Cyber Security Engineer

Spare

Riyadh, KSA

fulltime

Entry

Today

Network SecurityFirewall ConfigurationSIEM (Security Information and Event Management)Intrusion Detection/Prevention Systems (IDS/IPS)Vulnerability AssessmentPenetration Testing

Apply

Free

Job Fit Check

Base Career helps you apply smarter for this job.

Ready to Scan

Key skills for this role

Network SecurityFirewall ConfigurationSIEM (Security Information and Event Management)

Smart Apply

Full Job Posting

Company Description

Spare aims to empower financial institutions and fintechs across the MENA region by providing innovative Open Finance infrastructure.

Our vision is to drive seamless connectivity, financial inclusion, and continuous innovation throughout the region.

Role Description

As a Cybersecurity Engineer, you will maintain hands-on ownership of the design, implementation, and maintenance of security controls protecting Spare’s systems, infrastructure, and operational processes.

You will directly support all initiatives required to achieve and sustain SAMA CSF Level 3 and SOC 2 Type II compliance, alongside other critical regulatory standards.

By collaborating with engineering and infrastructure teams, you will embed secure-by-design principles across every layer of our operations to continuously enhance Spare’s overall security posture.

Qualifications & Experience

Bachelor's degree in Computer Science, Information/Cybersecurity, or a related field.
1–3 years of experience in information security, IT security operations, or a related technical role.
Hands-on experience with security tooling such as SIEM, IAM/PAM solutions, vulnerability scanners, or endpoint protection platforms.
Familiarity with cloud security concepts (GCP, Oracle, Azure, and AWS).
Working knowledge of security frameworks and standards such as SAMA CSF, SOC 2, ISO 27001, or NIST.
Understanding of core security concepts: network security, access control, encryption, and incident response.

Key Responsibilities

Design, implement, and maintain security controls across systems, infrastructure, and cloud environments, aligning with organizational priorities and regulatory expectations across KSA and other markets.
Support initiatives required to achieve and sustain SAMA CSF Level 3 and SOC 2 Type II compliance, including risk assessments, control implementation, and audit readiness.
Perform threat modeling, vulnerability management, and remediation tracking to reduce risk across Spare’s products and platforms.
Contribute to incident response planning and execution, ensuring readiness for internal and external security events.
Manage user access through Identity and Access Management (IAM) and Privileged Access Management (PAM) solutions, including granting, reviewing, and revoking access in line with least-privilege principles, and serve as the primary operator of security systems for day-to-day operations.
Collaborate with engineering and infrastructure teams to embed secure-by-design principles in products, APIs, and cloud infrastructure.
Implement and maintain security tooling, monitoring, and logging to detect, investigate, and respond to threats.
Help develop and uphold Spare’s security policies, procedures, and awareness training programs to ensure ongoing compliance and maturity.
Conduct internal security reviews and support external assessments, audits, and penetration tests.
Track and report on technical security KPIs to provide visibility into security posture and control effectiveness.
Monitor threat intelligence feeds, regulatory developments, and industry best practices to continuously enhance Spare’s security posture.