Cyber Security Engineer

Roles and responsibilities

Developing and implementing SIEM solution internally and as well for clients and/or candidates who have strong experience in assessing and implementing SIEM and other operational tools and processes for a Security Operations Centre (SOC)
Develop content for a complex and growing SIEM infrastructure. This includes use cases, dashboards, active channels, reports, rules, filters, trends and active lab sessions
Use SIEM in the daily operational work which includes but not limited to Administer, operate, manage SIEM platform and regular activities of ensuring the health of log sources, parsers, alerts, reports etc. and enduring that the platform is operating as planned
Monitor SIEM and other event sources, assess, prioritize, escalate and manage security alerts
Perform analysis of security, network database and application logs, correlate events and activities to create threat scenarios to get ahead of threat actors and reduce the exposure
Security Design: Designing and implementing secure network solutions to protect the organization’s infrastructure from potential threats.

Threat Analysis: Conducting risk assessments and vulnerability analyses to identify and mitigate potential security risks.

Incident Response: Developing and implementing incident response plans to address security breaches and minimize damage.

Monitoring and Reporting: Monitoring network traffic and security logs to detect suspicious activities and generating reports for management.

System Hardening: Implementing security best practices and guidelines for system hardening, ensuring that all software and hardware are secure.

Compliance: Ensuring that security measures comply with relevant regulations and industry standards (e.g., GDPR, HIPAA, PCI-DSS).

Security Testing: Performing penetration testing and ethical hacking to identify vulnerabilities and assess the effectiveness of security controls.

Desired candidate profile

Bachelor's degree of Engineering, Computer Science or equivalent
Experience in IT, Security or related fields
Years of experience: 3 - 6 years of experience
SIEM/SOAR connectors development
Cybersecurity experience

Skills:

Very Good command of English and Arabic languages
Very good Analytical skills
Good Communication skills
Technical Proficiency: Strong knowledge of security protocols, cryptography, and security architectures.

Networking Skills: Understanding of network protocols, firewalls, VPNs, and intrusion detection systems.

Security Tools: Familiarity with security tools and technologies, such as SIEM (Security Information and Event Management), antivirus software, and firewalls.

Analytical Skills: Strong analytical and problem-solving skills to assess risks and develop effective security solutions.

Regulatory Knowledge: Familiarity with regulatory requirements and standards related to information security.

Experience:

Certifications: Industry-recognized certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or CompTIA Security+ are highly desirable.

Personal Attributes:
Detail-Oriented: A keen eye for detail to identify vulnerabilities and ensure compliance with security policies.

Proactive: A proactive approach to identifying potential security threats and implementing preventive measures.

Team Player: Ability to work collaboratively with technical and non-technical teams to enhance overall security posture.