Cyber Security Operations Engineer

Cyber SecurityL2 Engineer (SecurityOperations)

Role Purpose:

• The Cyber Security L2 Analyst will be part of Organizations Enterprise grade Security Operations function responsible for day-to-day operational security monitoring incident handling and control administration across a diverse enterprise security landscape.
• The role is -on experience in Security Operations Incident Response and control management is mandatory.
• Product-specific expertise with expected familiarity at L2 operational level in Enterprise Security technologies across key areas like but not limited to Perimeter Security End-point Security Email Security Data Security Application Security and Threat & Vulnerability Management.

Key Responsibilities

1. Security Operations & Incident Response (Core Responsibility)

• Perform L2-level incident investigation and response across security platforms and infrastructure.
• Analyze alerts logs and events to determine root cause impact and containment actions.
• Support incident escalation coordination and resolution in line with defined SLAs.
• Assist in Incident analysis and support post-incident reviews and RCA documentation.

2. Security Policy Administration & Control Management

• Administer review and fine-tune security policies rules and configurations across deployed security controls.
• Ensure policies align with organization security standards compliance requirements and risk posture.
• Support implementation of new security controls and enhancements as per approved designs.

3. Security Platform & System Health Monitoring

• Monitor health performance and availability of security appliances and platforms.
• Identify and proactively address issues related to capacity stability or degradation.
• Coordinate with vendors and internal teams for issue resolution when required.

4. Patch Upgrade & Version Management

• Support patching upgrades and version lifecycle management for security products(with OEM Support).
• Validate post-patch / post-upgrade stability and security posture.
• Ensure changes follow Change Management and ITIL processes.

5. Documentation Reporting & Compliance Support

• Prepare and maintain:
• Operational reports
• Incident and investigation reports
• Log validation evidence
• Root Cause Analysis (RCA) documents

6. Collaboration & Continuous Improvement

• Work closely with SOC Infrastructure Network and Application teams.
• Contribute to process improvements and operational readiness.

7. Experience Requirements -

• Total IT experience: Minimum 15 years overall professional IT experience.
• Cyber Security experience: Minimum 7 years of hands-on experience in Cyber Security / Security Operations. Transition from Network Security would be highly desirable.
• Demonstrated experience working in enterprise-scale or government environments with complex security ecosystems.
• Strong exposure to operational security functions including incident response monitoring policy enforcement and control management.
• Experience and working knowledge of UAE Cyber Security frameworks standards and regulatory requirements is highly desirable

8. Certifications

• Must Have on Network Security & Platform Security Cisco CCNA Security / CCNP Security / F5 WAF Certified Technology Specialist / CompTIA Security
• Good to Have - CISSP / NIST Cybersecurity Framework.

Required Experience:

IC

Key Skills
Splunk,Compliance Management,IDS,SOC,Cybersecurity,Identity & Access Management,Security,Information Security,Process Engineering,Metadata,Encryption,Siem
Employment Type : Full-Time
Experience: years
Vacancy: 1
Monthly Salary Salary: 18000 - 20000