Cybersecurity Defense Specialist

Lendo

Key Responsibilities:

• Monitor and analyze security alerts daily, performing accurate triage to determine severity, priority, and required response actions.
• Build, tune, and enhance security detection rules and use cases across SIEM and other monitoring platforms to improve threat visibility and reduce false positives.
• Coordinate and execute incident response activities, including containment, eradication, and recovery, while minimizing business impact.
• Lead and support incident investigations, conduct root cause analysis, forensic activities, and preparing incident reports.
• Conduct post-incident reviews, capturing lessons learned and ensuring continuous improvement of SOC processes and capabilities.
• Develop, maintain, and refine incident response playbooks, escalation workflows, and an incident knowledge repository.
• Collaborate with IT, security, and business teams to strengthen detection coverage and improve incident handling efficiency.
• Oversee and manage relationships with Managed Security Service Providers (MSSPs), ensuring alignment with organizational security standards and SOC requirements.
• Contribute to threat intelligence initiatives by identifying patterns, emerging threats, and potential vulnerabilities.
• Participate in SOC readiness activities, including tabletop exercises, red team/blue team simulations, and continuous skills development.

Qualifications:

• Bachelor s degree in Cybersecurity, Computer Science, Information Technology, or related discipline.
• 1 3 years of experience in a SOC, incident response, or threat monitoring role.
• Practical experience with SIEM platforms, strong knowledge of malware analysis, intrusion detection, log analysis, and forensic investigation techniques.
• Clear communication skills, with the ability to document incidents and brief stakeholders effectively.
• Proficiency in Arabic and English (Writing/Speaking).