CrawlJobs Logo

Senior Information Security Engineer (SOC)

QIC digital hub

Location Icon

Location:
Qatar , Doha

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

We are looking for a Senior SOC Engineer to strengthen our Security Operations capabilities. In this role, you will help design and improve SOC processes, lead complex incident investigations, and support the development of detection and response capabilities across the organization. You will work closely with security analysts and engineering teams to enhance monitoring, automate response workflows, and continuously improve our security posture.

Job Responsibility:

  • Define and continuously improve security processes, procedures, and incident response playbooks
  • Optimize security event and log collection based on risk and detection relevance
  • Oversee and improve incident response workflows through post-incident analysis and lessons learned
  • Collaborate with L1-L2 security team members to expand detection coverage and develop new use cases
  • Participate in major security incident investigations, providing technical analysis and remediation guidance
  • Standardize automation and orchestration across SIEM, SOAR, EDR and related tools
  • Ensure alignment of security operations with security policies and frameworks (ISO 27001, NIST, MITRE ATT&CK)
  • Review security architecture for cloud and on-prem environments and recommend improvements
  • Lead investigation and response for high and critical severity incidents
  • Track remediation actions and ensure closure of identified security gaps

Requirements:

  • 5+ years of experience in Information Security as an L2/L3 SOC Analyst/Engineer with strong focus on Incident Response
  • Strong understanding of the incident lifecycle, detection engineering, and response escalation
  • Hands-on experience with SIEM/SOAR platforms (e.g., Splunk, Sentinel, Chronicle, QRadar, Wazuh)
  • Experience conducting security investigations and root cause analysis, as well as documenting those
  • Understanding of common log sources (network, endpoint, identity, application)
  • Experience developing detection rules and playbooks (Sigma, KQL, YAML, etc.)
  • Knowledge of ISO 27001 standards, MITRE ATT&CK and threat intelligence practices
  • Basic scripting or automation skills (Python or Bash)
  • Strong documentation, communication, and cross-team collaboration skills

Nice to have:

  • Knowledge of secure architecture principles (Zero Trust, CIS Benchmarks, NIST, OWASP) is a big advantage
  • Knowledge of cloud security monitoring (GCP, AWS, Azure) is a plus
What we offer:
  • Extra paid leave
  • Language classes
  • Meeting with experts
  • Professional development
  • QIC running club
  • Relocation support
  • Remote health insurance
  • Tax consultations
  • Travel discounts
  • USD, EUR, or AED salary payouts

Additional Information:

Job Posted:
March 21, 2026

Employment Type:
Fulltime
Work Type:
Remote work
Icon
QIC digital hub - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Senior Information Security Engineer (SOC)

Senior Security Engineer

Senior Security Engineer – Remote (US) – Competitive Salary Opportunity to work ...
Location
Location
United States
Salary
Salary:
Not provided
weareorbis.com Logo
Orbis Consultants
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or related technical field
  • 5+ years of hands-on experience in security engineering or related roles
  • Expertise in secure software development, architecture design, threat modeling, CI/CD pipelines, and risk assessment
  • Deep knowledge of network, system, database, and application layer attack patterns and mitigation methods
  • Ability to clearly communicate complex concepts appropriately to multiple audience types
  • Coding skills necessary to discover and patch issues Node, TypeScript/React, Python
  • Solid understanding and experience with AWS, Heroku, Netlify, and Snowflake, including policy, configurations, and security management tooling
  • Proven track record with SOC 2, PCI DSS, or similar compliance frameworks and reporting
  • Experience working in startup or high-growth environments, fintech, and/or highly regulated industries preferred
  • Cloud security certifications with evidence of continued education in the area of security are a plus
Job Responsibility
Job Responsibility
  • Conduct regular vulnerability assessments, penetration testing, and security audits to identify and remediate security gaps across our cloud infrastructure and applications
  • Monitor systems for security threats, suspicious behavior, and anomalies using SIEM tools and security monitoring and vulnerability platforms like CrowdStrike and Nessus
  • Lead security incident response efforts, investigate suspicious reports, and implement preventative measures that may be warranted
  • Review and approve code (Node, React, Python) that accesses to data, authentication, or integrations, ensuring secure development practices are followed
  • Work closely with engineering and operations teams, including executive stakeholders and occasionally third-party service providers, to integrate security best practices into development and deployment processes
  • Evaluate and provide security recommendations for system architecture changes (e.g. network segmentation, microservices, virtual environments, data warehousing, etc) and new feature implementations, including the evaluation of AI enablement opportunities
  • Secure cloud deployments (AWS/Heroku/Netlify), including configuration of firewalls, IAM policies, VPCs, databases/data warehouses (PostgreSQL, Snowflake), API security, container security, and network monitoring
  • Manage and maintain access controls across server environments, implementing principle of least privilege
  • Advise and audit the proper handling of data in accordance with privacy and security requirements and data classification policies
  • Review and assess security implications of all third-party integrations and vendor relationships
  • Fulltime
Read More
Arrow Right

Senior Security Engineer

Senior Security Engineer – Remote (US) – Competitive Salary Opportunity to work ...
Location
Location
United States
Salary
Salary:
Not provided
weareorbis.com Logo
Orbis Consultants
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or related technical field
  • 5+ years of hands-on experience in security engineering or related roles
  • Expertise in secure software development, architecture design, threat modeling, CI/CD pipelines, and risk assessment
  • Deep knowledge of network, system, database, and application layer attack patterns and mitigation methods
  • Ability to clearly communicate complex concepts appropriately to multiple audience types
  • Coding skills necessary to discover and patch issues Node, TypeScript/React, Python
  • Solid understanding and experience with AWS, Heroku, Netlify, and Snowflake, including policy, configurations, and security management tooling
  • Proven track record with SOC 2, PCI DSS, or similar compliance frameworks and reporting
  • Experience working in startup or high-growth environments, fintech, and/or highly regulated industries preferred
  • Cloud security certifications with evidence of continued education in the area of security are a plus
Job Responsibility
Job Responsibility
  • Vulnerability Management: Conduct regular vulnerability assessments, penetration testing, and security audits to identify and remediate security gaps across our cloud infrastructure and applications
  • Security Monitoring: Monitor systems for security threats, suspicious behavior, and anomalies using SIEM tools and security monitoring and vulnerability platforms like CrowdStrike and Nessus
  • Incident Response: Lead security incident response efforts, investigate suspicious reports, and implement preventative measures that may be warranted
  • Code Security Reviews: Review and approve code (Node, React, Python) that accesses to data, authentication, or integrations, ensuring secure development practices are followed
  • Cross-functional Collaboration: Work closely with engineering and operations teams, including executive stakeholders and occasionally third-party service providers, to integrate security best practices into development and deployment processes
  • Architecture Review: Evaluate and provide security recommendations for system architecture changes (e.g. network segmentation, microservices, virtual environments, data warehousing, etc) and new feature implementations, including the evaluation of AI enablement opportunities
  • Cloud Security: Secure cloud deployments (AWS/Heroku/Netlify), including configuration of firewalls, IAM policies, VPCs, databases/data warehouses (PostgreSQL, Snowflake), API security, container security, and network monitoring
  • Access Controls: Manage and maintain access controls across server environments, implementing principle of least privilege
  • Data Classification: Advise and audit the proper handling of data in accordance with privacy and security requirements and data classification policies
  • Integration Security: Review and assess security implications of all third-party integrations and vendor relationships
  • Fulltime
Read More
Arrow Right

Senior Information Security Compliance Analyst

We're looking for a technically grounded Senior IS Compliance Analyst who speaks...
Location
Location
United States , Chicago
Salary
Salary:
90000.00 - 130000.00 USD / Year
blumeglobal.com Logo
Blume Global
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Hands-on experience in technical security roles such as Security Operations, Incident Response, Security Analysis, penetration testing, or similar
  • Practical knowledge of security tools, SIEM platforms, vulnerability management, and security monitoring
  • and ability to read and understand security logs, configurations, and technical documentation
  • 6+ years of total experience with significant time in GRC
  • Working knowledge of ISO 27001, NIST frameworks, SOC 1/2, and GDPR requirements
  • Experience developing and implementing information security policies and controls
  • ISO 27001:2022 Lead Implementer and Lead Auditor certification
Job Responsibility
Job Responsibility
  • Lead technical security assessments and integration of acquired companies, mapping their security architectures and controls to our GRC frameworks, identifying gaps, and building remediation roadmaps that address both technical security and compliance alignment
  • Bridge technical security and business stakeholders by evaluating risks through a technical lens, working alongside security engineering teams to translate GRC requirements into practical security measures, and communicating effectively across technical and non-technical audiences
  • Develop and harmonize security policies and control frameworks across acquired entities, ensuring they're both audit ready and operationally sound, while translating between technical security requirements and governance documentation
  • Own customer security questionnaire responses by leveraging your hands-on security background to provide detailed, accurate answers and collaborating with infrastructure, application security, and operations teams to gather technical evidence
  • Drive continuous improvement of our GRC program through technical security enhancements, meaningful security and compliance metrics, and process improvements that increase both control effectiveness and operational efficiency
What we offer
What we offer
  • health and welfare benefits
  • tuition assistance
  • 401K savings and other retirement programs
  • employee assistance programs
Read More
Arrow Right

Senior Detection Engineer

This is a detection engineering role that leverages knowledge of monitoring, ana...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.marriott.com Logo
Marriott Bonvoy
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Sciences or related field or equivalent experience/certification
  • 3+ years of collective experience in Splunk SIEM (Splunk Enterprise Security) threat detection use case development or UEBA (Exabeam) use case development for insider threat use case development
  • 5+ years of experience in security functions such as SOC, CIRT, security engineering, risk management, vulnerability management or technical infrastructure operations, administration, or systems engineering
  • scripting or programming language, including Python
  • Current information security certification such as Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP) preferred
  • offensive and defensive security certifications such as CEH, IGAC Cyber Defense, OSCP or other related certifications preferred
  • Splunk Certification, including Splunk Enterprise Security Certified Admin preferred
  • use case development experience on the Exabeam platform preferred
  • working knowledge of the NIST Cyber Security Framework and ISO/IEC 27001:2022 preferred
  • working knowledge of the MITRE ATT&CK Framework preferred
Job Responsibility
Job Responsibility
  • Lead collaboration sessions within the cyber security tower and other business units to devise security monitoring use cases
  • engage and collaborate with other security engineers and architects as needed to keep pace with the evolution of corporate infrastructure and applications and share that knowledge with peers as appropriate
  • document prospective security monitoring use cases with MITRE ATT&ACK mappings using standard templates and methodologies
  • inform and consult other cyber ops teams of required data onboarding and integrations for use case development
  • develop analytics, correlation searches, dashboards, reports and alerts within the SIEM and UEBA platforms
  • solicit feedback for pre-production security monitoring content through peer review process and user acceptance testing for tuning
  • document developed security monitoring content in a documentation registry using department standard templates and methodologies
  • manage field mapping and transmission of security monitoring alerts to the security incident response platform for SOC analyst consumption as outlined in process documentation
  • provide governance support for the content development function entailing content development standards compliance, change management approvals for SIEM or UEBA content, and lifecycle management of developed security monitoring content
  • service operational requests in queue such as analytics content performance tuning, filtering, search refinement, parsing issues
  • Fulltime
Read More
Arrow Right

Senior Product Security Manager

As a Senior Product Security Manager, you will play a key role in driving and ma...
Location
Location
Australia
Salary
Salary:
Not provided
https://www.atlassian.com Logo
Atlassian
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years working in security or related role
  • 2+ years managing a team
  • Experience with application security, especially web application security
  • Experience in cloud security architecture and infrastructure
  • Experience in data protection and privacy
  • Experience coding in Java, Python, or Go, and at least one scripting language
  • Experience reasoning about security decisions
  • Experience leading projects from start to finish and mentoring other security practitioners
  • Experience collaborating with engineers
  • Bachelor's or Master’s degree in Information Security, Computer Science, or a related field
Job Responsibility
Job Responsibility
  • Product Security Leadership: Collaborate to execute and drive aspects of the Product Security Strategy, ensuring alignment with global objectives and smooth integration into the product development lifecycle
  • Team Management: Lead and mentor a team of technical professionals, fostering a culture of security and collaboration
  • Security Oversight: Implement and enforce security standards, policies, and procedures for product development, collaborating on risk assessments and mitigation strategies
  • Collaboration and Communication: Foster a security-focused culture within the product development process, communicating updates, risks, and strategies to executive leadership and stakeholders
  • Leadership Development: Mentor and develop security practitioners, contributing to large-scale security projects and ensuring successful implementation
What we offer
What we offer
  • Health and wellbeing resources
  • Paid volunteer days
Read More
Arrow Right

Senior Security Engineer

Metriport is an open-source data intelligence platform that helps healthcare org...
Location
Location
United States , San Francisco
Salary
Salary:
160000.00 - 220000.00 USD / Year
helpcare.ai Logo
Helpcare AI
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • You have 6+ years experience in security engineering and information security
  • You’re located in San Francisco or the Bay Area (or willing to relocate)
  • Familiar with HIPAA compliant environments
  • Experience rolling out and maintaining security frameworks like SOC 2, NIST, HITRUST, FedRAMP, etc.
  • Experience rolling out data protection technologies like SSO, MFA, VPN, FIPS, etc.
  • Experience with organizational secret management
  • Experience implementing SCA, SAST, DAST in CICD workflows
  • Experience with Mobile Device Management (MDM)
  • Proficiency in cloud security & networking on AWS - IAM, WAF, KMS, etc.
  • Proficiency in authentication, cryptography, encryption, and security protocols such as: mTLS, RSA, SSL, HMAC, RBAC, etc.
Job Responsibility
Job Responsibility
  • Evangelizing security across Metriport’s growing team
  • Driving full-stack security projects, big and small, end-to-end from ideation to production rollout
  • Helping the engineering team with PR reviews with a security-focused lens
  • Work with the Go to Market team to complete customer security assessments and questionnaires
  • Work with the engineering team to harden security across the development lifecycle
  • Managing your own work in Linear
  • Participating in bi-weekly sprint planning / retro sessions, and quarterly planning sessions
  • Attending a daily 30 minute remote stand-up at 7:30am PST Mon-Fri.
What we offer
What we offer
  • Competitive equity + compensation package
  • Full family Platinum health insurance, dental, and vision coverage
  • 401(k) retirement plan + matching
  • Flexible work from home or in-office
  • Healthy lunches are complimentary when working in-office (and breakfast + dinners as needed)
  • Quarterly company off-sites with the team
  • MacBook provided by us
  • Unlimited PTO.
  • Fulltime
Read More
Arrow Right

Senior Security Engineer

Truveta is the world’s first health provider led data platform with a vision of ...
Location
Location
United States , Seattle
Salary
Salary:
135000.00 - 180000.00 USD / Year
truveta.com Logo
Truveta
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cyber Security, Computer Science, Information Security, Information Systems, or a related field, or equivalent practical experience
  • 5+ years of experience in Security Operations (SOC), Incident Response, or Detection & Response role, with demonstrated ownership of complex security incidents
  • Hands-on experience with Microsoft Sentinel (SIEM) and Microsoft Defender XDR (Defender for Endpoint, Identity, Office 365, Cloud Apps)
  • Proficiency in KQL (Kusto Query Language) for investigations, threat hunting, and detection engineering
  • Experience designing, tuning, and maintaining SIEM detections and SOAR automation, including alert triage and response workflows
  • Solid understanding of Azure cloud architecture, core services, and native security controls
  • Familiarity with Azure Entra ID, identity security concepts, RBAC, and IAM-related threats
  • Experience with handing high-severity security incidents, including cross-team coordination and stakeholder communication
  • Familiarity with MITRE ATT&CK, threat actor techniques, and modern attack methodologies across cloud, identity, and endpoint environments
  • Experience supporting on-call rotations and working in a 24/7 or follow-the-sun SOC environment
Job Responsibility
Job Responsibility
  • Incident Response: Handle investigation and response to security incidents across endpoints, identities, email, cloud workloads, and SaaS applications
  • Act as a senior escalation point for SOC analysts during complex or ambiguous security events
  • Participate in on-call rotations and provide senior-level escalation support when needed
  • Lead or contribute to post-incident reviews (RCA, postmortems) and track remediation actions to completion
  • Ensure incidents are accurately documented for audit, compliance, and operational learning
  • Maintain and improve incident response runbooks, playbooks, and escalation procedures
  • Support incident readiness activities, including tabletop exercises and response drills
  • Detection Engineering & Automation: Develop, tune, and maintain Microsoft Sentinel analytics rules to improve detection quality and reduce false positives
  • Design and optimize KQL queries for investigations, threat hunting, and detection engineering
  • Integrate and maintain log sources and data connectors in Microsoft Sentinel, ensuring data quality and proper normalization
What we offer
What we offer
  • Interesting and meaningful work for every career stage
  • Great benefits package
  • Comprehensive benefits with strong medical, dental and vision insurance plans
  • 401K plan
  • Professional development & training opportunities for continuous learning
  • Work/life autonomy via flexible work hours and flexible paid time off
  • Generous parental leave
  • Regular team activities (virtual and in-person)
  • Fulltime
Read More
Arrow Right

Chief Information Security Officer

We are seeking an experienced Chief Information Security Officer to lead our inf...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
sokin.com Logo
Sokin
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years in information security with 5+ years in senior security leadership roles
  • Experience in regulated financial services (payments, banking, or fintech)
  • Track record of building and leading security teams in scale-up environments
  • Experience with FCA regulation, PCI-DSS compliance, and financial services audits
  • Hands-on experience with security incident response and crisis management
  • Deep knowledge of AWS security services (GuardDuty, Security Hub, WAF, KMS, CloudTrail, Config)
  • Experience with containerised environments (EKS/Kubernetes) and serverless security
  • Strong understanding of network security, zero trust architecture, and micro-segmentation
  • Proficiency with SIEM platforms (Splunk, Datadog Security, or equivalent)
  • Knowledge of application security tools: Wiz, SonarQube, Burp Suite, OWASP ZAP
Job Responsibility
Job Responsibility
  • Define and execute the enterprise information security strategy aligned with business objectives
  • Establish and maintain the Information Security Management System (ISMS) to support constant certification readiness with PCI DSS, ISO 27001 and SOC2
  • Own security policies, standards, and procedures across the organisation
  • Report to the Board and senior leadership on security posture, risk exposure and programme maturity
  • Manage security budget and resource allocation
  • Lead enterprise security risk assessments and maintain the infosec item on the risk register
  • Ensure compliance with FCA operational resilience requirements and SYSC guidelines
  • Maintain PCI-DSS Level 1 compliance across payment processing infrastructure
  • Oversee GDPR, UK Data Protection Act, and international privacy compliance
  • Manage relationships with external auditors, penetration testers, and regulatory bodies
What we offer
What we offer
  • Competitive salary and equity participation
  • Hybrid working with flexibility
  • Private healthcare
  • Pension contribution
  • Professional development budget
  • Opportunity to shape security strategy at a high-growth fintech
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy