TamkeenHR تعلن عن وظيفة أمن سيبراني في الرياض

Position Title: Cyber Security Engineer

Location: Riyadh

Position Overview:

The Cyber Security is responsible for designing, implementing, monitoring, and maintaining the organization’s cybersecurity controls and security infrastructure. This role ensures the confidentiality, integrity, and availability of company systems and data by protecting against cyber threats, responding to incidents, managing vulnerabilities, and enforcing security best practices across the IT environment.

Key Responsibilities:

Security Monitoring & Threat Detection:

• Monitor security systems such as SIEM, EDR/XDR, firewalls, IDS/IPS, and email security solutions.
• Detect, analyze, and respond to suspicious activities, alerts, and potential security incidents.
• Investigate security events and escalate critical incidents as required.
• Support the continuous improvement of threat detection use cases and alert tuning.

Vulnerability Management

• :Conduct regular vulnerability assessments and coordinate remediation efforts
• .Identify, assess, and prioritize security risks across servers, endpoints, applications, and network devices
• .Work closely with infrastructure and application teams to remediate vulnerabilities in a timely manner
• .Track remediation progress and provide risk-based reporting

.
Security Infrastructure Administratio

• n:Implement, configure, and maintain cybersecurity tools and technologie
• s.Manage endpoint protection, DLP, MFA, VPN security, web filtering, and access control system
• s.Ensure security systems are updated, optimized, and functioning properl
• y.Evaluate and recommend new security technologies and tool

s.
Incident Response & Investigati

• on:Participate in incident response activities including triage, containment, eradication, and recove
• ry.Perform root cause analysis and document incident findin
• gs.Support digital forensic investigations when need
• ed.Develop and maintain incident response procedures and playboo

ks.
Security Hardening & Engineer

• ing:Apply security hardening standards for servers, workstations, network devices, and cloud resour
• ces.Support secure configuration baselines and system patching proces
• ses.Collaborate with IT teams to integrate security into infrastructure design and operational proces
• ses.Assist in the implementation of Zero Trust and defense-in-depth strateg

ies.
Access Control & Identity Secu

• rity:Support identity and access management controls, including privileged access and role-based ac
• cess.Review user permissions and access rights to ensure compliance with least privilege princi
• ples.Assist in implementing and monitoring MFA, SSO, and identity governance solut

ions.
Risk, Compliance & Gover

• nance:Support compliance with internal security policies, standards, and regulatory require
• ments.Assist in security audits, assessments, and control re
• views.Participate in risk assessments and help define mitigation strat
• egies.Maintain evidence and documentation required for compliance and audit activ

ities.
Security Awareness & Documen

• tation:Contribute to user awareness initiatives and promote cybersecurity best pra
• ctices.Maintain accurate documentation of security tools, procedures, configurations, and incident r
• ecords.Develop technical documentation, runbooks, and standard operating proc
• edures.Share knowledge with IT teams and support junior security staff when

needed.
Qualifications and Exp

erience:Ed

• ucation:Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field (pre

ferred).Exp

• erience:3+ years of experience in cybersecurity, information security, or security engineerin
• g roles.Hands-on experience with security tools such as SIEM, EDR, firewalls, IDS/IPS, vulnerability scanners, and email security g
• ateways.Experience in incident response, vulnerability management, and security mon
• itoring.Familiarity with securing on-premises and/or cloud envir

onments.
Skills and Comp

• etencies:Strong knowledge of cybersecurity principles, frameworks, and best p
• ractices.Good understanding of network security, system security, endpoint protection, and identity ma
• nagement.Familiarity with TCP/IP, DNS, VPN, routing, switching, and common attack te
• chniques.Knowledge of vulnerability scanning and remediation p
• rocesses.Ability to analyze logs, alerts, and incidents eff
• ectively.Understanding of operating systems security (Windows/Linux) and Active Directory envi
• ronments.Strong troubleshooting, analytical, and problem-solvin
• g skills.Good communication and documentatio
• n skills.Ability to work collaboratively with cross-function

al teams.
Certifications (Optional but Be

• neficial):CompTIA
• Security+CEH (Certified Ethic
• al Ha
• cker)CySA+SC-200 / SC-30
• 0 / AZ-500Fortinet, Palo Alto, or other vendor-specific security cert

ifications
Key

• Attributes:Proactive and security-minded with strong attention
• to detail.Able to work under pressure and respond effectively to security
• incidents.Strong sense of ownership and acco
• untability.Continuous learner with interest in evolving cybersecurity threats and te
• chnologies.Team player with a practical and solution-orient

ed mindset.
Working

• Conditions:May require on-call support or flexible working hours for incident handling and critical secu
• rity events.May participate in after-hours maintenance or emergency response
• activities.Primarily office-based with possible hybrid or remote support responsibilities depending on bus