IT & Security Engineer

Innovative Solutions (IS) is a leading pure‑player Cybersecurity company in the GCC, established in 2003 and headquartered in Riyadh. The company has a presence in Al Khobar, Jeddah, Dubai, and Abu Dhabi. IS offers Advisory Services, Technical Assurance, Solution Deployment, Professional Services, and Managed Security Services.

The IT Security role is responsible for owning, building, configuring, administering, maintaining, and hardening security platforms and infrastructure controls. The focus is on engineering, architecture, and operational resilience of IT security systems, while Cybersecurity teams focus on detecting, responding to, and mitigating active threats.

• Own and maintain enterprise security platforms and tools, ensuring configuration hardening and maximum uptime.
• Build and administer firewalls, WAF, proxy, and endpoint protection systems in line with security policies.
• Implement and oversee encryption, data protection, and access control frameworks in accordance with internal and regulatory standards.
• Integrate and automate security controls with existing IT infrastructure, including servers, networks, and cloud environments.
• Administer IAM and PAM systems to manage privileged and user access.
• Maintain structured patch management and system update processes to reduce vulnerabilities.
• Document and refine security architecture and operational procedures to support consistency and audit readiness.
• Collaborate with Cybersecurity teams by provisioning, tuning, and maintaining security controls that support detection and response capabilities.

• Strong capability in building and managing enterprise IT security infrastructure.
• Solid understanding of system hardening, access control, encryption, and network defense configurations.
• Experience with endpoint protection, patch management, and email security gateway administration.
• Strong knowledge of IAM and PAM frameworks, MFA, and SSO solutions.
• Familiarity with security automation, SIEM integration, and control tuning for Cybersecurity teams.
• Understanding of data protection regulations and risk management frameworks.
• Skilled in secure configuration management, remote access hardening, and data security technologies including DLP, PKI, and encryption.
• Strong communication and documentation skills to support collaboration with Cybersecurity and IT Infrastructure teams.
• Comprehensive training and development programs.

• Web filtering, proxy, and WAF administration
• Endpoint & Mobile Security: Antivirus, anti‑malware, EDR/XDR, UEM/MDM (Workspace ONE, Intune, or similar)
• Network & Perimeter Defense: IDS/IPS, sandboxing, network threat prevention
• Email Security: gateways, anti‑phishing, spam filtering
• Data & Device Protection: Device encryption and control, Patch management and MDM, Identity & Access Management (IAM, PAM, MFA, SSO)
• Data Security: DLP, data classification, encryption, PKI
• Infrastructure & Connectivity: Server and physical security, VPNs, secure remote access, secure application deployment
• Specialized Domains: Aviation data security and compliance assurance

CompTIA Security+, CISSP, CISM, CEH, and relevant vendor certifications (Microsoft, VMware, etc.).

Opportunity for career growth and advancement. Friendly and supportive work environment.