Cybersecurity Defense Senior Specialist

The Cybersecurity Defense Senior Specialist is responsible for advanced, hands-on security operations, including monitoring, analyzing, and responding to complex security alerts using tools like SIEM, EDR, and intrusion detection systems. They design, implement, and maintain critical defensive infrastructure such as firewalls, security controls, and encryption solutions to reduce the attack surface. Furthermore, they conduct threat hunting, perform in-depth security assessments, and manage vulnerability remediation efforts while serving as a subject matter expert to mentor junior staff and continuously refine security policies and incident response playbooks to enhance the organization's defensive posture.

Location: Riyadh, Riyadh, Saudi Arabia

Tasks & Responsibilities

• Operate and enhance the company's defensive monitoring and detection capabilities across endpoints, cloud, IAM, network, and fintech apps.
• Perform advanced threat hunting and investigation; tune SIEM/SOAR rules and use cases mapped to MITRE ATT&CK.
• Improve alert fidelity, reduce false positives, and support 24/7 SOC operations and incident handling.
• Work with Offense/IR teams to convert red-team lessons into detections and preventative controls.
• Maintain security tooling health (EDR, NDR, DLP, WAF, CSPM) and report on coverage/maturity.

Qualifications

• Bachelor’s in Cybersecurity/CS or related field.
• 5–8+ years in SOC / blue team / detection engineering, fintech, or high-scale digital products preferred.
• Hands-on with SIEM/SOAR, EDR, cloud security monitoring, and log analytics.
• Familiarity with SAMA CSF / NCA ECC-2 defensive control expectations.
• Certs preferred: GCIA, GSEC, SC-200, Splunk/QRadar/Elastic certs, or equivalent.