Infrastructure Security Engineer II

As Infrastructure Security Engineer II, you will play a critical role in safeguarding the integrity, confidentiality, and availability of our hybrid infrastructure spanning both on-premise data centers and AWS cloud environments. Your contributions will help shape the Information Security department and ultimately the way we disrupt the market through resilient, secure infrastructure.

What success looks like:

In your first year, you will deploy robust security controls across AWS and on-premise environments, lead proactive threat modeling and risk assessments, and drive successful audit readiness for key compliance standards like ISO 27001 and KSA CRF.

Why this is for you:

If you're keen on solving hybrid infrastructure security problems in a fast-paced, energetic environment, hit us up. We're looking for someone ready to tackle this challenge head-on and make an impact from day one.

Key Responsibilities

In this role, you will:

Design and implement infrastructure security controls across on-premise and AWS environments, ensuring layered protection for networks, endpoints, and data.

Collaborate with network engineering, DevOps, and cloud teams to embed security best practices into infrastructure design and CI/CD pipelines.

Manage incident response activities for infrastructure-related security breaches, conducting root cause analyses to strengthen long-term defenses.

Conduct regular threat modeling and security assessments to identify vulnerabilities and misconfigurations.

Monitor and maintain security tools, including SIEM, IDS/IPS, endpoint protection platforms, and AWS-native services (e.g., GuardDuty, Security Hub).

Support regulatory and compliance initiatives (e.g., ISO 27001, KSA CRF, NIST) through control validation, audit response, and documentation.

Contribute to the development and refinement of infrastructure security policies, standards, and procedures aligned to business needs.

Stay current on emerging threats, regulatory changes, and security trends relevant to telecom and MVNO ecosystems.

Qualifications & Attributes

We re seeking someone who embodies the following:

Education:

• Bachelor s degree in Computer Science, Information Security, Telecommunications, or a related field.
• Preferred certifications: CISSP, AWS Certified Security Specialty, CISM, GIAC.

Experience:

• 5+ years of hands-on experience in infrastructure security engineering, especially within hybrid (on-premise + cloud) environments.
• Strong background in telecom or high-availability systems is highly desirable.

Technical Skills:
Must-haves:

Deep expertise in network security (firewalls, VPNs, IPS/IDS, segmentation).

Advanced experience with AWS security tools: IAM, KMS, Security Hub, GuardDuty, Inspector, VPC controls.

Solid grasp of Linux/Windows hardening techniques.

Familiarity with security automation tools (e.g., Terraform, Ansible).

Skilled in SIEM tools like Splunk or ELK, and comfortable with incident detection workflows.

Strong knowledge of PKI, encryption, and secure protocols.

Hands-on scripting (Python, Bash) for automating security processes.

Nice-to-haves:

Experience with other cloud platforms (Azure, Google Cloud) and VMWare environments.

Exposure to container security (e.g., Kubernetes, EKS, Docker).

Experience with Cloudflare solutions.

Thrives in high-pressure, fast-moving telecom/MVNO settings.

Proactive problem-solver with strong analytical capabilities.

Communicates technical risks in business-relevant terms.

Influences and collaborates across teams to embed secure practices from day one.

Disclaimer: Naukrigulf.com is only a platform to bring jobseekers & employers together. Applicants are advised to research the bonafides of the prospective employer independently. We do NOT endorse any requests for money payments and strictly advice against sharing personal or bank related information. We also recommend you visit Security Advice for more information. If you suspect any fraud or malpractice, email us at abuse@naukrigulf.com