Professional Documents
Culture Documents
If you are interested, please go through the below JD and update you cv as per your
experience and send back to me on info@cartafella.com
Description
1. Establish and manage industry-leading Systems and operations security processes and practices
at each phase of the operational services within the environment and implement operational
roadmap for assessment, penetration testing and source code reviews.
2. Ensure acquired services are consistent with best practices security architecture guidelines.
3. Conduct regular manual and automated security testing, assessments, review results, track
issues and follow up to ensure remediation.
4. Coordinate and scope Third party penetration testing and security assessments activities
including configuration reviews for compliance and additional assurance of secured
implementation and operation of solutions.
5. Recommend improvements to the secure reference architecture through continuous review and
assessment of the security requirements, policies, and procedures.
6. Provide regular updates to management on Infrastructure security and vulnerability
management posture by defining operational KPIs and metrics, build dashboard and reports.
7. Manage follow up, close and report upon all department’s information security regulatory
requirements, audits, inconformity reports, compliance issues and observations that arise
during conducted internal and external assurance engagements.
8. Conduct Risk Assessments on the required Infrastructure and IT Operations services to identify
applicable risk scenarios and mitigating controls as per Qatargas Methodology.
9. Perform other related duties or assignments as directed.
10. Experience in identifying and mitigating Cybersecurity risks related to Azure implementations.
11. Experience in security architecture relating to Infrastructure and IT Operations.
12. Experience in designing secure on-prem Infrastructure solutions.
Experience in designing secure cloud Infrastructure and Operations solutions
Minimum Experience:
10 + years of progressive experience in a directly related field.
7 + years of professional experience in ICT information, application security in an enterprise
level environment.
3 + years in similarly relevant Application security role with around the same team capacity and
complexity of assigned tasks.
If you are interested please send the below details at the earliest.