Specialist - Cyber Defense Centre

The company is seeking a skilled and dedicated Specialist for our Cyber Defense Centre to strengthen our cybersecurity defenses. This pivotal role involves supporting advanced cyber defense operations through proactive threat hunting, incident response, and security analytics. The Specialist will work closely with SOC analysts, cybersecurity teams, and IT operations teams to detect, investigate, contain, and remediate cyber threats, with the overarching goal of enhancing the organization’s security posture, improving detection capabilities, and ensuring rapid, effective responses to cyber incidents, thus safeguarding our digital assets and business continuity.

Work Conditions: On-site, Full-time
Location: Abu Dhabi, Abu Dhabi Emirate, United Arab Emirates

Responsibilities:

• Conduct proactive threat hunting activities to identify hidden or emerging cyber threats using advanced analytics and intelligence sources.
• Support and lead incident response efforts by investigating security incidents and coordinating containment, eradication, and recovery actions.
• Monitor, tune, and enhance security tools such as SIEM, EDR, NDR, and SOAR to increase detection efficacy.
• Analyze security data to identify trends, generate detailed reports, and develop dashboards for leadership insights.
• Collaborate with cross-functional teams to improve detection rules, develop incident response playbooks, and conduct cyber drills.
• Maintain comprehensive documentation of investigations, findings, and lessons learned for continuous improvement.

Technical Skills Required:

• Programming Languages: Proficient in scripting languages such as Python or PowerShell; familiarity with Bash or Perl is preferred.
• Software Skills: Experience with SIEM Platforms (Splunk, IBM QRadar, Azure Sentinel), Endpoint Detection and Response (CrowdStrike, Microsoft Defender), and Security Orchestration (Palo Alto Cortex XSOAR).
• Cloud Technologies: Familiarity with security in cloud environments (AWS, Azure, GCP) is advantageous.
• Knowledge of Security Protocols: Understanding of TCP/IP, SSL/TLS, VPNs, Firewalls, and encryption protocols.

Experience Requirements:

• Minimum of 3-5 years in cybersecurity roles, specifically in threat detection, incident response, or security operations.
• Proven experience supporting or leading cyber defense operations in enterprise environments.
• Familiarity with security frameworks, threat intelligence, and forensics is beneficial.

Qualifications:

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Preferred certifications include CISSP, GSEC, GIAC, CEH, or relevant vendor-specific accreditations.

Professional Competencies:

• Strong analytical and investigative skills.
• Excellent communication skills for technical reporting and stakeholder engagement.
• Proven ability to work collaboratively in a team environment.
• High attention to detail and a methodical approach to investigations.
• Adaptability to evolving threats and technology landscapes.

Language Requirements: [Not specified in the text; if applicable, it should be included here.]

The company is committed to fostering an inclusive culture that promotes equality and diversity. All employment decisions are based on business needs and qualifications, without regard to personal characteristics.