Firewall & Security Systems Operator

We are seeking an experienced System Operator to manage and operate cybersecurity systems within the company. The candidate will support all cybersecurity operations, work onsite during official Health Affairs working hours, and collaborate closely with security and IT teams.

Location: Riyadh, Riyadh, Saudi Arabia
Work Conditions: On-site, Full-time

Key Responsibilities:

• Operate and manage cybersecurity systems: EDR, AV, SIEM, WAF, Firewall, Proxy, etc.
• Continuous monitoring of security alerts, events, and incidents.
• Classify incidents and take actions based on severity.
• Notify system owners and follow incident response plans.
• Escalate incidents as per standard procedures.
• Document and report all incidents accurately.
• Handle and resolve cybersecurity-related service requests.
• Track cyberattacks and create/update security use cases.
• Analyze events and incidents from multiple security systems.
• Manage incidents reported by the NCA.
• Ensure compliance with HA-MNG cybersecurity technical standards.
• Coordinate with departments during incident investigations.
• Prepare monthly reports summarizing incidents and major findings.
• Maintain the latest approved versions of cybersecurity systems.
• Collect, classify, prioritize, and investigate events from: Firewalls, Network devices, IPS/IDS, Antivirus, Databases, Servers, Endpoints.

Required Qualifications:

• 5+ years of experience in cybersecurity system operations.
• Mandatory Certifications: CISSP or CASP+, CCNA.
• Hands-on experience with security monitoring tools.
• Strong understanding of incident response and cybersecurity standards.
• Ability to work onsite and operate in a structured security environment.

Language Requirements:

• Proficiency in English is required.