IT Application Security Specialist

FULL_TIME On site
DohaQatar

Job Details

0

12 Jul 2026
Information Technology
10 Sep 2026
bachelor degree
8 years
QAR 0 - 0

Company Information


DOHA BANK Banking & Financial Services To be discussed

Job Description/Specification:


A leading organization in Qatar is seeking an experienced IT Application Security Specialist to strengthen its cybersecurity capabilities and protect enterprise applications against evolving cyber threats. This role is ideal for cybersecurity professionals with extensive experience in application security, DevSecOps, secure software development, and cloud security.

The successful candidate will lead the implementation of secure development practices, establish application security standards, and collaborate with development, infrastructure, and security teams to ensure applications remain secure, compliant, and resilient throughout their lifecycle.

About This Role

As an IT Application Security Specialist, you will be responsible for developing and governing the organization's application security framework across cloud, on-premises, and hybrid environments. You will integrate security into every phase of the Software Development Lifecycle (SDLC), implement DevSecOps best practices, conduct security assessments, and ensure compliance with industry regulations and cybersecurity standards.

This role combines strategic planning with hands-on technical expertise, making it ideal for professionals passionate about secure application architecture, cloud security, and enterprise risk management.

Key Responsibilities

🔒 Application Security Strategy

✅ Develop and maintain the enterprise application security framework.

✅ Implement secure-by-design principles across all business applications.

✅ Define security KPIs and continuously improve application security maturity.

🏗️ Secure Architecture & Design

✅ Design and review secure architectures for web applications, APIs, and microservices.

✅ Conduct threat modeling using industry-recognized methodologies.

✅ Implement authentication, encryption, and data protection standards.

✅ Participate in architecture governance and security reviews.

🚀 DevSecOps & Secure SDLC

✅ Integrate security controls into CI/CD pipelines.

✅ Implement and manage SAST, DAST, and Software Composition Analysis (SCA) tools.

✅ Establish secure coding standards aligned with OWASP Top 10.

✅ Automate security testing and validation throughout the development lifecycle.

☁️ Cloud & Infrastructure Security

✅ Design secure cloud environments across AWS and Azure platforms.

✅ Implement Identity & Access Management (IAM) and Zero Trust security principles.

✅ Secure Kubernetes and containerized workloads.

✅ Enhance cloud monitoring, logging, and threat detection capabilities.

🛡️ Security Testing & Risk Management

✅ Coordinate vulnerability assessments, penetration testing, and security reviews.

✅ Ensure timely remediation of identified vulnerabilities.

✅ Support incident response and improve security monitoring capabilities.

📋 Governance & Compliance

✅ Ensure compliance with PCI DSS, ISO 27001, SWIFT CSP, and other regulatory standards.

✅ Support internal and external security audits.

✅ Develop and maintain security policies, standards, and procedures.

🤝 Security Awareness & Collaboration

✅ Provide security guidance to development and DevOps teams.

✅ Deliver secure coding awareness sessions and technical training.

✅ Collaborate with infrastructure, security, and business stakeholders on cybersecurity initiatives.

Minimum Requirements

🎓 Education

  • Bachelor's Degree in Computer Science, Cybersecurity, Software Engineering, Information Technology, or a related field.

💼 Experience

  • Minimum 8–12 years of experience in cybersecurity.
  • Strong expertise in:
    • Application Security
    • DevSecOps
    • Cloud Security
  • Previous experience within the banking or financial services sector is preferred.
  • Experience working in highly regulated environments is highly desirable.

🛠️ Technical Skills

✔ Secure Software Development Lifecycle (Secure SDLC)

✔ DevSecOps & CI/CD Security

✔ OWASP Top 10

✔ Secure Coding Standards

✔ Threat Modeling

✔ API & Web Application Security

✔ SAST, DAST & Software Composition Analysis (SCA)

✔ AWS & Azure Security

✔ Kubernetes & Container Security

✔ Identity & Access Management (IAM)

✔ Zero Trust Architecture

✔ SIEM Platforms

✔ Vulnerability Management

✔ Security Monitoring

✔ PCI DSS

✔ ISO 27001

✔ SWIFT CSP

🏆 Professional Certifications

Candidates should hold at least two of the following certifications:

  • CISSP
  • CCSP
  • CISM
  • CRISC

Additional certifications such as CEH, OSCP, AZ-500, or AWS Security Specialty will be considered an advantage.

🌍 Language Requirements

  • Excellent communication skills in English.

Who Can Apply?

This opportunity is suitable for:

  • 🔐 Application Security Specialists
  • ☁️ Cloud Security Engineers
  • 🛡️ Cybersecurity Engineers
  • 🚀 DevSecOps Engineers
  • 🔍 Security Architects
  • 💻 Information Security Specialists
  • 🏦 Banking Cybersecurity Professionals
  • ⚙️ Security Consultants

Candidates with extensive experience securing enterprise applications, cloud platforms, and software development environments are encouraged to apply.

Why Apply?

This role offers the opportunity to work on enterprise-scale cybersecurity initiatives while helping protect critical business applications and digital services.

Benefits include:

  • ⭐ Opportunity to work on advanced cybersecurity technologies.
  • ⭐ Exposure to enterprise cloud and application security projects.
  • ⭐ Involvement in strategic security architecture and governance.
  • ⭐ Professional development within a highly regulated industry.
  • ⭐ Collaboration with experienced cybersecurity, development, and infrastructure teams.

CV & Interview Tips

To improve your chances of getting shortlisted:

  • 📄 Highlight experience implementing Secure SDLC and DevSecOps practices.
  • 🔒 Include projects involving OWASP Top 10 remediation, cloud security, or application security architecture.
  • ☁️ Showcase experience with AWS, Azure, Kubernetes, IAM, and Zero Trust security models.
  • 📊 Mention measurable achievements such as vulnerability reduction, security automation, compliance improvements, or successful audit outcomes.
  • 🏆 Clearly list your cybersecurity certifications, security tools, and enterprise technologies.
  • 💡 During interviews, be prepared to discuss threat modeling, secure architecture design, DevSecOps implementation, cloud security strategies, and real-world application security challenges.

Application Tips

Before applying:

  • ✅ Update your CV with your latest cybersecurity projects and technical achievements.
  • ✅ Highlight experience with application security testing tools, cloud platforms, and secure development practices.
  • ✅ Include all relevant cybersecurity certifications and professional training.
  • ✅ Demonstrate experience working in regulated industries such as banking or financial services.
  • ✅ Apply early, as senior cybersecurity positions are highly competitive.

Looking for more Cybersecurity, Cloud Security, and IT jobs in Qatar? Browse the latest opportunities on QatarJobPortal.com and check back regularly for newly posted vacancies.

My Saved Jobs

Submit Application


Apply via Link

Share this job