Cyber Security Engineer

Tibah Airports Operation Company manages and operates Prince Mohammed Bin Abdulaziz International Airport in Madinah as the first private company to manage and operate an airport in Saudi Arabia. Tibah has been operating Madinah Airport 24/7 since mid-2012, serving more than 10 million passengers per year.

Prince Mohammed Bin Abdulaziz International Airport is the gateway to Madinah where millions of passengers and pilgrims use our terminals year-round to connect with people and places around the world. Tibah is committed to providing the best airport services that meet global standards and cater to the diverse needs of its customers.

The Cybersecurity Engineer is responsible for designing, implementing, operating, and continuously improving technical security controls to protect the organization’s information assets, systems, and networks. The role requires strong analytical thinking, deep technical expertise in cybersecurity technologies, and the ability to effectively respond to security incidents while operating in a regulated environment.

• Planning, implementing, managing, monitoring, and upgrading security measures for the protection of the organization's data, systems, and networks.
• Troubleshooting security and network problems.
• Manage and configure Data Loss Prevention (DLP) solutions, including creation, tuning, and maintenance of DLP use cases and policies.
• Implement and enforce data classification frameworks and data protection controls across the organization.
• Manage and configure Mobile Device Management (MDM) solutions to secure corporate and BYOD devices.
• Manage and administer Identity and Access Management (IAM) controls, including access provisioning, role management, and periodic access reviews.
• Operate, configure, and monitor core security technologies (Firewalls, VPNs, IDS/IPS, Web Proxy and Endpoint protection) and respond to security incidents.
• Ensure security controls are implemented and managed in alignment with NCA Cybersecurity Essential Controls (ECC) and support compliance assessments.
• Responding to all system and/or network security breaches.
• Ensuring that the organization's data and infrastructure are protected by enabling the appropriate security controls.
• Testing and identifying network and system vulnerabilities.
• Daily administrative tasks, reporting, and communication with the relevant departments in the organization.

• Bachelor’s degree in Computer Science, Information Technology, Systems Engineering, or a related field.
• Certified Information Systems Security Professional (CISSP).
• +4 years of work experience with incident detection and, incident response Security solutions.
• Experience with Firewalls (functionality and maintenance), Office 365 Security, VSX, and Endpoint Security.
• Fluent in Arabic & English.
• Office-based with potential on-call or extended hours during security incidents.
• High-pressure environment during incident response and critical security events.
• Strong experience with Firewalls (configuration, operation, and maintenance).
• Experience with Office 365 Security, VSX, Endpoint Security solutions.
• Solid understanding of networking concepts and infrastructure security.
• Proficiency in one or more scripting/programming languages such as Python, PowerShell, C++, Java, or Ruby.