228 Information Security jobs in Saudi Arabia

Job Description:

L2 Network Security Engineer – Network Security Device Support

Job Summary:
The L2 Network Security Engineer is responsible for the day-to-day operational support, monitoring, and maintenance of various network security technologies, including:

• SSL Inspection (Gigamon)

• Virtual Private Network (Palo Alto, F5)

• Web Proxy ( ForcePoint )

• Firewalls (Palo Alto, Cisco, Fortinet)

• DDoS Protection (Arbor)

• Advanced Threat Protection (FireEye NX)

• Intrusion Prevention Systems (Cisco, Trilex )

• Email Security (Cisco Iron Port, FireEye EX, ForcePoint ESG, Trend Micro Scan-Mail)

The L2 engineer handles standard troubleshooting and configuration tasks while ensuring smooth operational performance and escalating complex issues to the L3 team.

Key Responsibilities:

• Operational Support & Monitoring:

• Monitor and maintain the health and performance of all network security technologies.

• Respond promptly to alerts and incidents across SSL Inspection, VPN, Web Proxy, Firewall, DDoS, Advanced Threat Protection, Intrusion Prevention, and Email Security systems.

• Issue Diagnosis & Escalation:

• Diagnose and resolve routine technical issues related to configuration, connectivity, and performance.

• Escalate complex or unresolved issues to the L3 Network Security Engineer with thorough documentation.

• Routine Configuration & Maintenance:

• Assist with configuration changes, firmware updates, and scheduled maintenance tasks.

• Maintain accurate documentation of device configurations, standard operating procedures, and incident logs.

• Incident Management & Reporting:

• Provide initial incident analysis and support during security events.

• Document incident details and assist in generating reports for root cause analysis and process improvement.

• Collaboration & Communication:

• Work closely with IT, network, and security teams to ensure operational stability and rapid issue resolution.

• Communicate status updates and coordinate with L3 support for escalated incidents.

Required Qualifications:

• Bachelor’s degree in Computer Science , Information Technology, Cybersecurity, or a related field.

• 3–5 years of experience in network security operations with hands-on experience in managing and troubleshooting multiple security technologies.

• Familiarity with SSL Inspection (Gigamon), VPN (Palo Alto, F5), Web Proxy ( ForcePoint ), Firewalls (Palo Alto, Cisco, Fortinet), DDoS Protection (Arbor), Advanced Threat Protection (FireEye NX), Intrusion Prevention Systems (Cisco, Trilex ), and Email Security (Cisco Iron Port, FireEye EX, ForcePoint ESG, Trend Micro Scan-Mail).

• Strong troubleshooting and analytical skills with the ability to work effectively under pressure.

• Excellent verbal and written communication skills.

Desired Skills & Certifications:

• Industry certifications such as CompTIA Security+, CCNA Security, or vendor-specific credentials.

• Experience with ITIL processes and incident management practices.

• Proficiency in documentation and reporting best practices.

Working Conditions:

• Full-time role with standard operational hours and potential on-call responsibilities during critical incidents.

• Collaborative team environment, working closely with L3 engineers and cross-functional IT/security teams.

• Opportunities for career growth and professional development in advanced network security technologies.

At DXC Technology, we believe strong connections and community are key to our success. Our work model prioritizes in-person collaboration while offering flexibility to support wellbeing, productivity, individual work styles, and life circumstances. We’re committed to fostering an inclusive environment where everyone can thrive.

Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf.More information on employment scams is availablehere .

Saudi National - Senior Information Security Engineer (Level 3 SOC) Tabby Riyadh, Saudi Arabia Apply now Posted 16 days ago Permanent Competitive

Saudi National - Senior Information Security Engineer (Level 3 SOC)

Saudi National - Senior Information Security Engineer (Level 3 SOC)

Department: InfoSec Monitoring

Employment Type: Full Time

Location: KSA

Reporting To: Weam Munshi

Description

We're looking for an experienced and proactive Senior Information Security Engineer to serve as a senior member of our cybersecurity operations team. You'll lead complex investigations, shape our detection capabilities, and provide strategic input into incident response and threat management. As a technical authority in the SOC, you'll mentor junior analysts, collaborate across teams, and help drive continuous improvement in our security posture.

Key Responsibilities

Advanced Threat Detection & Monitoring

• Lead the analysis and triage of high-fidelity alerts and complex event correlations across firewalls, IDS/IPS, endpoints, servers, and cloud platforms.
• Identify and investigate sophisticated threats, advanced persistent threats (APTs), and anomalous behavior patterns.
• Continuously refine detection logic, SIEM rules, and alerting thresholds to optimize SOC effectiveness.
• Design and maintain operational dashboards and KPIs to track security trends and SOC performance.

• Act as the primary incident commander for major security incidents, coordinating technical response and stakeholder communication.
• Conduct root cause analysis, full-scope investigations, and forensic analysis using endpoint and network-based artifacts.
• Drive post-incident reviews and deliver actionable recommendations to reduce future risk.
• Oversee incident documentation quality and ensure consistency in reporting and knowledge transfer.

• Research and operationalize threat intelligence into custom detection rules, threat hunting queries, and playbooks.
• Develop and tune detection use cases aligned with MITRE ATT&CK and evolving threat actor techniques.
• Contribute to the development and enhancement of SOAR workflows and automation to improve SOC efficiency.

• Collaborate with infrastructure and DevOps teams to assess and prioritize vulnerabilities in context with threat intelligence.
• Support patch validation and track remediation efforts for critical exposures.
• Guide vulnerability lifecycle processes, ensuring risks are addressed in a timely and measurable way.

• Serve as a technical mentor and escalation point for Tier 1 and Tier 2 SOC analysts.
• Lead training initiatives and tabletop exercises to strengthen SOC readiness and maturity.
• Work closely with IT, Engineering, Compliance, and Risk teams to ensure alignment during investigations and threat mitigation efforts.
• Communicate clearly and effectively with stakeholders, including drafting concise executive summaries during major incidents.

• 3-5+ years of hands-on experience in a SOC or cybersecurity operations role, including incident handling and threat detection.
• Deep understanding of security operations, threat hunting, attack vectors, and cyber kill chains.
• Proven expertise in log analysis, endpoint telemetry, and cloud-native security tools (e.g., AWS CloudTrail, Azure Sentinel).
• Strong scripting experience (e.g., Python, PowerShell) for automation and detection engineering.
• Experience with SIEMs (e.g., Splunk, Elastic, Sentinel), SOAR platforms, EDR/XDR tools, and Threat Intelligence platforms.
• Familiarity with DevSecOps, APIs, microservices, and modern application architectures.
• Security certifications such as GCIA, GCIH, CySA+, or equivalent (preferred).
• Clear and confident communicator with the ability to lead during high-pressure situations and present findings to technical and non-technical audiences.

Boost your career Find thousands of job opportunities by signing up to eFinancialCareers today.

Senior Information Security GRC Specialist page is loadedSenior Information Security GRC Specialist Apply remote type On-site Working locations SAU, Jeddah time type Full time posted on Posted 2 Days Ago job requisition id R-132473

Make an impact with NTT DATA
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive.

Your day at NTT DATA

The Senior Information Security Governance, Risk and Compliance (GRC) Specialist is an advanced subject matter expert, responsible for playing a crucial part in overseeing the organization's information security program, with a focus on governance, risk management, compliance, security awareness, and policy management.

This role involves leading risk assessments, developing security policies, ensuring alignment with industry standards and regulations, and fostering a culture of security awareness among employees.

This role may be required to guidance and support to junior members of the GRC team.

Key Responsibilities:

• Leads risk assessments and gap analyses to identify vulnerabilities and recommends risk mitigation strategies.
• Develops and maintains security policies, standards, and procedures.
• Collaborates with legal and compliance teams to ensure adherence to regulatory requirements.
• Provides guidance and support to junior GRC team members.
• Assists in the creation and delivery of security awareness and training programs.
• Participates in security incident response activities as needed.
• Contributes to the continuous improvement of the information security program.
• Assists in policy management and refinement.
• Performs any other related task as required.
• Closing gabs on key findings during internal audits and evidence validation.

To thrive in this role, you need to have:

• Strong knowledge and experience with NCA regulations.
• Strong experience in Essential Cybersecurity Controls (ECC).
• Advanced understanding of information security frameworks and standards.
• Advanced proficiency in conducting risk assessments, analyzing security controls, and policy management.
• Excellent communication and interpersonal skills for collaborating with various stakeholders.
• Strong project management skills for handling security initiatives.
• Advanced familiarity with legal and compliance aspects related to information security.

Academic Qualifications and Certifications:

• Bachelor’s degree or equivalent in Information Technology or Computer Science degree or related field.
• Security certifications such as CISA, CRISC, COBIT, IIA or equivalent preferred.
• Certifications such as Lead audit/Implementer - ISO 27001, SOC TSP preferred.

Required Experience:

• Advanced experience in information security, including GRC-related roles.
• Advanced experience in leading risk assessments, compliance efforts, security awareness initiatives, and policy management.

Workplace type :

About NTT DATA
NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.

Equal Opportunity Employer
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.

Is innovation part of your DNA? Do you want to enable a connected future for people, organizations, and society?

Join our growing global NTT family and you’ll be part of the world’s largest ICT company (by revenue). We’ve combined the capabilities of 28 remarkable companies to become one, leading technology services provider. Together, we help our people, clients, and communities do great things with technology to create a more secure and connected future.

We employ 40,000 people across 57 countries. By bringing together the world’s best technology companies and emerging innovators, we work together to deliver sustainable outcomes to businesses and the world. Innovation is part of our DNA. We believe it’s key to what makes us different. So, we strive to move forward, challenge the status quo, and drive excellence through the technologies we integrate and the services we deliver around the world. The result is connected cities, connected factories, connected healthcare, connected agriculture, connected conservation, connected mobility, and connected sport. Together we enable the connected future.

You’ll be joining a global employer that is committed to attracting, growing and keeping the best talent. A place where you will be at the heart of our success!

Job Description:

L3 Network Security Engineer – Network Security Device Management

Key Responsibilities:

• Advanced Support & Escalation Management:

• Act as the final escalation point for complex incidents affecting all network security technologies.

• Conduct comprehensive troubleshooting and root cause analysis, implementing corrective actions and enhancements.

• Configuration, Optimization & Maintenance:

• Oversee the configuration, tuning, and maintenance of SSL Inspection, VPN, Web Proxy, Firewall, DDoS, Advanced Threat Protection, Intrusion Prevention, and Email Security solutions.

• Develop and enforce best practices and security policies for device configurations.

• Incident Response & Reporting:

• Lead incident response during critical security events and coordinate with relevant teams for rapid resolution.

• Prepare detailed post-incident reports and contribute to continuous improvement initiatives.

• Technical Leadership & Mentorship:

• Mentor L2 engineers and junior staff, providing guidance and developing best practice documentation.

• Participate in technology reviews, risk assessments, and security audits.

• Collaboration & Strategy:

• Work closely with network, IT, and security teams to design and implement robust security architectures.

• Recommend and implement technology upgrades and process improvements to strengthen the overall security posture.

Required Qualifications:

• Bachelor’s degree in Computer Science , Information Technology, Cybersecurity, or a related field.

• Minimum of 7 years of experience in network security engineering with a focus on managing diverse security technologies.

• Demonstrated expertise in managing SSL Inspection (Gigamon), VPN (Palo Alto, F5), Web Proxy ( ForcePoint ), Firewalls (Palo Alto, Cisco, Fortinet), DDoS Protection (Arbor), Advanced Threat Protection (FireEye NX), Intrusion Prevention Systems (Cisco, Trilex ), and Email Security (Cisco Iron Port, FireEye EX, ForcePoint ESG, Trend Micro Scan-Mail).

• Excellent analytical, problem-solving, and communication skills.

Desired Skills & Certifications:

• Advanced certifications such as CISSP, CISM, or equivalent.

• Vendor-specific certifications (e.g., Palo Alto, F5, Cisco, Fortinet, Arbor, FireEye, ForcePoint ) are highly desirable.

• Experience with ITIL processes, incident management, and change management.

Working Conditions:

• Full-time role with standard 9x5 hours and potential on-call responsibilities.

• Fast-paced, high-pressure environment with global collaboration.

• Occasional extended hours during critical incidents or planned maintenance windows.

At DXC Technology, we believe strong connections and community are key to our success. Our work model prioritizes in-person collaboration while offering flexibility to support wellbeing, productivity, individual work styles, and life circumstances. We’re committed to fostering an inclusive environment where everyone can thrive.

Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf.More information on employment scams is availablehere .

We are seeking a seasoned and strategic Chief Information Security Officer (CISO) to lead our cybersecurity vision, strategy, and execution. This executive role is central to driving enterprise-wide security initiatives and safeguarding both internal and client-facing environments. The successful candidate must be a Saudi national with deep expertise in regulatory compliance, enterprise risk management, and operational cybersecurity, particularly in alignment with national frameworks such as SAMA , NCA , and CITC .

Key Responsibilities

• Develop and lead the organization’s overall information security strategy.
• Ensure full adherence to local cybersecurity regulations, including SAMA, NCA ECC / CCC, and CITC guidelines.
• Oversee the planning, execution, and continuous improvement of incident response and threat detection capabilities.
• Establish and maintain cybersecurity governance, risk policies, and awareness programs.
• Provide strategic cybersecurity guidance to executive leadership and the board, including risk posture assessments and security investment planning.

Required Qualifications

Benefits

1 month ago Be among the first 25 applicants

Job Description

L3 Network Security Engineer – Network Security Device Management

Job Description

L3 Network Security Engineer – Network Security Device Management

Key Responsibilities

• Advanced Support & Escalation Management:
• Act as the final escalation point for complex incidents affecting all network security technologies.
• Conduct comprehensive troubleshooting and root cause analysis, implementing corrective actions and enhancements.
• Configuration, Optimization & Maintenance:
• Oversee the configuration, tuning, and maintenance of SSL Inspection, VPN, Web Proxy, Firewall, DDoS, Advanced Threat Protection, Intrusion Prevention, and Email Security solutions.
• Develop and enforce best practices and security policies for device configurations.
• Incident Response & Reporting:
• Lead incident response during critical security events and coordinate with relevant teams for rapid resolution.
• Prepare detailed post-incident reports and contribute to continuous improvement initiatives.
• Technical Leadership & Mentorship:
• Mentor L2 engineers and junior staff, providing guidance and developing best practice documentation.
• Participate in technology reviews, risk assessments, and security audits.
• Collaboration & Strategy:
• Work closely with network, IT, and security teams to design and implement robust security architectures.
• Recommend and implement technology upgrades and process improvements to strengthen the overall security posture.
  
  

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Minimum of 7 years of experience in network security engineering with a focus on managing diverse security technologies.
• Demonstrated expertise in managing SSL Inspection (Gigamon), VPN (Palo Alto, F5), Web Proxy (ForcePoint), Firewalls (Palo Alto, Cisco, Fortinet), DDoS Protection (Arbor), Advanced Threat Protection (FireEye NX), Intrusion Prevention Systems (Cisco, Trilex), and Email Security (Cisco Iron Port, FireEye EX, ForcePoint ESG, Trend Micro Scan-Mail).
• Excellent analytical, problem-solving, and communication skills.
  
  

• Advanced certifications such as CISSP, CISM, or equivalent.
• Vendor-specific certifications (e.g., Palo Alto, F5, Cisco, Fortinet, Arbor, FireEye, ForcePoint) are highly desirable.
• Experience with ITIL processes, incident management, and change management.
  
  

• Full-time role with standard 9x5 hours and potential on-call responsibilities.
• Fast-paced, high-pressure environment with global collaboration.
• Occasional extended hours during critical incidents or planned maintenance windows.
  
  

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology
• Industries IT Services and IT Consulting

Referrals increase your chances of interviewing at DXC Consulting & Engineering Services by 2x

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

1 month ago Be among the first 25 applicants

Get AI-powered advice on this job and more exclusive features.

Job Description

L2 Network Security Engineer – Network Security Device Support

Job Description

L2 Network Security Engineer – Network Security Device Support

Job Summary

The L2 Network Security Engineer is responsible for the day-to-day operational support, monitoring, and maintenance of various network security technologies, including:

• SSL Inspection (Gigamon)
• Virtual Private Network (Palo Alto, F5)
• Web Proxy (ForcePoint)
• Firewalls (Palo Alto, Cisco, Fortinet)
• DDoS Protection (Arbor)
• Advanced Threat Protection (FireEye NX)
• Intrusion Prevention Systems (Cisco, Trilex)
• Email Security (Cisco Iron Port, FireEye EX, ForcePoint ESG, Trend Micro Scan-Mail)
  
  

• Operational Support & Monitoring:
• Monitor and maintain the health and performance of all network security technologies.
• Respond promptly to alerts and incidents across SSL Inspection, VPN, Web Proxy, Firewall, DDoS, Advanced Threat Protection, Intrusion Prevention, and Email Security systems.
• Issue Diagnosis & Escalation:
• Diagnose and resolve routine technical issues related to configuration, connectivity, and performance.
• Escalate complex or unresolved issues to the L3 Network Security Engineer with thorough documentation.
• Routine Configuration & Maintenance:
• Assist with configuration changes, firmware updates, and scheduled maintenance tasks.
• Maintain accurate documentation of device configurations, standard operating procedures, and incident logs.
• Incident Management & Reporting:
• Provide initial incident analysis and support during security events.
• Document incident details and assist in generating reports for root cause analysis and process improvement.
• Collaboration & Communication:
• Work closely with IT, network, and security teams to ensure operational stability and rapid issue resolution.
• Communicate status updates and coordinate with L3 support for escalated incidents.
  
  

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• 3–5 years of experience in network security operations with hands-on experience in managing and troubleshooting multiple security technologies.
• Familiarity with SSL Inspection (Gigamon), VPN (Palo Alto, F5), Web Proxy (ForcePoint), Firewalls (Palo Alto, Cisco, Fortinet), DDoS Protection (Arbor), Advanced Threat Protection (FireEye NX), Intrusion Prevention Systems (Cisco, Trilex), and Email Security (Cisco Iron Port, FireEye EX, ForcePoint ESG, Trend Micro Scan-Mail).
• Strong troubleshooting and analytical skills with the ability to work effectively under pressure.
• Excellent verbal and written communication skills.
  
  

• Industry certifications such as CompTIA Security+, CCNA Security, or vendor-specific credentials.
• Experience with ITIL processes and incident management practices.
• Proficiency in documentation and reporting best practices.
  
  

• Full-time role with standard operational hours and potential on-call responsibilities during critical incidents.
• Collaborative team environment, working closely with L3 engineers and cross-functional IT/security teams.
• Opportunities for career growth and professional development in advanced network security technologies.
  
  

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology
• Industries IT Services and IT Consulting

Referrals increase your chances of interviewing at DXC Consulting & Engineering Services by 2x

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

GRC Specialist's job is to participate in information security Governance, Risk Management, and Compliance Engagements within Jafeer and for Jafeer Customers.

Responsibilities:

• Participate in various IT Risk Management & Business continuity initiatives.


• Ensuring that requirements in IT Audit, Standard, Policy, Compliance and Risk controls are met.


• Ensure external auditors have the access and information they need to complete their audit successfully.


• Conduct interviews and process walkthroughs with select personnel and document and assess business processes and information systems to determine the adequacy of the control environment.


• Demonstrate well IT auditing based on industry best practices and regulations.

Skills

• Demonstrates a high level of independence, integrity, and confidentiality, with the ability to independently develop and deliver presentations, as well as respond to inquiries.


• Shows an understanding and application of fundamental project management methodologies.


• Capable of documenting and articulating technical details clearly and succinctly. Exceptionally organized, with the ability to multitask, handle simultaneous deadlines, and effectively contribute to and lead teams.


• Skilled at engaging with clients, both internal and external.


• Possesses outstanding communication abilities.


• This job might require frequent traveling within Saudi Arabia and sometimes outside of Saudi Arabia

The L2 Network Security Engineer at SWATX is responsible for enhancing the security posture of our network infrastructure across diverse environments. This role involves monitoring, identifying, and responding to security incidents, as well as implementing robust security measures to protect sensitive information.

In this hands-on position, you will analyze security events, manage firewall configurations, and collaborate with various teams to ensure comprehensive security compliance. The ideal candidate should be well-versed in network security principles with a strong commitment to safeguarding the organization's assets.

Requirements

• 2-4 years of experience in network security engineering or a related field
• Strong expertise in managing firewall platforms (e.g., FortiGate, Cisco ASA, Palo Alto)
• Experience with intrusion detection/prevention systems and security monitoring tools
• Familiarity with VPN technologies (SSL & IPSec) and endpoint protection solutions
• Solid understanding of network protocols and security architectures
• Able to conduct network security assessments, troubleshoot security incidents, and implement necessary changes
• Experience with compliance frameworks and security best practices
• Strong analytical skills and the ability to respond quickly to security incidents
• Good communication skills for effective collaboration with technical and non-technical teams
• Cisco Certified Network Associate (CCNA) Security or equivalent certifications preferred
• Experience with cloud security in AWS/Azure environments is a plus