Security Solutions Engineer

Jeddah, Saudi Arabia | Posted on 11/01/2025

SamaWave is a solutions provider based in Jeddah, Saudi Arabia. We specialize in empowering companies' communication capabilities to enhance user experiences and maximize employee satisfaction across all levels within an organization.

Job Summary:

The Cybersecurity Engineer at SamaWave Solutionswillbe responsible for designing, deploying, and maintaining advanced securitysolutions for clients across various sectors. The role combinestechnical expertise, regulatory awareness, andcustomer-facing skills to deliver reliable and compliant cybersecurityinfrastructures.

The successful candidate will be responsible forsafeguarding the organization’s digital assets, infrastructure, and customerenvironments against evolving cyber threats. This role involves a combinationof hands-on security engineering, architecture design, threat analysis, andpolicy development across on-premises, cloud, and hybrid systems.

The ideal candidate is proactive,detail-oriented, and capable of balancing technical excellence with businessrequirements—ensuring that security controls enhance, not hinder, productivityand innovation.

Tasks and Responsibilities:

1. Infrastructure & Network Security

• Design,configure, and maintain security controls across LAN/WAN, data centers,and cloud networks.
• Implementand manage firewalls, IPS/IDS, secure VPNs, and segmentation policies.
• Administerand monitor Next-Generation Firewalls (NGFW) such as FortinetFortiGate, Cisco ASA/Firepower, Palo Alto Networks, or similar.
• Manageand audit network access control (NAC) systems and network visibilitytools.
• ApplyZero Trust principles (ZTNA, micro-segmentation, and continuousauthentication).
• Deployand manage endpoint protection platforms (e.g., SentinelOne, MicrosoftDefender for Endpoint, CrowdStrike).
• Maintainserver security baselines for Windows and Linux environments.
• Applysecurity hardening across Active Directory, DNS, DHCP, mail, and webservers.
• ImplementEDR/XDR solutions, ensuring continuous monitoring and proactiveremediation.
• Collaboratewith software teams to ensure applications follow secure coding and OWASPguidelines.

3. Threat Detection & Incident Response

• MonitorSIEM dashboards and correlate events from multiple sources (firewalls,IDS, endpoints, cloud).
• Conductinitial triage, root cause analysis, and containment of securityincidents.
• Leaddigital forensics investigations and evidence collection when required.
• Developand maintain the Incident Response Plan (IRP) and coordinate post-incidentreviews.
• Collaboratewith internal IT and third-party SOCs for continuous threat management.

4. Vulnerability Management & Risk Assessment

• Performregular vulnerability scans, penetration tests, and configuration audits.
• Assessand classify vulnerabilities based on risk impact and exposure level.
• Trackand verify remediation progress with respective system owners.
• Prepareexecutive-level reports summarizing key risks, trends, and recommendedmitigations.
• Ensurecompliance with security frameworks (e.g., ISO 27001, NIST SP 800-53, CIS,PCI-DSS).

5. Cloud & Identity Security

• Implementidentity and access management (IAM) solutions across hybrid environments.
• ConfigureMFA, SSO, and conditional access policies via Azure AD, Okta, or similar.
• Securecloud workloads (Azure, AWS, or GCP) through encryption, key management,and IAM policies.
• Regularlyaudit access logs, role assignments, and privileged accounts.
• Supportsecure integration between on-prem and cloud applications (VPN,ExpressRoute, SASE).

6. Governance, Risk, & Compliance (GRC)

• Maintainand enforce the organization’s cybersecurity policies, standards, andprocedures.
• Participatein internal and external security audits, providing evidence andremediation plans.
• Supportdata privacy compliance under GDPR and local Saudi regulations (e.g., NCA,CITC, SDAIA).
• Documentall security controls, changes, and incidents for full traceability.

7. Security Awareness & Training

• Conductregular training sessions for employees to promote security bestpractices.
• Developawareness campaigns around phishing, password hygiene, and safe remoteaccess.
• Collaboratewith HR and management to integrate security onboarding for new hires.
• Stayinformed about emerging threats, exploits, and industry trends.
• Evaluateand recommend new security solutions, automation tools, and managedservices.
• Participatein vendor webinars, security communities, and certification programs.
• Contributeto long-term security roadmap planning and budget forecasting.

Qualification (Education/Work Experience) :

· Bachelor’s degree inCybersecurity, Information Security, or related field (or equivalentexperience).

·Hands-on expertise with Fortinet (FortiGate, FortiAnalyzer,FortiManager), Sophos (XG,Intercept X, Central), and Ciscosecurity solutions (ASA, Firepower, Umbrella, ISE).

·Strong understanding of network security, VPN, encryption,IPSec, SSL, and NAC.

·Familiarity with SIEM tools (e.g., FortiSIEM, Splunk, QRadar)and SOC operations.

·Experience with cloud security (Azure/AWS/GCP) is a plus.

·Knowledge of Saudi cybersecurity regulatory frameworks: NCAECC, SAMA Cybersecurity Framework.

·Preferred certifications: Fortinet NSE 4–7, Sophos CertifiedEngineer, Cisco CCNPSecurity, CEH, CISSP, or Security+.