Cabin Crew - Recruitment Event | Beijing, China📣 Job Ad

About the Role

FNRCO is seeking a results-oriented Cybersecurity Delivery Manager to lead the end-to-end delivery of managed security services. This role ensures the consistent, high-quality, and risk-aware delivery of services, acting as the primary interface between the security operations team and senior stakeholders. The successful candidate will be instrumental in maintaining compliance with Service Level Agreements (SLAs), Key Performance Indicators (KPIs), governance requirements, and overall business expectations within the cybersecurity landscape of Riyadh, Saudi Arabia. This full-time position requires a strategic thinker with a proven track record in managing complex cybersecurity operations and driving service excellence, overseeing a 24x7 managed security service environment.

Key Responsibilities

• Lead the end-to-end delivery of 24x7 managed security services across multiple domains, including Security Operations Center (SOC), Security Information and Event Management (SIEM), Incident Response, and Vulnerability Management.
• Ensure strict adherence to all defined SLAs, KPIs, and service quality standards, proactively identifying and addressing any deviations.
• Oversee all aspects of incident management, continuous monitoring, and operational performance, ensuring timely and effective resolution of security events.
• Drive continuous improvement initiatives and implement strategies to enhance operational efficiency and effectiveness within the security services delivery.
• Serve as the primary point of contact for senior stakeholders, fostering strong relationships and ensuring clear communication regarding service performance and strategic alignment.
• Lead regular service review meetings, providing comprehensive performance reports and insights to stakeholders.
• Effectively manage escalations, critical incidents, and all service-related issues, ensuring swift and appropriate resolution.
• Ensure that all delivered security services are aligned with and support the overarching business objectives and strategic goals.
• Guarantee compliance with all relevant security standards, internal policies, and external regulatory requirements.
• Implement and actively monitor robust risk management frameworks and security controls to mitigate potential threats.
• Support audit readiness activities and ensure accurate and timely compliance reporting.
• Track and report on key operational metrics, including performance indicators and response times, to measure and improve service delivery.
• Lead, coordinate, and mentor cross-functional cybersecurity teams, fostering a collaborative and high-performing environment.
• Manage resource planning, effective workload distribution, and overall team performance to optimize delivery capabilities.
• Coordinate effectively across internal and external delivery teams to ensure seamless service provision.
• Manage budgets, forecasts, and cost optimization initiatives related to cybersecurity service delivery.
• Ensure that all service delivery activities align with financial and contractual commitments.
• Identify and support opportunities for service improvement and business growth within the cybersecurity domain.
• Define, evolve, and execute the roadmap for managed security services, adapting to emerging threats and technologies.
• Drive automation, efficiency gains, and maturity enhancements across all service delivery processes.
• Align cybersecurity delivery strategies and operations with the overall business and security strategy of the organization.

Qualifications and Experience

• A Bachelor’s degree in Cybersecurity, Information Technology, or a related technical field.
• A minimum of 8 years of progressive experience in the cybersecurity or IT sector.
• At least 3 to 5 years of experience in a dedicated service delivery or leadership role within a cybersecurity context.
• Demonstrated experience in managing managed security services (MSS) and operating within enterprise-level environments.
• A strong understanding of the security operations and incident response lifecycle.
• Proven experience with a range of security technologies, including SIEM, endpoint security solutions, Identity and Access Management (IAM), and network security technologies.
• Exceptional stakeholder management and communication skills, with the ability to engage effectively with both technical teams and senior leadership.
• Expertise in delivery governance and performance management frameworks.
• The ability to effectively manage complex technical environments and lead during critical incidents.
• Professional certifications such as CISSP, CISM, CCSP, or ITIL are highly regarded.
• Project Management Professional (PMP) certification is preferred.

Required Skills

• Security Operations
• Incident Response
• SIEM (Security Information and Event Management)
• Endpoint Security
• IAM (Identity and Access Management)
• Network Security
• Stakeholder Management
• Communication
• Delivery Governance
• Performance Management
• Complex Environments Management
• Critical Incident Management

Work Environment and Details

This is a full-time position based in Riyadh, Saudi Arabia. The role requires a minimum of 10 years of experience, with a significant portion dedicated to cybersecurity delivery and leadership within enterprise environments.

About the Role

Astek is seeking a skilled PostgreSQL Database Administrator for a client in Riyadh, Saudi Arabia. This role is essential for ensuring the high availability, optimal performance, robust security, and seamless scalability of PostgreSQL databases that support customer-facing services and analytics platforms. The ideal candidate will have a strong understanding of PostgreSQL internals and a proven history of managing complex database environments, both on-premises and in cloud settings.

Key Responsibilities

• Manage, configure, and operate production PostgreSQL instances, including those hosted on-premises and in cloud environments such as AWS RDS/Aurora.
• Design, implement, and maintain comprehensive backup, restore, and disaster-recovery strategies, including performing point-in-time restores and testing disaster recovery runbooks.
• Proactively monitor database health and capacity, troubleshoot, and resolve issues related to performance, storage, and replication.
• Optimize database throughput and latency through query profiling, indexing, vacuuming/autovacuum tuning, and parameter adjustments.
• Plan and execute schema changes, major version upgrades, and database migrations with a focus on minimizing downtime.
• Implement and maintain high-availability and replication solutions, including streaming replication, logical replication, and failover automation.
• Develop automation for routine DBA tasks such as provisioning, monitoring alerts, and patching, leveraging Infrastructure as Code (IaC) and CI/CD tools.
• Collaborate with developers and Site Reliability Engineers (SREs) to review SQL queries, optimize data models, and support application deployments.
• Define and enforce database security measures, including access controls, encryption, and compliance with best practices.
• Create and maintain essential documentation, including runbooks and capacity forecasts, and actively participate in an on-call rotation.

Qualifications and Experience

• A Bachelor's degree in Computer Science, Information Technology, or a related field, or equivalent practical experience.
• A minimum of 5 years of experience as a PostgreSQL Database Administrator or in an equivalent production role.
• Demonstrated strong expertise in PostgreSQL internals, performance tuning, indexing strategies, query planning, and statistics management.
• Hands-on experience with backup and restore procedures, Point-in-Time Recovery (PITR), various replication methods (streaming and logical), and high-availability patterns.
• Proven experience running PostgreSQL in cloud environments and a working knowledge of cloud monitoring tools.
• Familiarity with automation tools and Infrastructure as Code (IaC) principles, including experience with tools like Terraform or CloudFormation.
• Experience with CI/CD pipelines and tools such as GitLab CI or Jenkins.
• Solid Linux system administration skills and a good understanding of storage, networking, and virtualization concepts.
• Proficiency in SQL and demonstrated experience in analyzing slow queries and performance profiles.
• Experience with observability tooling, including Prometheus, Grafana, and CloudWatch, as well as log aggregation techniques.
• Strong troubleshooting abilities, excellent documentation skills, and effective cross-team communication.

Technical Skills

• PostgreSQL
• Database Administration
• High Availability
• Performance Tuning
• Database Security
• Scalability
• Backup and Restore
• Disaster Recovery
• Replication (Streaming, Logical)
• Automation
• Infrastructure as Code (IaC)
• CI/CD
• SQL
• Linux System Administration
• Observability Tooling (Prometheus, Grafana, CloudWatch)
• Troubleshooting
• Documentation
• Cross-team Communication
• AWS RDS/Aurora
• Terraform
• CloudFormation
• GitLab CI
• Jenkins

Work Environment and Additional Information

This is a full-time position based in Riyadh, Saudi Arabia. The role requires 5-10 years of relevant experience. PostgreSQL or cloud certifications are considered a plus.

About the Role

Geidea, established in 2008, is a leading provider of digital payment solutions focused on innovation and customer service. The company is seeking a skilled Cybersecurity Defense DFIR Specialist to join its team in Riyadh, Saudi Arabia. This role is integral to identifying, investigating, and responding to cyber incidents across the organization, enhancing security posture and resilience through collaboration with SOC and threat intelligence teams.

Role Purpose and Responsibilities

The primary objective of this position is to manage the full lifecycle of incident response, from identification through to recovery. The specialist will conduct rapid triage and analysis of security alerts, logs, network traffic, and endpoint telemetry. Key responsibilities include documenting incident timelines and findings, providing actionable recommendations, and performing forensic acquisition and analysis of various systems and devices. This role also involves preserving digital evidence and providing feedback to improve detection capabilities and incident response playbooks.

• Lead or support incident response activities, including identification, containment, eradication, and recovery.
• Perform rapid triage and analysis of security alerts, logs, network traffic, and endpoint telemetry.
• Document incident timelines, technical findings, and provide actionable recommendations.
• Conduct forensic acquisition and analysis of endpoints, servers, cloud systems, and mobile devices.
• Perform disk, memory, and malware analysis to identify attacker activity and assess impact.
• Preserve and maintain the chain-of-custody for all digital evidence.
• Provide feedback to SOC and detection engineering teams to enhance alerting and response playbooks.

Qualifications and Experience

Candidates should possess a Bachelor’s degree in Computer Science, Information Technology, Telecommunications, Electronics & Electrical, or a related field. A minimum of 3 years of experience in cybersecurity operations, including roles within SOC, DFIR, or cyber defense, is required. Relevant certifications such as CompTIA Security+, GCIH, GCFE, or GCFA are preferred. The role also requires a strong understanding of security concepts, best practice security frameworks (NIST, SAMA CSF, OWASP, ISO 27001, PCI-DSS), and cybersecurity incident response principles.

• Bachelor’s degree in Computer Science, Information Technology, Telecommunications, Electronics & Electrical, or a related field.
• 3+ years of experience in cybersecurity operations (SOC, DFIR, cyber defense).
• Relevant certifications (*, CompTIA Security+, GCIH, GCFE, GCFA).
• In-depth knowledge of cyber-attacks, threat vectors, and incident management.
• Thorough understanding of security frameworks including NIST, SAMA CSF, OWASP, ISO 27001, and PCI-DSS.
• Experience with Cybersecurity Incident Response.

Technical Proficiency

Proficiency in Security Information and Event Management (SIEM) systems is essential. Experience with EDR, IDS/IPS, DLP, and SOAR solutions is also required. Knowledge of Cloud Security principles and experience with platforms such as AWS, OCI, GCP, or Azure is necessary. Familiarity with Email Security best practices and experience in packet analysis are also key technical requirements for this role.

• Proficiency in Security Information and Event Management (SIEM) systems.
• Experience with EDR, IDS/IPS, DLP, and SOAR solutions.
• Knowledge of Cloud Security principles and experience with AWS, OCI, GCP, or Azure.
• Familiarity with Email Security best practices.
• Experience in packet analysis.
• Understanding of IS security controls and monitoring systems.

Key Skills and Competencies

Beyond technical skills, the role requires strong analytical and problem-solving abilities. Effective communication skills are important for documenting findings and providing recommendations to stakeholders. A solid understanding of cyber-attacks, techniques, and threat vectors is fundamental. Familiarity with IS security controls and monitoring systems, and how business drivers impact security policy, is also expected.

• Cybersecurity Incident Response
• Digital Forensics
• Threat Analysis
• Incident Management
• Understanding of Cyber-attacks and techniques
• Understanding of Threat vectors
• Knowledge of NIST, SAMA CSF, OWASP, ISO 27001, and PCI-DSS frameworks
• Communication Skills
• Problem-solving Skills

Work Location and Type

This is a full-time position based in Riyadh, Saudi Arabia. The role requires 2-5 years of relevant experience.