Information Security Engineer

A leading provider of hardware, software, and connectivity services, delivering innovative, reliable, and customer-centric solutions.

We’re actively investing in AI to transform our business—reducing delivery costs, improving service quality, and accelerating time-to-market for new capabilities.

The IT Security Engineer is responsible for owning and strengthening security posture across networks, IT infrastructure, and software development environments.

This role blends hands-on security engineering with strategic planning, governance, and cross-team leadership.

You will analyse emerging threats, define and maintain the organisation’s security roadmap, and work closely with Infrastructure, IT, and Development teams to ensure secure design, implementation, and continuous improvement.

The role also owns all security testing, compliance activities, and the ongoing evolution of security processes across the company.

1.

Own and drive security strategy across network operations, IT systems, and software development environments.

2.

Assess and monitor security risks, vulnerabilities, and threat trends across all technology domains.

3.

Develop and maintain a comprehensive security strategy and roadmap, including policies, standards, and mitigation plans.

4.

Lead and execute security testing, including vulnerability assessments, penetration testing, and application security reviews.

5.

Oversee network security, including firewall configuration, segmentation, VPN management, and secure access controls.

6.

Partner with Infrastructure, DevOps, IT, and Development teams to embed security into system architecture and development lifecycles.

7.

Implement, manage, and optimise security tools such as SIEM, IDS/IPS, EDR, WAF, and vulnerability scanners.

8.

Ensure compliance with relevant standards and frameworks (ISO 27001, Cyber Essentials, GDPR, NIS2).

9.

Lead security incident response, perform root-cause analysis, and guide remediation efforts.

10.Maintain detailed security documentation, reports, and risk registers.

11.

Promote a strong, unified security culture across all technical teams through guidance, best practices, and knowledge sharing.

1.

Strong understanding of network security (firewalls, VPN, IDS/IPS, segmentation, Zero Trust).

2.

with application security, secure coding practices, OWASP Top 10, API security, and code reviews.

3.

Knowledge of threat modelling, risk assessments, and vulnerability management.

4.

Hands-on experience with security tooling (SIEM, EDR, scanners, proxies, WAFs, cloud security platforms).

5.

Familiarity with Windows, Linux, Azure/AWS, and container security ecosystems.

6.

Solid understanding of IAM concepts, including MFA, SSO, and privileged access management.

7.

writing and maintaining security standards, policies, and compliance documentation.

1. 3+ years in IT security, network engineering, or security engineering roles.

2.

Demonstrated ability to analyse threats and implement mitigation strategies across multiple technology domains.

3.

working with Infrastructure, IT, and Development teams on security initiatives and secure delivery.

4.

Hands-on experience conducting or managing penetration testing and vulnerability assessments.

5.

Knowledge of compliance frameworks (ISO 27001, NIST, Cyber Essentials, GDPR, etc.).

6.

leading or contributing to incident response activities is highly desirable.

**1.

Ownership**: Takes full responsibility for security across networks, IT systems, and development.

**2.

Communication**: Able to clearly explain complex security concepts to both technical and non-technical audiences.

**3.

Collaboration**: Works effectively across teams, departments, and leadership levels.

**4.

Problem-Solving**: Strong analytical mindset and structured, evidence-driven approach.

**5.

Adaptability**: Comfortable managing shifting priorities and fast-evolving threat landscapes.

**Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or a related field.** Certifications such as CISSP, CEH, OSCP, or Security+ are a strong advantage but not required.

Competitive, based on experience and qualifications

Pay: AED10,000.00 - AED12,000.00 per month