img
Contract TypeFull-time
Workplace typeOn-site
LocationRiyadh

Job Description

About the Role

TASNEE is seeking a Sr. Specialist I, Cybersecurity to join its team in Riyadh. This is an individual contributor role reporting to the Chief Information Security Officer, responsible for directing information security efforts across TASNEE and its subsidiaries. The position plays a key part in safeguarding digital assets and ensuring robust cybersecurity practices.

Key Responsibilities

  • Monitor security alerts and events from SIEM, SOAR, EDR, IDS/IPS, firewalls, and other security tools to detect potential threats.
  • Triage, analyze, and validate security incidents, distinguishing between true positives and false positives for efficient response.
  • Investigate suspicious activities, including malware infections, phishing attempts, ransomware attacks, lateral movement, and data exfiltration.
  • Perform initial incident response actions such as containment, isolation, and user blocking, adhering to established playbooks.
  • Escalate confirmed security incidents based on severity, potential impact, and defined Service Level Agreements (SLAs).
  • Collect and preserve digital evidence for forensic analysis and investigations, maintaining chain of custody.
  • Maintain accurate and detailed records of all security incidents and response actions within ticketing systems.
  • Execute proactive threat hunting activities utilizing indicators of compromise (IOCs) and up-to-date threat intelligence.
  • Analyze logs from servers, endpoints, applications, network devices, and cloud platforms to identify security anomalies.
  • Support vulnerability management initiatives by validating exploitation attempts and assessing exposure risks.
  • Adhere to and execute SOC runbooks, standard operating procedures, and relevant regulatory requirements.
  • Collaborate with IT, OT, engineering, and incident response teams during security investigations and response efforts.
  • Contribute to the continuous improvement of detection rules, incident response playbooks, and security use cases.

Qualifications and Requirements

  • Bachelor's Degree or higher in Computer Engineering, Information and Computer Science, or Cybersecurity.
  • A minimum of 5 years of experience in IT/OT environments with a strong focus on cybersecurity.
  • Demonstrated ability to determine the normal operational state of security systems and understand how changes impact this state.
  • Proficiency in communicating effectively with staff at all organizational levels.
  • Proven ability to identify new cybersecurity threats in a timely manner.
  • Experience in developing policies that align with the organization's business and strategic cybersecurity objectives.
  • Capability to evaluate the viability and legitimacy of suppliers and cybersecurity products.
  • A proactive approach to continually identifying new technologies and assessing their potential impact on information security requirements.
  • Strong critical thinking skills to recognize organizational challenges and relationships within the cybersecurity landscape.

Required Skills

  • Security Information and Event Management (SIEM)
  • Security Orchestration, Automation, and Response (SOAR)
  • Endpoint Detection and Response (EDR)
  • Intrusion Detection/Prevention Systems (IDS/IPS)
  • Firewall management and analysis
  • General Security Tools
  • Incident Response procedures and execution
  • Forensic Analysis techniques
  • Threat Hunting methodologies
  • Indicators of Compromise (IOCs)
  • Threat Intelligence analysis
  • Log Analysis across various platforms
  • Vulnerability Management principles
  • Understanding and application of SOC Runbooks
  • Knowledge of Regulatory Requirements
  • Effective IT/OT Collaboration
  • Development and tuning of Detection Rules
  • Creation and refinement of Playbooks
  • Development of Security Use Cases
  • Strong Communication skills
  • Advanced Critical Thinking

Work Environment and Details

This role is based in Riyadh, Saudi Arabia. It is a full-time position. The required experience for this role is 5-10 years.


Requirements

  • Requires 5-10 Years experience

Similar Jobs