×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security IT Consultant Data Security

Lead Risk & Information Protection

Job in Doha, Qatar
Listing for: Airswift
Full Time position
Listed on 2026-02-12
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, IT Consultant, Data Security
Salary/Wage Range or Industry Benchmark: 200000 - 400000 QAR Yearly QAR 200000.00 400000.00 YEAR
Job Description & How to Apply Below

Job Description:

Lead Risk & Information Protection

The Lead, Risk & Information Protection is responsible for establishing, implementing, and continuously improving the organization’s cybersecurity governance, information protection practices, security awareness, and enterprise-wide cybersecurity program. The role ensures that all policies, processes, and controls align with organizational objectives, regulatory obligations, and industry best practices for both IT and OT (Operational Technology) environments. This position requires strong leadership, independent decision-making, and the ability to drive security maturity across a complex enterprise.

Key

Accountabilities
  • Governance, Risk & Compliance (GRC)
    • Develop, implement, and maintain comprehensive cybersecurity policies, standards, and procedures aligned with leading frameworks such as NIST and ISO 27001.
    • Ensure continuous compliance with internal policies, regulatory requirements, and audit standards.
    • Lead and mature the organization’s information security governance framework, embedding cybersecurity requirements across all DBS programs and projects.
    • Oversee Business Impact Analysis (BIA) and Risk Assessments (RA), ensuring alignment with the organization’s threat landscape and industry best practices.
    • Develop and maintain detailed records of risk assessments, control evaluations, and audit findings.
    • Provide regular updates to the enterprise risk register in collaboration with CPD and other stakeholders.
    • Act as the primary focal point for internal and external audits, ensuring timely submission of evidence and corrective actions.
    • Monitor emerging cybersecurity threats, trends, and technologies, evaluating their potential impact on the organization.
    • Establish and develop robust governance arrangements to ensure cybersecurity requirements are captured in all DBS programs and projects.
    • Identify, evaluate, protect against, and report on potential information security risks in a manner that meets compliance and regulatory requirements and supports the risk posture of the organization.
    • Develop risk mitigation plans and recommend appropriate controls and ensure their implementation in alignment with different stakeholders.
    • Ensure comprehensively updated and organized records of risk assessments, control assessments and audit findings.
    • Stay updated with the latest cybersecurity threats, trends, and technologies and assess their potential impact on the organization.
    • Provide regular updates and feed the enterprise risk register with the latest updates.
    • Act as a focal point and collaborate with audit teams to manage the planned assessments and provide the required documents when requested.
    • Collaborate with CPD to maintain an updated record of cybersecurity risks in the enterprise risk register
  • Information Protection
    • Lead the organization’s data protection strategy in collaboration with legal, HR, and business stakeholders.
    • Provide expert guidance on information protection controls across IT and OT projects throughout the lifecycle.
    • Drive standardization and maturity of data protection processes through collaboration with subject-matter experts.
    • Oversee Data Loss Prevention (DLP), data classification, and data labeling activities; monitor anomalies and ensure follow-up.
    • Develop, maintain, and test incident response plans related to data breaches and information protection.
    • Guide the development and enhancement of Business Continuity (BC) and Disaster Recovery (DR) frameworks for critical functions.
    • Plan and track IT disaster recovery exercises, ensuring evidence and documentation are up to date.
    • Align BC/DR requirements with DBS and business stakeholders to ensure operational resilience.
  • Security Awareness & Training
    • Design, implement, and maintain a robust security awareness and training program targeting human factor risks.
    • Develop an annual cybersecurity awareness plan including phishing simulations, campaigns, and training events.
    • Regularly engage employees using the organization’s communication channels, in coordination with HR and PRC.
    • Promote a strong cybersecurity culture through continuous communication, news updates, best practices, and campaign reporting.
    • Establish…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search