أرسل لي وظائف مثل هذه
الجنسية
أي جنسية
جنس
غير مذكور
عدد الشواغر
1 عدد الشواغر
الوصف الوظيفي
الأدوار والمسؤوليات
SOC & Vendor Management: Manage the SOC Service Provider, ensuring effective alert handling, KPI maintenance, and SLA compliance. Act as the primary technical point of contact for service tuning and escalation.
Threat Intelligence Management: Administer and utilize or other well-known TIPs (e.g., Microsoft Defender Threat Intelligence (MDTI), Recorded Future) to aggregate, correlate, and analyze external threat data and actor infrastructure.
Penetration Testing & Offensive Security: Plan and execute internal Penetration Testing (Network, Web App, and Wireless) to identify security weaknesses. Conduct regular "Red Team" style simulations to validate the effectiveness of the SOC's detection capabilities.
Proactive Threat Defense: Conduct monthly threat hunting missions based on Pentest findings. Develop and deploy YARA rulesspan to identify custom malware and "living-off-the-land" binaries across the environment.
Digital Forensics: Act as the technical lead for forensic investigations. Utilize forensic tools such as (e.g., EnCasespan, FTK) to perform disk and memory analysis, ensuring proper chain of custody and evidence preservation.
Operationalizing Intelligence: Automate the delivery of high-fidelity Indicators of Compromise (IOCs) into the security stack. Translate CTI and Pentest findings into custom KQL detection rules and YARA signatures.
Vulnerability Management: Manage the vulnerability management lifecycle using (e.g., Microsoft Defender Vulnerability Management, Nessus, and Qualys). Responsibilities include periodic scanning, risk-based prioritization, and rigorous documentation of remediation actions.
Incident Response & Readiness: Lead as the primary Incident Handler for breaches. Plan and perform regular IR dry runs (Tabletops and Technical Drills) to validate playbooks and restore security requirements effectively.
Compliance & Documentation: Document configuration procedures, operational processes, and incident reports in line with GRC guidance, ISO 27001, and NCA recommendations.
Infrastructure Oversight: Ensure security robustness for IT systems, including AD, DNS enhancement, and logical/physical access controls.
الملف الشخصي المطلوب للمرشحين
Qualifications & Experience
- Education: Bachelor s degree in Cybersecurity, Information Security, computer science or a related IT domain.
- Technical Knowledge: Deep proficiency in Microsoft Defender XDR, KQL, and YARA.
- Expertise in Nessus and Qualys vulnerability platforms.
- Hands-on experience with forensic suites (EnCase or similar).
- Mastery of Pentesting tools (e.g., Kali Linux, Metasploit, Burp Suite, Nmap, Cobalt Strike).
- Compliance: Familiarity with ARAMCO security standards and NCA regulations.
- Certifications:
- Required: Certified CISSP, OSCP (Offensive Security Certified Professional), GPEN (GIAC Penetration Tester), or EnCE (EnCase Certified Examiner).
Skills
- Offensive Mindset: Ability to think like an adversary to conduct effective Penetration Testing and bridge gaps between "red" and "blue" teams.
- Forensic Analysis: Ability to conduct deep-dive host and network forensics to reconstruct attacker timelines.
- Vulnerability Prioritization: Ability to look beyond CVSS scores to prioritize patching based on real-world exploitability and business impact.
- Crisis Leadership: Ability to manage multiple incidents and lead technical teams in a high-pressure environment.
القطاع المهني للشركة
- التصميم والاستشارة الهندسية
المجال الوظيفي / القسم
- سوفت وير تقنية المعلومات
الكلمات الرئيسية
- Information Security Specialist
تنويه: نوكري غلف هو مجرد منصة لجمع الباحثين عن عمل وأصحاب العمل معا. وينصح المتقدمون بالبحث في حسن نية صاحب العمل المحتمل بشكل مستقل. نحن لا نؤيد أي طلبات لدفع الأموال وننصح بشدة ضد تبادل المعلومات الشخصية أو المصرفية ذات الصلة. نوصي أيضا زيارة نصائح أمنية للمزيد من المعلومات. إذا كنت تشك في أي احتيال أو سوء تصرف ، راسلنا عبر البريد الإلكتروني abuse@naukrigulf.com
وظائف مماثلة
رئيس البنية التحتية والأمن السيبراني
Nazih Trading Company LLC
- 4 - 6 سنوات
- الشارقة - الإمارات العربية المتحدة
Cyber Security Analyst - 6 months
Dubai Taxi Company PJSC
- 5 - 8 سنوات
- Dubai - United Arab Emirates (UAE)
خبير أمن المعلومات (تقني وظيفي)
Raqmiyat L.L.C
- 10 - 15 سنوات
- أبوظبي - الإمارات العربية المتحدة
Senior Cybersecurity Specialist
TOKEN 13 SOFTWARE L.L.C
- 5 - 10 سنوات
- Dubai - United Arab Emirates (UAE)
أخصائي الأمن
Al Futtaim Private Company (LLC)
- 3 - 5 سنوات
- دبي - الإمارات العربية المتحدة