Senior Cyber Security Analyst - Emirati Talent

Job Purpose

The primary function of this role is to monitor the ENOC environment on a 24/7 basis and conduct initial analyses of events to identify any cybersecurity threats or attacks on ENOC IT/OT assets. Additionally, the role involves performing first response assessments of cybersecurity incidents and escalating them to the Senior Security Analyst for further investigation and response, in accordance with approved policies, processes, and procedures.

Principal Accountabilities

1. Follow response procedures and other CIC related SOPs based on incident impact analysis and predetermined response actions.
2. Acknowledge, analyze, and validate vulnerabilities/incidents triggered from correlated events through SIEM or other security solutions.
3. Acknowledge, analyze, and validate incidents received through other reporting mechanisms such as email, phone calls, or management directions.
4. Gain knowledge of existing policies, standards, procedures, and guidelines to prevent unauthorized use, release, modification, or destruction of ENOC information assets.
5. Understand security risks and controls.
6. Undertake initial analysis of false positives and false negatives.
7. Perform log file analysis to collect contextual information for triaging security events.
8. Review and classify the priority, severity, and nature of security incidents.
9. Collect contextual information and conduct technical root cause and attack method analyses.
10. Analyze events/incidents to identify potential control deficiencies that contributed to the incident.
11. Assess reported cybersecurity events and incidents, recommending remediation and improvement actions.
12. Support and develop content for SIEM and other security technologies used by CIC.
13. Coordinate with internal and external stakeholders to handle cyber incidents according to SOPs and management directions.
14. Participate in post-incident reviews and propose improvement plans.
15. Investigate, document, and report on information security issues and emerging trends.
16. Be on-call 24 hours a day to respond to security emergencies.

Education

• Bachelor’s degree in Computer Science, Engineering, Business, or equivalent; Diploma with relevant experience is also acceptable.
• Required professional certifications: CISSP, GCTI, GCFA, GNFA.

Experience

• Minimum of 5+ years in information security or technology.
• At least 3+ years of relevant experience.
• Experience across multiple industries (e.g., Energy, Utilities, Retail, Government) is preferred.
• Experience in monitoring and handling cybersecurity threats.
• Exposure to OT security operations center activities is advantageous.