Senior Security Engineer

We are looking to hire a Senior Security Engineer who is a highly experienced person responsible for overseeing and managing the security infrastructure and operations within the organization. He/she must display a deep understanding and be comfortable working with a variety of different security technologies including EDR, DLP, PAM and email security.
The candidate must show extensive knowledge and experience in the field of cybersecurity and will play a critical role in protecting the organization of sensitive data, systems and networks from potential threats. Collaboration closely with other teams to integrate robust security measures into infrastructure, ensuring that the solutions being developed adhere to company cybersecurity policies and industry best practices and standards.

Responsibilities:

• Develop and implement security architectures for endpoints, systems, networks, and applications based on organization cybersecurity policies.
• Deploy, manage, and maintain Endpoint security solutions such as Antivirus / Antimalware, Endpoint detection and Response (EDR), and Advanced Threat Protection (ATP).
• Deploy, manage and maintain Email security solutions such as Anti-spam, Anti-Phishing, and Anti-malware.
• Deploy, manage, and maintain Information security solutions such as data classifications / labeling, data leak prevention (DLP) and data encryption solutions.
• Collaborate on the design and implementation of Privileged Access Management (PAM), Identity and Access Management (IAM), and Identity Provider (IdP) systems in alignment with organizational security policies.
• Provide support and enforcement for Privileged Access Management (PAM) initiatives throughout the organization.
• Design secure configurations for security tools and technologies to protect IT resources against threats based on company’s cybersecurity standards and baselines.
• Participate in incident response activities, including investigation, containment, eradication, and recovery.
• Perform operation tasks on security technologies and solutions based on security incident or change requirement including:
• Network security operations such as block/unblock IP / domains / ports.
• Endpoint security operations such as handling IOC, isolate / deisolate endpoints, whitelisting / blacklisting applications or files.
• Email security operations such as blocking / releasing emails, email quarantine management, whitelisting / blacklisting sender domain / address, etc.
• Working closely with SOC to investigate and analyze security events and provide detailed analysis.
• Participating in the change management process for any security technologies changes.
• Develop and implement remediation plans and procedures.
• Managing organizations cryptographic asset lifecycle such as keys and certificates according to the company encryption and key management policies.
• Support data protection and cryptography efforts including digital certificates and associated infrastructure.

Requirements:

• Bachelor’s degree in information security/cyber security, Computer Science or related field.
• Saudi Nationality.
• Minimum of 5+ years of relevant experience in information security, with focus on security engineering and operations.
• Strong experience in security solutions including and not limited to Anti-Virus, EDR/XDR, IDS/IPS, DLP and email security.
• Strong experience in privilege access management (PAM) solutions.
• Good understanding and proven experience in Identity access management (IAM) solutions.
• Ability to manage user access rights, permissions, and authentication mechanisms, ensuring appropriate controls to prevent unauthorized access or data breaches.
• Experience with network security and networking technologies and with system, security and network monitoring tools.
• Experience in Network security solutions such as firewalls, and web proxies are a plus.
• Proven experience in cloud platforms (Azure, OCI, GCP, AWS) for enterprise production workloads.
• Certification related to security such as Security+ or well-known vendor specific security certifications will be a plus.
• Thorough understanding of the latest security principles, techniques and protocols.
• Strong communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams and communicate technical concepts to non-technical stakeholders.
• Excellent problem-solving and troubleshooting skills, with the ability to analyze complex technical issues and provide innovative solutions.

Company Industry:

• IT - Software Services

Department / Functional Area:

• IT Software

Keywords:

• Senior Security Engineer