10 Information Security jobs in Oman

Join to apply for the Senior Cybersecurity Penetration Tester role at GoWin Coaching

4 months ago Be among the first 25 applicants

Join to apply for the Senior Cybersecurity Penetration Tester role at GoWin Coaching

Job Title : Senior Cybersecurity Penetration Tester

Experience : 2 to 5+ Years in Penetration Testing or Ethical Hacking

Work Mode : On-Site

Employment Type : Full-Time

Job Brief

One of our esteemed client is seeking a Senior Cybersecurity Penetration Tester to join their security team. In this role, you will simulate real-world attacks, identify system vulnerabilities, and help defend against cyber threats. Your expertise will be vital in strengthening security measures and safeguarding critical data.

Responsibilities

• Run penetration tests on systems, web apps, and networks.
• Simulate advanced cyberattacks using red team exercises.
• Find and exploit security weaknesses.
• Write detailed reports and suggest ways to fix issues.
• Work with internal teams to fix risks.
• Help test our security tools and response plans.
• Carry out phishing simulations and social engineering tests.
• Use attack simulation tools for automated testing.
• Stay updated on the latest threats and hacking techniques.
• Follow legal and ethical standards in all testing.
• Support audits and compliance checks.
• Create new test cases and tools for custom assessments.
• Suggest improvements for ongoing security upgrades.

Qualifications

• Bachelor?s degree in Cybersecurity, IT, or related field (preferred).
• 2 to 5+ years in penetration testing, ethical hacking, or red teaming.
• Experience using tools like Burp Suite, Metasploit, Nessus, Nmap, and Wireshark.
• Knowledge of TCP/IP, HTTP, DNS, and web app security issues.
• Skilled in scripting (Python, Bash, PowerShell).
• Familiar with Linux, Windows, and macOS.
• Cloud security knowledge (AWS, Azure, GCP) is a plus.
• Strong writing skills for reports and documentation.
• Familiar with frameworks like OWASP, NIST, MITRE ATT&CK.
• Experience with phishing and social engineering.

Preferred Certifications

• CEH (Certified Ethical Hacker)
• OSCP (Offensive Security Certified Professional)
• CRTP (Certified Red Team Professional)

Why Join Us?

• Work on real-world critical infrastructure systems.
• Be part of a mission-focused security team.
• Learn and grow with new technologies and tools.
• Enjoy a culture of teamwork, support, and continuous learning.
• Make a strong impact on national cybersecurity defense.

Application Instructions

If you possess the qualifications and are driven to excel in your field, we warmly invite you to apply by sharing your updated resume at or by applying directly through this platform.

Note: While we appreciate every application, only shortlisted candidates will be contacted. Your understanding is appreciated in this regard!

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology
• Industries Professional Training and Coaching

Referrals increase your chances of interviewing at GoWin Coaching by 2x

Get notified about new Penetration Tester jobs in Oman .

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Overview

In security risk management we're looking to harness the power of industry best practice combined with driving new innovation on how we do security risk assessments and modelling. Our security risk management team is the primary owner of the strategy and practices of how we identify, track and reduce our security risk across everything we do. To support this we need to use industry best practices paired with emerging threat information to promote risk identification, quantification, impact analysis, and modelling to ultimately drive decision making. In this role, you will help establish and execute a broad strategic vision for the security risk program at Canonical. You will not only work within the team but also cross-functionally with various teams across the organisation. The team contributes ideas and requirements for Canonical product security, improving the resilience and robustness of all Ubuntu customers and users subject to cyber attacks. Additionally, the team collaborates with our Organisational Learning and Development team to develop playbooks and facilitate security training across Canonical.

The security risk management team's mission is not only to secure Canonical, but also to contribute to the security of the wider open source ecosystem. They might share knowledge through public presentations and industry events, and share threat intelligence with the wider community or represent Canonical in sector-specific governance bodies.

• Define Canonical's security risk management standards and playbooks
• Analyse and improve Canonical's security risk practices
• Evaluate, select and implement new security requirements, tools and practices
• Grow the presence and thought leadership of Canonical security risk management practice
• Develop Canonical security risk learning and development materials
• Work with Security leadership to present information and influence change
• Participate in developing key risk indicators, provide inputs to the development of key control indicators, and key performance indicators for various programs
• Apply statistical models to risk frameworks (such as FAIR, sensitivity analysis, and others)
• Participate in risk management, decision-making, and collaborative discussions
• Lead quantified risk assessments and understand the value of qualitative data for improvements to quality and engineering processes
• Interpret internal or external cyber security risk analyses in business terms and recommend a responsible course of action
• Develop templates and materials to help with self-service risk management actions
• Monitor and identify opportunities to improve the effectiveness of risk management processes
• Launch campaigns to perform security assessments and help mitigate security risks across the company
• Build evaluation methods and performance indicators to measure efficiency of security functions and capabilities

• An exceptional academic track record
• Undergraduate degree in Computer Science or STEM, or a compelling narrative about your alternative path
• Drive and a track record of going above-and-beyond expectations
• Deep personal motivation to be at the forefront of technology security
• Leadership and management ability
• Excellent business English writing and presentation skills
• Problem-solver with excellent communication skills, a deep technical understanding of security assessments and risk management
• Expertise in threat modelling and risk management frameworks
• Broad knowledge of how to operationalize the management of security risk
• Experience in Secure Development Lifecycle and Security by Design methodology

We consider geographical location, experience, and performance in shaping compensation worldwide. We revisit compensation annually (and more often for graduates and associates) to ensure we recognise outstanding performance. In addition to base pay, we offer a performance-driven annual bonus. We provide all team members with additional benefits, which reflect our values and ideals. We balance our programs to meet local needs and ensure fairness globally.

• Distributed work environment with twice-yearly team sprints in person
• Personal learning and development budget of USD 2,000 per year
• Annual compensation review
• Recognition rewards
• Annual holiday leave
• Maternity and paternity leave
• Employee Assistance Programme
• Opportunity to travel to new locations to meet colleagues
• Priority Pass, and travel upgrades for long haul company events

Canonical is a pioneering tech firm at the forefront of the global move to open source. As the company that publishes Ubuntu, one of the most important open source projects and the platform for AI, IoT and the cloud, we are changing the world on a daily basis. We recruit on a global basis and set a very high standard for people joining the company. We expect excellence - in order to succeed, we need to be the best at what we do. Canonical has been a remote-first company since its inception in 2004. Working here is a step into the future, and will challenge you to think differently, work smarter, learn new skills, and raise your game.

Canonical is an equal opportunity employer

We are proud to foster a workplace free from discrimination. Diversity of experience, perspectives, and background create a better work environment and better products. Whatever your identity, we will give your application fair consideration.

Overview

We have an urgent requirement for a Network Security Specialist for a banking client in Oman.

• Maintain the bank’s LAN/WAN infrastructure and online platforms in accordance with the bank’s guidelines and timelines.
• Configure networks to support the required level of security within the agreed SLAs.
• Administer and manage Web Application Firewalls (WAF), Proxy servers, Load Balancers (LB), and Network Firewalls, including configuration, policy enforcement, performance tuning, and ongoing maintenance.
• Liaise with all departments and branches on network-related installation, maintenance, and security.
• Assist line manager in the preparation and maintenance of section-related documentation.
• Oversee the operational technical development of the section and contribute to the development of section policies, processes, and procedures.
• Work with Infrastructure, Architecture, and delivery teams to ensure networks are fully functional and secure.
• Participate in improving operational technical standards and competencies within the team.
• Provide call support to the networks and 24/7 teams as required.
• Assist and support the implementation of service management processes including Change Processes, Service Level Agreements, ensuring alignment with the bank’s strategic objectives.
• Adhere to best practices in capacity management, resiliency, network patching and upgrading.
• Ensure all activities follow the bank’s policies, processes, and procedures.
• Participate in network-related initiatives and projects as assigned by the line manager.
• Ensure all related activities are in accordance with the bank’s policies, procedures, and standards.
• Participate in other related initiatives and projects as assigned by management.

• 5 to 7 years of experience in networks technology.

• Experience in design, delivery, and operation of networks and connectivity services.
• Manage the critical LAN/WANs.
• Experience delivering large-scale network change programs.
• Knowledge of bank policies, processes, and procedures.

• Security
• Infrastructure
• Maintenance
• Network security
• Projects
• LAN

• Mid-Senior level

• Full-time

• Information Technology

• Technology, Information and Internet

Security specialist vacancy in Muscat Oman

Overview
SABSA Specialist - Cyber Security Architect. Support cyber safety and security architect lead in developing unified Cybersecurity Architecture covering both Business and Industrial Control Equipment (ICS)/Refine Control Domain Name (PCD) environments. Assist in refining architecture deliverables and related EA records to focus on the cyber security design domain.

Responsibilities

• Support the cyber safety and security architect lead in developing unified Cybersecurity Architecture covering both Business and ICS/PCD environments.
• Refine current venture designer EA records for understanding and focus on the cyber security designer domain for deliverables.
• Assist the advancement of the roadmap for the design and build of protection design functions and processes.
• Maintain verifiable documentation of security design features, processes, toolkits, and development of SABSA/CSA/ADM protection design reports.
• Assist in producing methods that utilize digital technologies and the business ecosystem.
• Support the development of Change Monitoring and Fostering Strategy (CMAP) large change management projects and effectively manage design changes.
• Assist in identifying gaps in the various security architecture layers.
• Support in setting the requirements for the yearly Set Build for Cybersecurity design.
• Provide process maps for security design features based on SIPOC.
• Deliver security design layouts and toolkits.
• Utilize agile and lean techniques to drive continuous improvement.

Qualifications

• Obligatory Accreditation: SABSA Chartered Security Architect - Practitioner Certificate (SCP); Master certification (SCM) is favored
• CISSP-ISSAP/ CCSP
• TOGAF 9 licensed
• SANS GICSP—SEC410

Job Details

• Job Types: Permanent, Agreement
• Agreement length: 1 month
• Capacity to commute/relocate: Muscat — able to commute or relocate before starting work (Required).

KalSoft is currently seeking a Network and Security Architect to join our team in Muscat, Sultanate of Oman .

This is a full-time, onsite role focused on delivering secure, resilient, and modern multi-cloud and network infrastructures . The position requires deep expertise across network security, cloud-native platforms, Kubernetes, and automation .

• Design and implement secure architectures for multi-cloud environments (Azure, AWS, GCP, OCI)

• Plan and optimize network infrastructure, including VLANs, Layer 2/3, BGP, OSPF, EIGRP, RIP, SD-WAN

• Deploy, manage, and support Kubernetes platforms (managed and on-prem), including upgrades, scaling, and DR

• Implement Service Mesh solutions (Istio/Linkerd) for secure communication, traffic shaping, and advanced deployment strategies (canary, blue-green)

• Automate infrastructure provisioning and deployments using IaC (Terraform) and GitOps pipelines (ArgoCD, Helm, Kustomize)

• Establish Policy-as-Code guardrails (Kyverno/OPA) for compliance, security, and governance

• Build and manage observability stacks (Prometheus, Grafana, OpenTelemetry, Tempo, Elastic/Loki) with SLO tracking and alerting

• Support and optimize end-to-end network and security infrastructures across cloud and on-prem environments

• Administer and troubleshoot network, security, and Kubernetes platforms daily

• Manage incident escalations (P1–P3) and ensure timely resolution

• Provide detailed documentation (architectures, IaC repos, runbooks/playbooks, security matrices)

• Advise stakeholders on emerging technologies, best practices, and compliance requirements

• 15+ years’ experience in Cloud, Data, Network Security, and Cyber Security within banking, insurance, retail, or service provider sectors

• Mandatory certifications : CCIE, CISSP, Microsoft Cybersecurity Architect Expert

• Strong expertise in network security (firewalls, VPNs, WAFs, PAM integration, micro-segmentation, zero-trust)

• Proven experience with routing/switching, SD-WAN, and enterprise-scale network designs

• Hands-on experience with Kubernetes lifecycle management and cloud-native deployments

• Proficiency in IaC, GitOps, Policy-as-Code, and observability tools

• Strong troubleshooting, incident response, and client-facing communication skills

• Background in vulnerability assessment, compliance, and incident management

Founded in 1999, KalSoft is a multi-award-winning trusted technology partner in business innovation, delivering impactful business results to clients throughout digital modernisation and evolution. As a Microsoft Solutions Partner and a Solutions Integrator (SI) , KalSoft has a well-established international presence in seven countries, and maintains a network of front offices and local business operations serving North America, Asia, Africa and the Middle East to help meet the needs of our customers and partners.

This is a unique opportunity to use your software engineering and cryptography skills to build and maintain the security foundation that enables Ubuntu and its users to operate securely and remain compliant to international information security standards such as FIPS 140-3 and Common Criteria. You will use your applied cryptography, Linux Security, and coding skills to enhance the Ubuntu distribution and work with organizations such as DISA and CIS to draft and implement security hardening benchmarks for Ubuntu.

As a member of the Security Hardening team you will work with and develop automation tooling to audit deployed systems for DISA-STIG and CIS benchmark compliance. You will interact with internal and external stakeholders to identify gaps in our frameworks, and develop new solutions to address these challenges. In this role you will have the opportunity to influence team and security culture, facilitate technical delivery, and help drive team direction and execution. You'll collaborate closely with Canonical's kernel team as well as the wider engineering organization to drive features impacting all Ubuntu users.

Day-to-day responsibilities

• Collaborate with other engineers in the Security Hardening team to achieve and retain various Security certifications
• Extend and enhance Linux cryptographic components (OpenSSL, Libgcrypt, GnuTLS, and others) with the features and functionality required for FIPS and CC certification
• Collaborate with external security consultants to test and validate kernel and crypto module components
• Work with external partners to develop security hardening benchmarks and audit + remediation automation for Ubuntu
• Contribute to Ubuntu mainline and upstream projects to land solutions and benefit the community
• Communication and collaboration within and outside Canonical to identify opportunities to improve our security posture, rapidly resolve issues, and deliver high-quality solutions on schedule
  
  

• Hands-on experience with low-level Linux cryptography APIs and debugging
• Excellent software engineering fundamentals, including prior experience with C development, and the ability to demonstrate such
• Hands-on experience with Linux system administration and shell scripting
• Demonstrated knowledge of security and cryptography fundamentals + direct experience writing secure code and implementing best practices
• Significant development experience working with open source libraries
• Excellent verbal and written communications to enable efficient collaboration with internal and external partners in a remote-first environment
  
  

• Prior experience working on FIPS/Common Criteria certified products and in-depth knowledge of the underlying standards
• Prior experience working directly with DISA-STIG or CIS benchmarks, including related audit + remediation tooling (e.g. Compliance as Code)
• Experience working directly with Linux Kernel
• Prior experience with Python, OVAL (Open Vulnerability Assessment Language), and Ansible
• History of contributions to open source projects
  
  

• Distributed work environment with twice-yearly team sprints in person - we've been working remotely since 2004!
• Personal learning and development budget of USD 2,000 per year
• Annual compensation review
• Recognition rewards
• Annual holiday leave
• Maternity and paternity leave
• Employee Assistance Programme
• Opportunity to travel to new locations to meet colleagues from your team and others
• Priority Pass for travel and travel upgrades for long haul company events
  
  

Location:
Bowsher

Employment Type:
Full-time

About the Role:

We are seeking a motivated
Network & Security Engineer
with strong fundamentals in networking and security to join our team. The ideal candidate should have solid technical knowledge of Layer 2/3 networking, switching concepts, and firewall management, along with a willingness to learn and grow in a dynamic environment.

Key Responsibilities:

• Configure, manage, and troubleshoot network infrastructure devices (switches, firewalls, etc.).
• Implement and support VLANs, trunk/access ports, and inter-VLAN routing.
• Maintain and optimize network performance, ensuring redundancy and loop prevention using LACP and STP.
• Manage firewall environments (preferably FortiGate), including policy creation, troubleshooting, and upgrades.
• Support VPN configuration and troubleshooting.
• Provide basic DNS and DHCP administration, including IP helper configuration.
• Collaborate with team members on network projects, security implementations, and incident resolution.

Requirements:

• Strong understanding of the
  OSI Model
  (Layer 2 & Layer 3).
• Clear knowledge of
  access vs. trunk ports
  (tagged/untagged traffic) and their use cases.
• Experience with
  LACP
  and
  STP
  , with the ability to prevent and troubleshoot network loops.
• Practical knowledge of
  VLANs
  ,
  SVIs (Switch Virtual Interfaces)
  , and
  inter-VLAN routing
  .
• 1–2 years of hands-on experience with firewalls
  (FortiGate experience preferred).
• Basic understanding of
  DNS
  and
  DHCP (including IP helper addresses)
  .
• Basic knowledge of
  VPNs
  (site-to-site and remote access).
• Excellent troubleshooting skills and eagerness to learn new technologies.

5 yrs experience of sales and marketing in Oman in the fields of IT Solutions, Cyber Security and ELV solutions, services. Should be from Indian origin and have direct contacts, relationship with potential clients.

KalSoft is currently seeking a Network and Security Architect to join our team in Muscat, Sultanate of Oman.

This is a full-time, onsite role focused on delivering secure, resilient, and modern multi-cloud and network infrastructures. The position requires deep expertise across network security, cloud-native platforms, Kubernetes, and automation.

• Design and implement secure architectures for multi-cloud environments (Azure, AWS, GCP, OCI)
• Plan and optimize network infrastructure, including VLANs, Layer 2/3, BGP, OSPF, EIGRP, RIP, SD-WAN
• Deploy, manage, and support Kubernetes platforms (managed and on-prem), including upgrades, scaling, and DR
• Implement Service Mesh solutions (Istio/Linkerd) for secure communication, traffic shaping, and advanced deployment strategies (canary, blue-green)
• Automate infrastructure provisioning and deployments using IaC (Terraform) and GitOps pipelines (ArgoCD, Helm, Kustomize)
• Establish Policy-as-Code guardrails (Kyverno/OPA) for compliance, security, and governance
• Build and manage observability stacks (Prometheus, Grafana, OpenTelemetry, Tempo, Elastic/Loki) with SLO tracking and alerting
• Support and optimize end-to-end network and security infrastructures across cloud and on-prem environments
• Administer and troubleshoot network, security, and Kubernetes platforms daily
• Manage incident escalations (P1–P3) and ensure timely resolution
• Provide detailed documentation (architectures, IaC repos, runbooks/playbooks, security matrices)
• Advise stakeholders on emerging technologies, best practices, and compliance requirements

• 15+ years' experience in Cloud, Data, Network Security, and Cyber Security within banking, insurance, retail, or service provider sectors
• Mandatory certifications: CCIE, CISSP, Microsoft Cybersecurity Architect Expert
• Strong expertise in network security (firewalls, VPNs, WAFs, PAM integration, micro-segmentation, zero-trust)
• Proven experience with routing/switching, SD-WAN, and enterprise-scale network designs
• Hands-on experience with Kubernetes lifecycle management and cloud-native deployments
• Proficiency in IaC, GitOps, Policy-as-Code, and observability tools
• Strong troubleshooting, incident response, and client-facing communication skills
• Background in vulnerability assessment, compliance, and incident management

Founded in 1999, KalSoft is a multi-award-winning trusted technology partner in business innovation, delivering impactful business results to clients throughout digital modernisation and evolution. As a Microsoft Solutions Partner and a Solutions Integrator (SI), KalSoft has a well-established international presence in seven countries, and maintains a network of front offices and local business operations serving North America, Asia, Africa and the Middle East to help meet the needs of our customers and partners.

6u9z7HXZe8