+974 4016 1000 Doha, Qatar Sat - Thu 8.00 - 18.00. Friday CLOSED

Officer – Security and Control (Applications)

negotiable Expires in 1 month


Job Description

  • Maintains security policies and procedures in relation to access control and privileged identity management for all clinical and business supporting systems and applications, including but not limited to CIS (Cerner), ERP (Lawson), Philips PACS, CVIS, Oracle, SQL, and Active Directory.
  • Configure IBM Identity management system and Centrally manage end user identities.
  • Performs applications security configuration and tasks in conjunction to formal change and authorization process.
  • Identifies and develops access matrices for all applications and systems based on roles and responsibilities.
  • Contributes to the development of a security strategy that governs personnel access and privileges defined by the organization’s business needs by ensuring adequate segregation of duties and maintaining the principles of need-to-know and least privileges.
  • Evaluates, documents, and reports cases of excessive privileges, incompatible functions, and potential internal control weaknesses.
  • Assists in maintaining a comprehensive security policy that addresses automatic log­outs for idle sessions, frequency of password changes, recovery procedures and related activities.
  • Evaluates and determines alternative solutions that can facilitate and/or consolidate access control and identity management process.
  • Administers and maintains security functions related to access control and privileges on security systems and applications.
  • Conducts periodic reviews in coordination with business units and systems owners to ensure that all access authorizations and privileges are up-to-date and valid.
  • Provides formatted reports as required by department manager, internal and external auditors.
  • Maintains a strict and comprehensive document record and change control process for all authorizations related to logical and physical access and privileges.
  • Maintains quality services by following organization standards; minimizing, anticipating and managing downtime.
  • Maintains technical knowledge by attending educational workshops and technical training and reviewing professional publications.
  • Proactively manages resources & workload to meet department mission, vision & objectives.
  • Adheres to Sidra’s standards as they appear in the Code of Conduct and Conflict of Interest policies



  • Bachelor’s degree in the field of computer science, information systems, or computer engineering


  • 12+ years of experience working as a security officer
  • Demonstrated experience with:
  • – Cerner Core security module
  • – Lawson S3/ Landmark security modules
  • – IBM ISIM Identity Management system
  • Exposure to other clinical applications systems (Philips PACS, CVIS, VNA)
  • Experience in developing operational processes and procedures for users access management.



  • Security certification that relates to IT security, Access Management.
  • Courses Certification related to Cerner Core security, Lawson Core Security, IBM Identity Management.