Cyber Security Specialist

Job Description

Perimeter & Endpoint Security

• Support the engineering, execute the deployment and harden GCGRA advanced security controls, including L7 firewalls, IPS, VPN, Endpoint Detection and Response (EDR/XDR) and Data Protection solutions.

Cyber Security Operations

• Security Monitoring & Detection: Operate and optimize SIEM/XDR/M365 security stack for continuous monitoring, alert triage, and investigation, ensuring log integrity, use case tuning, and reduced false positives. Incident Response & Threat Handling: Execute end-to-end incident response (detect, analyze, contain, eradicate, recover) supported by root cause analysis and standardized runbooks.
• Threat Hunting & Intelligence: Enhance detection through proactive threat hunting, use case refinement, and integration of global/regional threat intelligence.
• Cloud & Identity Security: Secure M365 and identity platforms by enforcing Conditional Access, monitoring anomalous activities, and aligning with Zero Trust principles.
• Security Automation & SOAR: Develop and maintain SOAR playbooks to automate response actions, improve consistency, and reduce mean time to respond (MTTR).
• Operational Coordination & Reporting: Collaborate with internal/external stakeholders, maintain operational documentation, and report on incidents, risks, and security posture.
• Security Leadership: Mentor and guide SOC analysts and engineers, fostering continuous improvement in detection and response capabilities.

SOC Design, Build, And Operations

• Lead the establishment and optimization of the Security Operations Center (SOC) function, including strategy design, team building, and automated response workflows.

Vulnerability Management & Security Posture

• Vulnerability Management (RBVM): Lead end-to-end vulnerability lifecycle (scanning, prioritization, remediation) using risk-based approaches to address critical and actively exploited vulnerabilities.
• Security Assessment & Hardening: Identify misconfigurations, shadow IT, and infrastructure weaknesses; drive remediation and system hardening across cloud and on-prem environments.
• Security Posture & Compliance: Continuously assess and improve security posture in alignment with international standards (e.g., NIST, ISO 27001) and regional regulations (e.g., NESA, SIA).
• Threat & Risk Assessment: Perform targeted risk assessments on critical assets and infrastructure, defining and tracking mitigation strategies.
• Tooling & Platforms: Utilize enterprise vulnerability management and security platforms (e.g., Qualys, Tenable, Microsoft Defender) to support continuous exposure management.

Security Architecture And Engineering

• Contribute to the design and engineering of advanced cybersecurity systems to protect M365 SaaS cloud and on-premise environments.
• Project Management: Support the execution of secure engineering and system upgrades, including risk assessments, and project scheduling.

Qualifications

• Bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field.

Experience

• 5–8 years of extensive technical experience in cybersecurity, with a focus on securing complex IT infrastructures, cyber defence and security operations.

Technical Skills

• Security Products: Proficient with M365 Security (Defender, Sentinel), endpoint protection & EDR/XDR (Defender, CrowdStrike) SIEM (Azure Sentinel, Splunk, or similar), and firewalls (Palo Alto Networks, Fortinet).
• Frameworks: Advanced knowledge of NIST, ISO 27001, CIS Controls, and UAE-specific regulatory requirements.
• Incident Response: familiar with Security Operations Centre technical controls, processes and procedures, able to manage and monitor security events and incidents in enterprise platforms.
• Threat Hunting: Proven experience in managing cybersecurity incidents and conducting threat hunting using advanced methodologies.

Certifications

• Offensive Security OSCP+ (PEN-200Penetration Testing with Kali Linux), OSEP (PEN-300: Evasion Techniques and Breaching Defenses)
• CEH (Certified Ethical Hacker).
• Microsoft Security Operations Analyst Associate (SC-200).

About Us