Cyber Defense Analyst (L /L )📣 Job Ad
about 3 hours ago
 | Contract Type | Full-time |
 | Workplace type | On-site |
 | Location | Riyadh |
Job Description
About the Role
Help AG is seeking a Cyber Defense Analyst (L2/L3) to join its Cybersecurity Operations Center (CSOC) team, part of the Managed Security Services (MSS) business unit. This full-time position requires 2-5 years of experience in cybersecurity and is suitable for individuals with a strong knowledge and interest in the field.
Key Responsibilities
- Monitor multiple security technologies including IDS/IPS, Firewalls, Switches, and VPNs.
- Correlate and analyze security events using SIEM tools to detect incidents.
- Develop and present detailed operational procedures for analyzing, escalating, and assisting in the remediation of security incidents.
- Respond to technical assistance requests via phone and electronic means within documented SLAs.
- Document all actions taken in cases to ensure effective internal and customer communication.
- Independently resolve problems and understand escalation procedures.
- Maintain up-to-date knowledge of the current threat landscape and cybersecurity intelligence.
- Share cybersecurity intelligence across the analyst team and engage in threat hunting activities.
- Lead and support knowledge sharing sessions for analysts, and contribute to technical articles for internal knowledge bases, blog posts, and reports.
- Perform forensic analysis of system resource access and log files.
- Create, follow, and present customer reports ensuring quality, accuracy, and value.
- Develop new content, including Use Cases, Queries, and Reports, within the SIEM platform.
- Educate and train other analysts on the use and operation of the SIEM platform.
- Engage with client Incident Response teams as required.
- Generate cybersecurity Threat Intelligence reports.
- Perform other assigned duties as necessary.
Qualifications and Experience
- 2-5 years of experience in cybersecurity, including areas such as security operations, intrusion detection, incident analysis, incident handling, log analysis, threat intelligence/hunting, or digital forensics.
- Bachelor’s or Master’s Degree in Cybersecurity, Computer Science, Information Systems, Electrical Engineering, or a closely related field.
- A strong interest and passion for cybersecurity, incident detection, and network and systems security.
- Sound knowledge of IT security best practices, common attack types, and detection/prevention methods.
- Demonstrable experience in analyzing and interpreting system, security, and application logs.
- Familiarity with event data produced by Firewalls, IDS/IPS, and other security devices.
- Required experience using Splunk for Threat and Incident Detection.
- Experience with ArcSight, LogRhythm, or QRadar is preferable but not mandatory.
- Strong understanding of the Cyber Kill Chain and MITRE ATT&CK frameworks and techniques.
- Solid understanding of TCP/IP and network concepts.
- Knowledge of potential attack activities such as scans, man-in-the-middle attacks, sniffing, DoS, and DDoS.
- Professional certifications are highly preferred (*, CCIE, OSCP, CISSP, GSEC, GCIA, GCIH, GMON, GREM, GDAT, GCFE).
- Experience in developing and fine-tuning SIEM use cases and rules.
- Experience with automation tools (SOAR) is preferred.
- Experience in Malware Analysis / Reverse Engineering is preferred.
Required Skills and Attributes
- An experienced analyst aspiring to leadership, committed to learning leadership principles.
- Outstanding organizational skills.
- Exclusive focus and vast experience in IT.
- Very good communication skills.
- Strong analytical and problem-solving skills.
- A motivated, self-managed individual capable of demonstrating exceptional analytical skills and working professionally under pressure.
- Strong written and verbal communication skills.
- Strong interpersonal skills with the ability to collaborate effectively.
- Ability to speak and write in English is required.
- Ability to speak and write in both English and Arabic is preferred.
Work Environment and Benefits
This is a full-time position within Help AG's Cybersecurity Operations Center. The role may require on-site work with clients as needed. Benefits include health insurance with a leading global provider, career progression opportunities through challenging projects, employee engagement activities, and a tailored training and development program.
About Help AG
Help AG is the cybersecurity arm of e& enterprise, providing strategic consultancy and tailored information security solutions and services to enterprise businesses across the Middle East. Established in the region in 2004 and acquired by Etisalat in February 2020, Help AG has become a trusted IT security advisor known for its vendor-agnostic, trustworthy, and independent approach. Leveraging best-of-breed technologies and expert service delivery teams, Help AG enhances cyber defenses and safeguards businesses.
Requirements
- Requires 5-10 Years experience
Similar Jobs
You may also like
- Related Cyber Defense Analyst (L /L ) Opportunities
- Marketing Specialist Jobs in Riyadh
- Marketing Manager Jobs in Riyadh
- Human Resources Clerk Jobs in Riyadh
- Reservations Agent Jobs in Riyadh
- barista Jobs in Riyadh
- Other Job Fields in Riyadh
- Marketing Specialist Jobs in Riyadh
- Marketing Manager Jobs in Riyadh
- Human Resources Clerk Jobs in Riyadh
- Reservations Agent Jobs in Riyadh
- barista Jobs in Riyadh
- Digital Marketing Specialist Jobs in Riyadh
- Seller Jobs in Riyadh
- Cashier Jobs in Riyadh
- Host Jobs in Riyadh
- Executive Secretary Jobs in Riyadh
- Explore Jobs Across Saudi Arabia
- Medical Laboratory Technician Jobs in Buraydah
- Butler Jobs in Tabuk
- Multimedia Designer Jobs in Riyadh
- Sales Representative Jobs in Al-Ahsa
- barista Jobs in Sayhat
- Sweets Maker Jobs in Buraydah
- Data Analyst Jobs in Badr
- Executive Secretary Jobs in Riyadh
- Perfume Seller Jobs in Riyadh
- Customer Service Representative Jobs in Al Mubarraz