Senior IT Security Certification Specialist
BAE Systems Strategic Aerospace Services WLL
Senior Common Criteria Certification Specialist
Job Description
The Senior Common Criteria Certification Specialist is responsible for leading and executing cybersecurity product and system certification activities in alignment with internationally recognized standards, particularly Common Criteria. The role involves evaluating security documentation, conducting technical risk assessments, overseeing testing processes, and providing expert recommendations on certification decisions (e.g., EAL levels).
This position plays a critical role in ensuring the integrity, consistency, and credibility of the certification process, while collaborating with developers, evaluators, and regulatory stakeholders. The specialist also contributes to the development of certification policies and stays current with emerging cybersecurity threats, technologies, and standards.
Key Responsibilities
- Senior certifier is responsible for the conduct of day‑to‑day certification, validation, oversight, certificate maintenance, and mutual recognition with the Common Criteria standards.
- Ensure that the highest standards of competence and impartiality are maintained, and that consistency is achieved across all evaluation and certification activities.
- Possess a deep understanding of Common Criteria standards, Protection Profiles, Security Targets, Evaluation Assurance Levels (EALs), and related documentation.
- Provide guidance and mentorship to CB team members, certifiers and evaluators, ensuring their understanding of the certification process and helping them with complex evaluations.
- Lead and oversee the review and assessment of documentation submitted by product developers, including Security Target documents, design specifications, and test plans.
- Conduct advanced technical risk assessments, identifying potential security weaknesses or flaws in products or systems and providing expert guidance for mitigation.
- Oversee and manage the testing phase, ensuring that security testing is conducted rigorously and accurately.
- Conduct day‑to‑day certification, certificate maintenance, and mutual recognition projects in compliance with scheme documentation.
- Assist with the development of policies, standards, procedures and guidelines.
- Make recommendations regarding certification at specific Evaluation Assurance Levels (EALs) based on extensive evaluation expertise and knowledge of the certification process.
- Stay up-to-date with the latest developments in insecurity, emerging threats, and evolving technology to ensure the certification process remains relevant.
- Collaborate with stakeholders, such as developers, evaluators, and national certification authorities, to ensure consistent and accurate evaluation process.
Requirements
- University degree-level qualification in IT, information security or a related field, ideally with a focus on security domains.
- Certification from a recognized Common Criteria certification body and previous experience as a certifier.
- IT Security Overview Training and certification.
- Common Criteria for IT Security Evaluation Training and certification.
- Minimum 8 years of relevant experience.
- Minimum 4 years of work experience as a Senior IT / Information Security / Cyber Security Auditor and/or Risk Management and/or Cyber Security/Information Security Management.
- Proficiency in Arabic and English (spoken and written) is preferred.
General
- Analytical and problem‑solving skills.
- Proven experience in IT and Information Security Assessment.
- Common Criteria for IT Security Evaluation Training.
- Experience in Risk Assessment and management.
- Hands‑on experience in information security.
- Understanding of ISO27001 certification audit requirements.
- In‑depth knowledge of security testing methodologies and tools.
- Analytical and assessment experience of formal schemes and ability to assess a situation in a fair and objective manner to arrive at a firm conclusion.
- Training, workshops planning and delivery experience across Government & private sector.
Technical
- Experience in Risk Assessment and management including audit methodologies and risk assessment methodologies.
- Understanding of NIA controls and implementation requirements.
- Proficiency in security frameworks and standards like NIST, ISO27001, NIA.
- Strong awareness of Information Security / Cyber Security trends.
Behavioural
- Ability to multitask and work effectively with multiple project teams, sponsors, and customers.
- Ability to pay close attention to detail, meet deadlines and work under pressure.
- Interpersonal skills.
- Work autonomously with a high degree of enthusiasm.
Specific
- Excellent technical report writing skills.
- Capability to understand and interpret the Certification Criteria (ISO/IEC 17021, ISO/IEC 17024, ISO/IEC 27006, and ISO/IEC 17065).
- Knowledge of auditing and information assurance standards like ISA, ITAF, ISO17021, ISO19011.
- Proficiency in security frameworks and standards like ISO27001, NIA, CSF Q2022.
- Familiarity with third‑party audit, Certification and Information Security / Cyber Security audits.
- Proven, hands‑on experience in Information Security Audit or Information Security Management.
- ...Responsibilities Act as custodian of IT Department’s Information Security policies and procedures and ensure these are implemented successfully... ...(CISM), Certified Ethical Hacking (CEH). Vendor certifications in Cisco, Palo Alto, F5, Barracuda preferred. Technical...
- ...Job Description – IT Recruitment Specialist Position Details Job Title: IT Recruitment... ...services for Information Technology, Cyber Security, Digital Transformation, and other... ...discipline. Professional certification in Recruitment, Talent Acquisition,...
- ...IT Security SpecialistJob Summary We are seeking an experienced IT Security Specialist to safeguard the organization's IT infrastructure by implementing security controls... ...best practices. Preferred Certifications CISSP, CISM, or CEH. Cisco, Palo Alto...
- ...The Application Security Specialist is responsible for designing, implementing, and governing application security across enterprise systems, ensuring that all applications are secure by design and compliant with organizational and regulatory requirements. The role...
- ...Job Summary The IT Security Audit and Compliance Specialist plays a critical role in maintaining the organization’s cybersecurity and data protection... ...findings, compliance reports, and progress updates for senior management. Identify compliance risks related to...
- ...identify suitable candidates. Engage passive candidates across specialist technology disciplines. Conduct talent mapping and market... ...' experience recruiting for Information Technology, Cyber Security, Digital Transformation or related technical disciplines. Proven...
- ...client is seeking an experienced Security Operations Officer – Data Security Specialist responsible for safeguarding... ...Governance - Collaborate with IT, cloud, security, and business stakeholders... ..., or a related field. Certifications (Preferred) - CISSP - CCSP...
$29000 per hour
...Job Title: Infrastructure Specialist (Hybrid Cloud & Security) Location: Qatar Employment Type: Full-... ...Infrastructure Specialist to join our IT Infrastructure and Cybersecurity... ...FSMO Roles Replication PKI & Certificate Services Azure Identity / Microsoft...- ...About the Role The IT Security, Infrastructure & Technology Risk Manager is responsible... ...reporting to the Head of IT and senior management. Collaborate with Compliance... ...advantageous. Professional Qualifications & Certifications (Preferred) One or more of the...
- ...Job Title: IT Support Specialist (Remote Support – Group Companies) Language Requirement: Fluent in English About the Role: We are seeking a skilled and proactive IT Support Specialist to provide remote technical assistance across multiple companies within our group...
- ...A GRC Senior Analyst / Specialist supports the governance, risk, and compliance... ...cyber regulations, security policies and government assurance... ...closely with security, IT, and government stakeholders... ...compliance. Mandatory Certifications: CIIP (Certified...
- ...package till the signing of the deal With a sales cycle, support senior management with the market, account, competitor, and bid... ...should be in a similar role Experience in customized enterprise IT solution sales is mandatory Experience in sales within the “Digital...
- ...Global Services Energy Middle East LLC Doha, Qatar for a : Senior Category Specialist Reporting & Context Based within the Commercial... ...experience in Oil & Gas or petrochemicals. Professional certification in Supply Chain or Business Administration (CIPS, CPSM or...
$30000 per hour
...Information Security Security Operations Officer Security Assessment & Assurance Specialist Preferred Arabic Speaking Role Overview The Information Security... ...to business stakeholders. Preferred Certifications OSCP / OSEP / OSWE CISSP Cloud Security...- ...Job Title: Email Security Administrator (On-Premises) Location: Qatar Employment Type: Full-Time Duration: 1-3 Years (Depending... ...investigating email threats, and collaborating with cross-functional IT and security teams. Key Responsibilities Administer and...
- ...We're Hiring: Senior Contract Specialist We are supporting our client by hiring an experienced Senior Contract Specialist to join their... ..., Quantity Surveying, Law, or similar field. Certificates: Preferred Certifications include: MRICS (Royal...
- ...Context and Scope The Office of Staff Security (OSS) is responsible for providing... ...regarded. Ability to collaborate with senior government security counterparts and r relevant... .... Appointment will be subject to certification that the candidate is medically fit for...
- ...Job Description – IT & Digital Transformation Manager Position: IT & Digital Transformation Manager Department: Information... ...business continuity programs. Cybersecurity & Information Security Develop, implement, and maintain cybersecurity policies...
- ...Department INFORMATION SECURITY Primary Purpose of the Job -Governance and execution... ...in both an Information technology (IT) and Operational Technology (OT) capacity... ...science, or engineering. • Professional certifications in information security management and...
$18000 per hour
...Experience 9+ years in ICT / Network & Security, with 2+ years independently... ...in Engineering / Computer Science / IT. Mandatory Certifications CCNP Enterprise or Security (or equivalent... ...SMEs. Career Path TL3 → TL4 Senior Solution Architect → TL5 Principal Solution...- ...We are seeking a Key Accounts Specialist who will be responsible for providing senior-level technical, operational, and project coordination support for key... ...PMP, PRINCE2, or equivalent project management certification is required/preferred. Minimum 13+ years of relevant...
- ...Department CORPORATE SECURITY Primary Purpose of the Job Lead and implement QatarEnergy Corporate Security Program and management... ..., and influencing skills. Ability to influence and guide senior management in QatarEnergy, external stakeholders. Good...
- ...Graduate Degree in Quantity Surveying or equivalent •4+ Years’ Experience in Gulf Countries •6+ years’ experience overall with Strong IT Skills •Preferred experience in Contract Administration, Commercial/Financial Analytical Reports, Cost & Budget Management &...
- ...requirements from stakeholders. Act as a liaison between business users, plant operations teams, and technical teams to deliver effective IT solutions. Support, enhance, and optimize plant-related IT systems, including PIMS, Honeywell PHD, Baker Hughes applications, and...
- ...We are seeking two dedicated Email Security Administrators to manage and support the organization’s on-premises email security infrastructure. The role focuses on ensuring secure, reliable, and uninterrupted email communication across the enterprise by managing spam,...
- ...financial institution is seeking an experienced Risk & Governance Specialist to support the continued development of its enterprise risk... ...events and maintain risk registers. Prepare risk reports for senior management and governance committees. Assist with business continuity...
- ...Nutanix Engineer / Networking IT Support Engineer (Break & Fix Support) Location: Doha , Qatar Employment Type: Freelance... ...in Nutanix and networking technologies, hold a valid CCNA certification, and demonstrate excellent communication skills with fluent English...
- ...Description – Clinical Terminology Specialist Position Title:... ...Support Collaborate with IT, clinical, and informatics... ...Maintain confidentiality and security of patient-related information... ...Sciences, or related field. Certification in clinical coding or health...
- ...ENVIRONMENTAL SPECIALIST Location: MIC, Qatar Duration: 3 Months (extendable) Start Date: Immediately Project Type: Oil... ..., Engineering, or related field NEBOSH Environmental Certificate or equivalent preferred Valid MIC Gate Pass — preferred...
QAR 6000 - 7500 per month
...: QAR 6,000 – QAR 7,500 per month Job Type: Full-Time Job Overview IIQAF Group is seeking a vigilant and professional Security Guard in Doha to ensure the safety and security of our hospitality facilities. The ideal candidate will have experience in patrolling...
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Senior IT Security Certification Specialist. Be the first to apply!

