Data Security Specialist (Up to 30,000 QAR)

Data Security Specialist

(Arabic speaking preferred)

Role Overview

We are seeking a senior Data Security Specialist to lead the design, implementation, and ongoing operation of enterprise-wide data protection controls across on-premise, cloud, and emerging technology environments. This role focuses on safeguarding sensitive information throughout its lifecycle, supporting regulatory compliance, and enabling secure use of data across business and technology platforms.

Key Responsibilities

Data Security Engineering

• Design and implement data protection controls across enterprise systems, cloud platforms, and advanced technology environments.
• Deploy and manage solutions such as Data Loss Prevention (DLP), data masking, tokenization, and anonymization.
• Partner with application, infrastructure, and platform teams to embed security into end-to-end data lifecycle management.
• Implement and operate data discovery and classification solutions to identify, label, and manage sensitive information.
• Continuously monitor data security posture and produce risk, compliance, and control effectiveness reports.
• Support investigation and response to data security incidents, including insider threats and data breaches.

Cloud Data Security

• Implement and maintain data protection controls across multi-cloud environments.
• Secure databases, data lakes, and analytics platforms.
• Configure encryption for data at rest, in transit, and in use, including BYOK strategies.
• Deploy cloud-native data discovery and classification capabilities.
• Manage secrets management solutions to ensure secure access to data storage and services.
• Implement technical controls supporting AI and advanced analytics data governance.

Cryptography & Key Management

• Define and enforce cryptographic standards and key management practices.
• Manage enterprise encryption solutions and key lifecycle processes.
• Ensure alignment with internal security policies and industry-recognized cryptographic standards.

Data Privacy & Governance

• Support compliance with global and regional data protection and privacy regulations.
• Embed privacy-by-design principles into technical controls and system architectures.
• Drive data classification and governance initiatives to protect personal and sensitive data.

Database Security

• Secure structured and unstructured data stores, including relational, NoSQL, and large-scale data platforms.
• Implement database activity monitoring (DAM) and privileged access controls.
• Perform regular security hardening, reviews, and vulnerability assessments.

Collaboration & Assurance

• Work with internal stakeholders to define and evolve data protection strategies.
• Support compliance with national and international cybersecurity and information-security frameworks.
• Conduct data security assessments for vendors and third-party integrations.
• Review and approve data-sharing and data-processing arrangements.
• Define and track data security KPIs and maintain security dashboards.
• Stay current with emerging threats, technologies, and industry best practices.

Required Experience & Qualifications

• 8+ years of experience in information security with a strong focus on data protection, cryptography, and database security.
• Hands-on experience across cloud platforms, particularly Azure and GCP (AWS exposure is a plus).
• Experience working in regulated environments such as financial services, healthcare, or government is preferred.
• Exposure to AI/ML data security and governance concepts is advantageous.

Education

• Bachelor’s degree in Engineering, Information Technology, Computer Science, or a related discipline.
• Candidates with extensive relevant experience may be considered regardless of degree background.

Certifications (preferred)

• CISSP, CCSP, CDPSE, CCSK, or equivalent security certifications.
• Cloud security certifications (Azure, GCP, or AWS) are advantageous.

Technical Skillset

• Strong understanding of encryption standards, cryptographic protocols, and key management systems.
• Practical experience with secrets management platforms (e.g. enterprise vaults and cloud-native secret managers).
• Proven expertise in cloud-native data protection across multi-cloud environments.
• Hands-on delivery of data masking, tokenization, anonymization, and pseudonymization techniques.
• In-depth knowledge of data privacy regulations and data governance frameworks.
• Experience implementing and operating DLP, DAM, and data discovery/classification solutions.
• Ability to secure relational databases, NoSQL platforms, and large-scale data lake environments.
• Strong analytical, problem-solving, and stakeholder communication skills, with the ability to engage both technical and non-technical audiences.