Job Purpose/Overview:
We are looking to hire a cybersecurity engineer with an analytical mind and a detailed understanding of cybersecurity methodologies. In addition, cyber security engineers must have meticulous attention to detail, outstanding problem-solving skills, work comfortably under pressure, and deliver on tight deadlines.
To ensure success, a cyber security engineer must display an excellent understanding of technology infrastructures using Firewalls, VPN, Data Loss Prevention, IDS/IPS, Web-Proxy, and Security Audits. In addition, top candidates will be comfortable working with various technologies, security problems, and network troubleshooting.
Responsible for managing the IT security strategy, implementing the cyber security strategy that complies with SAMA standards and regulations, and protecting Saudi Enaya from security threats.
Responsibilities:
- Developing and maintaining cybersecurity strategy, policy, architecture & risk management process.
- Ensuring that detailed security standards and procedures are established, approved, and implemented
- Delivering risk-based cybersecurity solutions that address people, processes, and technology.
- Developing the cyber security staff to deliver cyber security solutions in a business context.
- Maintain the cybersecurity activities across the Member Organization, including:
- Monitoring of cybersecurity activities (SOC monitoring)
- Monitoring of compliance with cybersecurity regulations, policies, standards, and procedures
- Overseeing the investigation of cybersecurity incidents;
- Gathering and analyzing threat intelligence from internal and external sources
- Performing cybersecurity reviews
- Conducting cybersecurity risk assessments on the Members Organization’s information assets.
- Proactively supporting other functions on cybersecurity, including:
- Performing information and system classifications
- Determining cybersecurity requirements for important projects
- Performing cybersecurity reviews.
- Defining and conducting cybersecurity awareness programs.
- Measuring and reporting the KRIs on:
- Cyber security strategy
- Cybersecurity policy compliance
- Cybersecurity standards and procedures
- Cybersecurity programs (e.g., awareness program, data classification program, key cybersecurity improvements).
- Effectively identify and address risks related to cybersecurity to maintain the protection of information assets and online services and assess the current maturity level of Saudi Enaya in terms of cybersecurity.
Qualifications
- Bachelor’s degree or equivalent combination of education and experience
- 3+ years of Cyber Security experience, 1+ years of insurance experience
Skills:
- Scanning CVEs
- Blocking IoCs (IP/Hash/Domain URL/EDR)
- Email gateway management
- Vulnerability scanning
- Threat identification
- Troubleshooting security and network problems
- Daily administrative tasks, reporting, and communication with the relevant departments in the organization
- Responding to all security breaches to the network and associated systems
- Taking appropriate security measures to ensure that the organization’s infrastructure and existing data are kept safe
Experience in:
- Tenable
- FortiGate firewall
- Implementation of CS solutions
- In-depth technical knowledge of computer sciences
- Knowledge of Security Across Various Platforms