tools for performance, accuracy, and efficiency

Offensive Security & Enablement

• Provide expertise on exploitation techniques and vulnerability analysis
• Support red teaming and penetration testing with strategic tooling and guidance
• Help shift security left by working closely with DevOps and development teams

Container & Cloud Security

• Strengthen the security posture of Docker and Kubernetes environments
• Implement container image scanning, runtime protection, and orchestration best practices
• Utilize cloud-native security controls across AWS, Azure, and/or GCP

Ownership & Execution

• Drive projects from start to finish with minimal oversight
• Identify security gaps in tooling or processes and recommend scalable improvements
• Maintain dashboards, documentation, and reports that demonstrate tool effectiveness

Communication & Collaboration

• Translate complex findings into actionable insights for technical and non-technical stakeholders
• Present assessments and tool evaluations to leadership
• Mentor junior team members and promote knowledge sharing within the team

What You’ll Need to Succeed:

Required:

• Degree in Computer Science or a related field
• Deep understanding of offensive security (e.g., MITRE ATT&CK, OWASP Top 10, vulnerability exploitation)
• Hands-on experience with integrating SAST, DAST, and BAS tools into CI/CD systems (GitLab, Jenkins, Azure DevOps, etc.)
• Familiarity with platforms like Cytix, Cymulate, SafeBreach, AttackIQ, etc.
• Strong container security skills (Kubernetes, Docker)
• Ability to work independently in fast-paced, agile environments