وظيفة أمن شبكات - المستوى الثالث لدى Sirar by stc في الرياض

About the Company

Advanced technology and cybersecurity company (sirar) established by stc, the region’s ICT and digital services provider, sirar by stc is a cutting-edge cybersecurity provider that empowers organization to take control of their cyber capabilities and digital environments. As experts in business security and privacy. We offer a comprehensive range of solutions that help you to operate online safely, securely, and efficiently.

Responsibilities:

• Handles IT Network system security as a subject matter expert on IT System security and providing up to level-3 support.
• Handles escalations and provide advisory and support function to front office / back office.

Configure, Administer, and Optimize:

• Configure firewalls, intrusion detection/prevention systems (IDS/IPS), VPNs, and other security appliances.
• Access Controls: Configure access control lists (ACLs) to ensure only authorized users can access network resources. Security Policies: Implement network security policies and protocols.
• System and Network Logging: Set up logging and monitoring systems to track security events and incidents.
• Network Protocols: Knowledge of TCP/IP, DNS, HTTP/S, SSL/TLS, and other network protocols.
• Firewall Configuration: Experience configuring and managing firewalls (e.g., Cisco ASA/FTD, Palo Alto, Fortinet, Juniper).
• Intrusion Detection/Prevention Systems: Understanding of IDS/IPS technologies and their deployment.
• VPN Technologies: Proficiency in setting up and managing VPNs (e.g., IPsec, SSL VPN).
• Security Information and Event Management (SIEM): Familiarity with SIEM tools (e.g., Splunk, QRadar).
• Encryption Techniques: Knowledge of encryption algorithms and best practices for data protection.
• Monitor and troubleshoot network security systems: Handle security-related incidents and issues outside regular working hours
• Issue Resolution: Address and resolve escalated issues from L1 support teams, ensuring timely responses to minimize disruptions.
• System Updates: Participate in system updates and upgrades as required to maintain functionality and security.
• Request Analysis: Analyze incoming requests for potential risks, providing insights to guide decision-making. Analyzes identified malicious activity to determine weaknesses exploited, exploitation methods, effects on system and information.
• Perform risk analysis: Conduct regular security reviews and assessments.
• Escalation Management: Effectively handle and resolve escalated issues from L1 and L2 teams, ensuring swift resolution to minimize operational disruption.
• System Upgrades and Maintenance: Proactively update and upgrade systems to maintain optimal performance and security standards.
• Risk Analysis: Conduct thorough analyses of requests to identify potential risks, ensuring informed decision-making prior to action.
• Change Management Execution: Implement all system changes in strict adherence to change management processes, ensuring stability and compliance.
• Service Handover Management: Oversee the seamless handover of new systems and services, ensuring comprehensive understanding and continuity.
• Knowledge Sharing: Facilitate frequent knowledge transfer sessions for L1 and L2 teams, fostering skill development and operational efficiency.
• Telecom Security Monitoring: Support monitoring and operational activities related to telecom signaling security technologies including SS7, Diameter, and GTP/GTP-C within mission critical environments.
• Signaling Security Awareness: Possess working knowledge of telecom signaling protocols (SS7, Diameter, GTP) and associated security risks, vulnerabilities, and operational impacts on critical telecom services.
• Mission Critical Service Assurance: Support secure operation and availability of telecom security infrastructure protecting critical services, ensuring stability and minimal service disruption in 24x7 mission critical environments.
• Telecom Security Incident Handling: Assist in identifying, analyzing, troubleshooting, and escalating telecom-related security incidents, signaling anomalies, suspicious traffic behavior, and service-impacting events.
• Telecom Protocol Troubleshooting: Support troubleshooting activities involving SS7, Diameter, and GTP signaling flows, connectivity issues, roaming-related concerns, and service degradation scenarios.
• Cross-Functional Coordination: Collaborate with Core, Network, Security, Vendor, and Operations teams to resolve complex telecom security and signaling-related issues.
• Vendor Coordination: Coordinate with telecom vendors and third-party support teams for fault isolation, root cause analysis, and restoration of mission critical telecom services.
• Vulnerability and Security Assessment: Assist in identifying telecom security vulnerabilities, protocol weaknesses, misconfigurations, and support mitigation measures to strengthen overall security posture.
• Health Monitoring and Preventive Checks: Conduct periodic health checks and preventive maintenance reviews for telecom security systems to ensure operational readiness and service continuity.
• Disaster Recovery & Readiness: Participate in disaster recovery exercises and failover testing for telecom security systems supporting mission critical services.

Preferred Experience / Technical Knowledge

• Hands-on or operational exposure to SS7, Diameter, GTP/GTP-C protocols, signaling security concepts, and telecom environments.
• Understanding of telecom security platforms, signaling traffic behavior, and telecom service continuity requirements.
• Experience in mission critical operational environments, incident handling, troubleshooting, and change management processes.
• Familiarity with telecom security threats, signaling vulnerabilities, roaming related risks, and service assurance concepts is preferred.

• Change Management Participation: Support the change management process by documenting and executing system changes as directed. Coordinates system changes with appropriate teams to minimize disruption.
• System Handover Assistance: Facilitate the handover of new systems and services, ensuring smooth transitions and knowledge transfer.
• Knowledge Transfer Support: Assist in providing knowledge transfer sessions to L1 teams, enhancing their ability to handle common issues.
• System Health Checks: Conduct regular PMR health checks to monitor system availability and security status.
• Vulnerability Identification: Assist in identifying system vulnerabilities and support mitigation efforts.
• Feature Utilization Review: Help identify unused features within the system to enhance efficiency.
• Performance Monitoring: Monitor system performance and report on any issues that may require attention.
• System Maintenance: Participate in regular system clean-up activities to ensure optimal performance and data integrity.
• Disaster Recovery Support: Assist in disaster recovery drills to ensure readiness and effective response strategies
• Collaborate with cross-functional teams: Work with network engineers, system administrators, and security professionals to resolve complex technical issues.
• Coordinates and communicates issues requiring escalation to different teams and initiate follow up procedure pertaining to issues.
• Analyze and review fault reports: Evaluate fault reports to identify the root cause of issues & generate Incident reports.
• Vendor Liaison for Fault Resolution: Open and manage tickets with vendors to identify and resolve root causes of network issues.
• Coordination with External Partners: Collaborate with vendor support teams to ensure timely and effective resolution of faults.
• Track and Monitor Vendor Performance: Maintain records of ticket statuses and follow up with vendors to expedite resolution processes.
• Document Communication: Keep detailed records of all communications with vendors for troubleshooting and future references.
• Implement and maintain network security infrastructure: Ensure stability and availability on a 24/7 basis
• Documents lessons learned that convey the results of events and/or exercises.
• Facilitates the sharing of “best practices” and “recommendations” throughout the cyber operations with customers.
• Contributes to the overall success of the company by performing all other duties and responsibilities as assigned by line manager.

Academic Qualification :

• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related discipline.

Professional Certificate:

• Preferred industry-based certifications such as Cisco-CCIE(Sec), Juniper-JNCIE(Sec), Fortinet-NSE7, PaloAlto-PCNSE, CompTIA Security+, CISM certifications are preferred.

Years of Experience:

• 6 - 10 years in relevant experience.

Skills :

• Proven experience in network security operations, preferably in a telecom environment
• Strong understanding with next-generation firewalls (e.g. FortiGate, Palo Alto, Cisco-FTDs), IPS, NAC, VPNs (IPSEC, Dial-up, SSL etc), NAT.
• Advance knowledge in IT security infrastructure.
• Intermediate knowledge in the 6 phases of Incident Response.
• Intermediate proficiency in an IT operational environment as a security system admin.
• Intermediate knowledge of a variety of operating systems, and a good systems administration level of experience.
• Advance proficiency in communicating effectively with a range of security professionals and to simplify complex technical issues.
• In-depth knowledge of security protocols and principles.
• Proficiency in networking technologies, network security and network monitoring solutions.
• Advanced troubleshooting and diagnostic skills to efficiently resolve complex issues
• In-depth understanding of TCP/IP, network protocols, packet capture, WireShark, tcpdump.
• Excellent troubleshooting and problem-solving skills.
• Excellent communication skills to work with cross-functional teams.
• Must understand security and incident response best practices.
• Ability to work collaboratively with diverse teams

Important Notice for Candidates:

By submitting your application, you confirm that you have read and understood sirar's Candidate Privacy Notice and agree to the processing of your personal data in accordance with it.