img
Contract TypeFull-time
Workplace typeOn-site
LocationMakkah

Job Description

About the Role

Acuative Middle East is seeking a skilled Incident Response professional to join its team in Jeddah, Makkah, Saudi Arabia. This full-time position is integral to protecting clients from global cyber incidents. The role requires an articulate, collaborative individual with a proven ability to support clients and colleagues, often developing innovative solutions to complex challenges.

Key Responsibilities

  • Respond to global cyber incidents caused by internal and external threats to customers, which may involve non-traditional working hours.
  • Detect, contain, and remediate threats by understanding current adversary attack methods.
  • Assist with scoping incidents, gaining consensus on objectives with customers, and participating in emergency engagements as part of an incident response consultant team.
  • Collaborate on developing written assessments and reports for both internal and customer-facing audiences, including technical teams, leadership, and executive management.
  • Serve as a liaison to different businesses and interface with team members and colleagues on other security teams.
  • Participate in Incident Response (IR) related consulting projects as directed.
  • Contribute to process improvement by developing and documenting enhancements for efficient, consistent, and scalable consulting operations.
  • Assist in developing public-facing materials such as blog posts, podcasts, whitepapers, or conference presentations.

Required Qualifications

  • Foundational familiarity and understanding of host-centric analysis utilizing forensic tools such as EDR, X-Ways, Volatility, Cisco Secure Endpoint, and Velociraptor.
  • Familiarity with network forensic analysis and the ability to leverage network telemetry for investigations.
  • Clear understanding and communication of the Incident Response Lifecycle and the Kill Chain (Attack) Life Cycle as it relates to known adversary activity.
  • Demonstrated capability to map technical findings to business impacts and communicate these effectively to non-technical audiences.
  • Familiarity with threat hunting theory and the ability to proactively hunt for adversaries on customer networks using various tools and techniques.
  • Understanding of Table-Top Exercises, with a preference for prior experience in conducting or participating in them.
  • Understanding of performing Incident Response Readiness Assessments for customers, including conducting interviews and document review.
  • Willingness to be on-call and work off-shift hours, potentially including nights, weekends, and holidays.

Key Skills and Competencies

  • Incident Response
  • Adversary attack analysis and remediation
  • Host-centric analysis using forensic tools (*, EDR, X-Ways, Volatility, Cisco Secure Endpoint, Velociraptor)
  • Network forensic analysis and network telemetry
  • Understanding of the Incident Response Lifecycle and Kill Chain (Attack) Life Cycle
  • Translating technical findings into business impacts
  • Incident scoping and objective consensus
  • Threat hunting methodologies and tools
  • Table-Top Exercise facilitation and participation
  • Incident Response Readiness Assessment
  • Written communication and reporting
  • Collaboration and team interaction
  • Process improvement and documentation
  • Familiarity with current cyber security threats, attacks, and countermeasures, such as Ransomware, Cyber Crime, and Hacktivism
  • Interest in recognized IT Security-related standards and technologies
  • Prior experience in information security and handling/investigating cyber security incidents is preferred.

Additional Information

This is a full-time position based in Jeddah, Makkah, Saudi Arabia. The role requires 5-10 years of relevant experience. Industry certifications such as CISSP, CISM, CISA, GCIH, CFCE, GCFA, GNFA, and/or GCFE are beneficial but not a strict requirement.


Requirements

  • Requires 5-10 Years experience

Similar Jobs