Specialist, Cybersecurity Defense

The Cybersecurity Monitoring Specialist plays a critical role in safeguarding ROSHN’s digital infrastructure by proactively monitoring, analyzing, and responding to security threats. This role encompasses real-time threat detection, incident analysis, and continuous enhancement of SIEM use cases to improve visibility and detection capabilities. The analyst works closely with incident response and threat management teams to ensure timely identification and mitigation of threats, while contributing to the maturity of ROSHN’s cybersecurity operations.

Responsibilities

• Investigate suspicious emails reported by users or flagged by automated systems.
• Identify phishing techniques, malicious payloads, and targeted campaigns.
• Provide recommendations to improve email filtering and user awareness.
• Identify emerging threats, campaigns, and attacker tactics relevant to ROSHN.
• Enrich incident investigations with IoCs and threat context from external sources.
• Design and implement new SIEM use cases to detect anomalies and malicious behavior.
• Tune existing rules to reduce noise and improve detection accuracy.
• Support incident response teams during investigations and containment efforts.
• Provide detailed analysis and documentation of findings related to phishing, malware, or suspicious activity.

Requirements

• A bachelor’s degree in computer science, Information Technology, Software Engineering, Cybersecurity, or a closely related field.
• 3–5 years of experience in cybersecurity architecture, preferably across multi-platform environments.
• Familiarity with frameworks like OWASP, NIST, MITRE ATT&CK, and NCA ECC practices.
• Excellent communication and stakeholder management skills.
• Preferred Professional Certificates: CompTIA Security+ / CySA+, GSEC, GSDA, GCTI, GMON, GREM.