Responsibilities
Security Architecture and Implementation:
- Design, review, and implement robust security architecture for SiFi infrastructure.
- Provide guidance and support to the IT team on security-related issues.
- Develop and monitor Identity and access management programs.
- Manage and optimize security solutions like Antivirus, EDR, PAM, and VPN.
- Develop and enforce security standards and best practices, adhering to industry regulations (SAMA CSF, PCI-DSS, ISO 27001) and internal policies.
Threat Detection and Response:
- Monitor security systems for anomalies and potential threats.
- Conduct regular security reviews and assessments to identify vulnerabilities and recommend mitigation strategies.
- Develop and enforce security standards and best practices, adhering to industry regulations (SAMA CSF, PCI-DSS, ISO 27001) and internal policies.
- Investigate security incidents, analyze evidence, and implement containment measures.
- Develop and implement threat intelligence program.
Compliance and Governance:
- Collaborate with the legal and compliance teams to ensure adherence to local regulations (NCA , SAMA, PCI DSS).
- Assist in implementing and maintaining an Information Security Management System (ISMS).
- Perform periodic reviews on the cybersecurity standards and practices in the organization.
- Participate in audits and provide expertise on security controls and procedures.
Requirements
- 3 years of experience in cybersecurity.
- Solid understanding of security frameworks (NIST, ISO 27001, SAMA CSF, PCI-DSS) and applicable regulations.
- Proficiency in security tools and technologies (SIEM, EDR, vulnerability scanners).
- Excellent communication, analytical, and problem-solving skills.
- Ability to work independently and collaboratively in a fast-paced environment.
- Fluency in Arabic and English languages.
- Relevant cybersecurity certifications (SANS, CompTIA, ISACA) are highly desirable.
- A positive attitude and passion for cybersecurity are essential.