Cyber Security Engineer

At Mapa, we're a globally recognized engineering and construction company with a footprint that extends across three continents. Our unwavering commitment to excellence and relentless pursuit of quality and performance have set us apart as industry leaders. We're at the forefront of innovation in the engineering and construction landscape, redefining boundaries and consistently raising the bar for excellence.

As a Cyber Security Specialist/ Engineer at Mapa, you will support the implementation and maintenance of our IT systems in the dynamic environment of KSA. You will work closely with cross-functional teams to ensure smooth day-to-day operations, assisting in troubleshooting, system updates, and user support. With a focus on learning and growth, you will help ensure the reliability and security of our IT infrastructure while contributing to the achievement of project goals within established timelines and budgets.

• Cybersecurity: Training and supporting employees on best practices for cybersecurity awareness.
• Ensuring compliance with cybersecurity policies, standards, and regulatory requirements (e.g., ISO 27001, GDPR, KVKK).
• Monitoring logs and alerts from SIEM and cybersecurity tools to detect and respond to threats.
• Managing and maintaining firewalls, antivirus software, intrusion detection/prevention systems, and other security solutions.
• Conducting regular security audits, vulnerability assessments, and penetration tests.
• Implementing and monitoring security measures to protect systems, networks, and information.
• Daily Operations Management: Controlling daily operations, including server hardware, software, and operating systems.
• Technology Coordination: Coordinating technology installations, upgrades, and maintenance.
• Hardware & Software Selection: Selecting new and replacement hardware and software when necessary.
• System Testing & Troubleshooting: Testing, troubleshooting, and modifying information systems to ensure effective operation.
• Performance Reporting: Generating performance reports for operating systems.
• Risk Assessment & Disaster Recovery Planning: Evaluating technology risks to develop network disaster recovery backup plans.
• Technology Awareness: Remaining up to date with advances in technology and industry best practices.
• Systems & Network Administration: Managing systems and network administration tasks.
• Desktop & Application Support: Providing support and troubleshooting for desktops and applications.

• Educational Background: Bachelor\'s degree, preferably in Industrial Engineering, MIS, Computer Engineering, Electronics Engineering, or a related field.
• Work Experience: Minimum of 3 years of work experience in similar positions.
• Compliance Knowledge: Experience with ISO 27001, COBIT, ITIL, and PCI-DSS.
• Technical Certifications: Possession of a recognized Cyber Security Certification (e.g., CEH, CISSP, CISM, CompTIA Security+) is mandatory. Additional technical certifications such as MCSA/MCSE, CCNA/CCNP, ITIL, or equivalent certificates are advantageous.
• Networking Experience: Experience with computer networks, network administration, and network installation.
• Software Proficiency: Proficient in Microsoft Windows software, including server, Office, and Exchange.
• Organizational Skills: Highly organized and detail-oriented.
• Analytical & Problem-Solving Skills: Excellent analytical and problem-solving skills.
• Flexible Work Environment: Ability to work flexible hours.
• Risk Assessment Knowledge: Knowledge of Risk Assessment and Risk Treatment methodologies.
• Regulatory Compliance Knowledge: Knowledge of regulations such as KVKK and GDPR.
• IT Security Knowledge: Knowledge of core IT processes and the security of operating systems and network infrastructure.
• File System Understanding: Strong understanding of file system artifacts within a variety of operating systems.
• Security Technologies Experience: Knowledge and experience in security products and technologies (SIEM, Firewall, IPS/IDS, Antivirus, EDR, DLP, WAF, etc.).
• Malicious Activity Detection: Experience in the detection and response to malicious activity using log data and alerts from cybersecurity solutions, systems, and network devices.
• Language Proficiency: Excellent command of both written and oral English.
• Travel Flexibility: No restrictions on travel.