Job Details
Experience Needed:
Career Level:
Education Level:
Salary:
Job Categories:
Skills And Tools:
Job Description
- Planning, implementing, managing, monitoring, and upgrading security measures to protect corporate data, systems, and networks
- Participate in designing, implementing, troubleshooting, and developing cyber security programs and projects
- Manage design of target technical security architecture with deep understanding and analysis of emerging cyber security solutions including, but not limited to, threat intelligence, anti-advanced persistent threats, DLP, SIEM, next generation firewalls, analytics, enterprise incident response and others
- Ensure corporate data and infrastructure are protected by enabling the appropriate security controls
- Conduct research on emerging cyber security technologies and disseminate knowledge to ICT team
- Testing and identifying infrastructure and end users’ systems vulnerabilities
- Daily administrative tasks, reporting, and communication with Group ICT Manager
- Monitor Corporate networks and systems for security breaches
- Investigate security violation and provide incident reports for security breaches
- Act as first layer in escalation matrix in down cases.
- Prepare Business Continuity incidents reports and carry Business Continuity exercises
- Conduct network and systems: penetration testing, vulnerability assessments and patching
- Perform and ensure compliance on all corporate ICT assets
- Handle operation tickets request to comply with information security policy
- Carry wireless assessment as PCI requirement.
- Provide analysis, remediation, and recommendations for email security systems
- Hunting zero-day vulnerabilities and report to designated technical teams for immediate action
- Responsible of operation of SIEM log management solution with responsible technical team
- Responsible for successful delivery of end users cybersecurity training and awareness programs
Job Requirements
ICT Backend Required Knowledge:
- Excellent MS-Azure, O365 Administration knowledge and Troubleshooting is a must
- Mastering MS-Active Directory, security management and Group Policy, Exchange server and PowerShell is a must
- Advanced Win OS and Server installing, configuring, and troubleshooting skills
- Excellent CompTIA A+ and Network+ knowledge is a must
- Helpdesk, infrastructure management, monitoring, and alerting exposure (preferably Manage Engine)
- Technical writing and SOP documentation hands on experience is a must
Cybersecurity Required Knowledge:
- Excellent understanding and experience of ISO27001:2013 standard and 27002 control frameworks
- Experience design, implementation, assessing control effectiveness and identifying opportunities for improvement
- Very good understanding and awareness of Pen-testing and VA is a must
- Knowledge and experience of cyber security and information security principles and processes
- Good understanding of data protection requirements, GDPR and risk assessment
General ICT Knowledge:
- Excellent understanding of Microsoft Operations Framework, Microsoft Solutions Framework, ITIL standards and procedures.
- Good understanding of governance and decision making in complex organizations
- Knowledge of ICT Service Core processes
- Partner and vendor management skills
- Hands on with scripting languages (e.g.: Python, Java, Power Shell…)
Professional Certification:
- ITIL Foundation V.3 or V.4 is a Must
- CompTIA Security+ /Network+/A+ Certifications are a Must
- ISO 27001 Lead Auditor / Lead Implementer is a Must
- Microsoft Azure Fundamentals and Azure Security Engineer Associate is a Must
- Microsoft MS-20345-1-B and MS-201certifications are a Must
- Microsoft 365 Mobility and Security is a Must
- At least 1 certification from following is a Must: CISSP, CISM, CCSP, CASP, ISM, GPEN, OSCP
- Microsoft Azure Solutions Architect Expert is a Plus
- Microsoft 365 Messaging Administrator Associate is a Plus
- Microsoft 365 Enterprise Administrator Expert certification is a Plus
Language Requirements:
- Arabic: Fluent and professional verbal and written is a must
- English: Fluent and professional verbal and written is a must
- French: is a plus
Qualifications and Education:
- Minimum BCS, BEng, or BSCCE is a must
- 10 + years of relevant experience in the ICT field
- 7+ years working with ICT Security
- 5+ years of Industrial Networking
- 2+ years Leading Security Projects
- 2+ years performing audits/assessments
- Completed at least 1 successful ISO27001 accreditation
- Strong hands-on experience in Information Security Risk Assessment and Incident prevention
- Knowledge of BCP, Information Security Domains
- Knowledge of Information Security Policies and Process writing
- Strong attention to detail with an analytical mind and outstanding problem-solving skills.
- Knowledge of ICT Security Management
- Familiar with Software Development Life Cycle