86 Software Security jobs in Saudi Arabia

Join to apply for the L2 F5 Application Security Engineer – Edge Protection role at DXC Technology

1 day ago Be among the first 25 applicants

Join to apply for the L2 F5 Application Security Engineer – Edge Protection role at DXC Technology

Job Summary:

The L2 F5 Application Security Engineer provides day-to-day operational support, monitoring, and maintenance for the full Edge Protection tool-set mandated by SAMA: F5 BIG-IP (Access Policy Manager, Web Application Firewall, Local & Global Traffic Manager) and Infoblox DNS Security (MANDATORY). The role ensures high availability, policy compliance, and prompt incident response for all edge-security platforms, escalating complex issues to the L3 F5 team. Success is measured by swift ticket resolution, precise change execution, and strict adherence to SAMA/NCA controls.

Key Responsibilities

• Continuously monitor F5 APM, ASM/WAF, LTM, GTM and Infoblox DNS grids for health, performance, and security events
• Respond to alerts and service-desk tickets within SLA; perform first-pass diagnosis and fix routine issues
  
  

• Continuously monitor F5 APM, ASM/WAF, LTM, GTM and Infoblox DNS grids for health, performance, and security events
• Respond to alerts and service-desk tickets within SLA; perform first-pass diagnosis and fix routine issues
  
  

• Implement approved configuration changes: access policies, iRules, WAF policies, DNS RPZ rules, IPAM updates, and GTM load-balancing pools
• Apply software patches, hot-fixes, and signature updates under change-management guidelines
  
  

• Investigate connectivity, authentication, or DNS anomalies; capture logs, packet traces, and ASM violation details
• Escalate unresolved or systemic issues to the L3 engineer with clear documentation of findings and attempted fixes
  
  

• Generate daily/weekly health-check reports and edge-security KPI dashboards aligned to SAMA CSF IAM-01 / NET-02 requirements
• Ensure all changes, incidents, and maintenance tasks are fully documented in ServiceNow
  
  

• Coordinate with network, application, and SOC teams during deployments or incident bridges
• Maintain and improve runbooks, SOPs, and knowledge-base articles; deliver informal training sessions to L1 analysts
  
  

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity or related field
• 3–5 years hands-on experience supporting F5 BIG-IP modules (minimum APM and ASM/WAF) and Infoblox DNS Security in production
• Solid understanding of TCP/IP, HTTP/S, SSL/TLS, DNS, and authentication protocols (SAML, OAuth)
• Experience with ServiceNow (or similar ITSM), basic shell/CLI troubleshooting, and log analysis tools
• Working knowledge of SAMA Cybersecurity Framework or NCA ECC controls for edge security
  
  

• F5 Certified Administrator (302) or F5 CTS (APM or ASM)
• Infoblox Certified DNS Administrator / Security Expert
• ITIL Foundation, CompTIA Security+, or equivalent security credential
• Scripting (Python/TCL/bash) for automation of routine tasks
• Familiarity with load-balancer traffic policies, iRules/LTM policies, and DNSSEC principles
  
  

• Full-time on-site role (Sunday–Thursday), 9×5 support with participation in an on-call rota for critical escalations
• Occasional evening or weekend work during planned maintenance windows
• Collaborative, fast-paced environment interfacing with network, application, SOC, and compliance teams
  
  

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology
• Industries IT Services and IT Consulting

Referrals increase your chances of interviewing at DXC Technology by 2x

Get notified about new Application Security Engineer jobs in Riyadh, Riyadh, Saudi Arabia .

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the L3 F5 Application Security Engineer (9x5 Support) role at DXC Consulting & Engineering Services

4 weeks ago Be among the first 25 applicants

Join to apply for the L3 F5 Application Security Engineer (9x5 Support) role at DXC Consulting & Engineering Services

Job Title:

L3 F5 Application Security Engineer (9x5 Support)

Job Description

Job Title:

L3 F5 Application Security Engineer (9x5 Support)

Key Responsibilities

• Technical Support & Incident Management:
• Provide expert-level 9x5 support for F5 Access Policy Manager, F5 Web Application Firewall, and Infoblox DNS Security environments.
• Serve as the L3 escalation point for critical incidents escalated from L1/L2 teams, ensuring timely and effective resolution.
• Perform root cause analysis on incidents, document findings, and recommend preventive measures.
• System Configuration & Maintenance:
• Configure, monitor, and maintain F5 security devices to optimize performance and security.
• Implement and manage policies, rules, and configurations for Access Policy Manager and Web Application Firewall.
• Apply patches, updates, and upgrades in accordance with best practices and organizational policies.
• DNS Security & Infoblox Management:
• Configure, monitor, and manage Infoblox DNS Security solutions to safeguard the DNS infrastructure.
• Implement and enforce DNS security policies, ensuring compliance with industry standards.
• Troubleshoot DNS security incidents and collaborate with network teams to ensure robust and secure DNS operations.
• Security & Compliance:
• Ensure adherence to security policies, industry standards, and compliance requirements across all managed platforms.
• Collaborate with security teams to conduct vulnerability assessments and security audits.
• Develop and enforce security best practices to mitigate risks and enhance the overall security posture.
• Collaboration & Documentation:
• Work closely with network, application, and infrastructure teams to troubleshoot and resolve cross-functional issues.
• Create and maintain detailed documentation on configurations, processes, and incident resolutions for F5 and Infoblox solutions.
• Provide training and knowledge transfer sessions to support teams to elevate overall operational competency.
  
  

• Bachelor’s degree in Computer Science, Information Technology, or a related field.
• Minimum of 5 years’ experience in network and application security, with a strong focus on F5 technologies and DNS security.
• Proven expertise in managing and troubleshooting F5 Access Policy Manager and F5 Web Application Firewall solutions.
• Experience with Infoblox DNS Security solutions and best practices.
• Solid understanding of networking protocols (TCP/IP, HTTP/HTTPS, DNS, etc.) and security protocols (SSL, TLS).
• Experience in incident response, system monitoring, and performance tuning within high-availability environments.
  
  

• Strong analytical, troubleshooting, and problem-solving skills.
• Excellent communication and interpersonal abilities to effectively collaborate with technical and non-technical stakeholders.
• Ability to work in a fast-paced, dynamic environment while managing multiple priorities.
• Relevant F5 certifications (e.g., F5 Certified Administrator, F5 Certified Technology Specialist) are highly desirable.
• Familiarity with Infoblox certifications or training, change management, ITIL processes, and documentation best practices.
  
  

• Provide 9x5 support, with the expectation of occasional on-call responsibilities.
• Work in a collaborative team environment, interacting with various IT and security teams.
• Maintain a high degree of flexibility to address evolving business needs and urgent security incidents.
  
  

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology
• Industries IT Services and IT Consulting

Referrals increase your chances of interviewing at DXC Consulting & Engineering Services by 2x

Get notified about new Application Security Engineer jobs in Riyadh, Riyadh, Saudi Arabia .

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Job Description:

Job Title:
L3 F5 Application Security Engineer (9x5 Support)

Key Responsibilities:

• Technical Support & Incident Management:

• Provide expert-level 9x5 support for F5 Access Policy Manager, F5 Web Application Firewall, and Infoblox DNS Security environments.

• Serve as the L3 escalation point for critical incidents escalated from L1/L2 teams, ensuring timely and effective resolution.

• Perform root cause analysis on incidents, document findings, and recommend preventive measures.

• System Configuration & Maintenance:

• Configure, monitor, and maintain F5 security devices to optimize performance and security.

• Implement and manage policies, rules, and configurations for Access Policy Manager and Web Application Firewall.

• Apply patches, updates, and upgrades in accordance with best practices and organizational policies.

• DNS Security & Infoblox Management:

• Configure, monitor, and manage Infoblox DNS Security solutions to safeguard the DNS infrastructure.

• Implement and enforce DNS security policies, ensuring compliance with industry standards.

• Troubleshoot DNS security incidents and collaborate with network teams to ensure robust and secure DNS operations.

• Security & Compliance:

• Ensure adherence to security policies, industry standards, and compliance requirements across all managed platforms.

• Collaborate with security teams to conduct vulnerability assessments and security audits.

• Develop and enforce security best practices to mitigate risks and enhance the overall security posture.

• Collaboration & Documentation:

• Work closely with network, application, and infrastructure teams to troubleshoot and resolve cross-functional issues.

• Create and maintain detailed documentation on configurations, processes, and incident resolutions for F5 and Infoblox solutions.

• Provide training and knowledge transfer sessions to support teams to elevate overall operational competency.

Required Qualifications:

• Bachelor’s degree in Computer Science , Information Technology, or a related field.

• Minimum of 5 years’ experience in network and application security, with a strong focus on F5 technologies and DNS security.

• Proven expertise in managing and troubleshooting F5 Access Policy Manager and F5 Web Application Firewall solutions.

• Experience with Infoblox DNS Security solutions and best practices.

• Solid understanding of networking protocols (TCP/IP, HTTP/HTTPS, DNS, etc.) and security protocols (SSL, TLS).

• Experience in incident response, system monitoring, and performance tuning within high-availability environments.

Desired Skills & Certifications:

• Strong analytical, troubleshooting, and problem-solving skills.

• Excellent communication and interpersonal abilities to effectively collaborate with technical and non-technical stakeholders.

• Ability to work in a fast-paced, dynamic environment while managing multiple priorities.

• Relevant F5 certifications (e.g., F5 Certified Administrator, F5 Certified Technology Specialist) are highly desirable.

• Familiarity with Infoblox certifications or training, change management, ITIL processes, and documentation best practices.

Working Conditions:

• Provide 9x5 support, with the expectation of occasional on-call responsibilities.

• Work in a collaborative team environment, interacting with various IT and security teams.

• Maintain a high degree of flexibility to address evolving business needs and urgent security incidents.

At DXC Technology, we believe strong connections and community are key to our success. Our work model prioritizes in-person collaboration while offering flexibility to support wellbeing, productivity, individual work styles, and life circumstances. We’re committed to fostering an inclusive environment where everyone can thrive.

Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf.More information on employment scams is availablehere .

L2 F5 Application Security Engineer – Edge Protection page is loadedL2 F5 Application Security Engineer – Edge Protection Apply locations SAU - RIYADH time type Full time posted on Posted 4 Days Ago job requisition id 51552176

Job Description:

Job Summary:
The L2 F5 Application Security Engineer provides day-to-day operational support, monitoring, and maintenance for the full Edge Protection tool-set mandated by SAMA: F5 BIG-IP (Access Policy Manager, Web Application Firewall, Local & Global Traffic Manager) and Infoblox DNS Security (MANDATORY). The role ensures high availability, policy compliance, and prompt incident response for all edge-security platforms, escalating complex issues to the L3 F5 team. Success is measured by swift ticket resolution, precise change execution, and strict adherence to SAMA/NCA controls.

Key Responsibilities:

Operational Support & Monitoring

• Continuously monitor F5 APM, ASM/WAF, LTM, GTM and Infoblox DNS grids for health, performance, and security events.
• Respond to alerts and service-desk tickets within SLA; perform first-pass diagnosis and fix routine issues.

Configuration & Maintenance

• Implement approved configuration changes: access policies, iRules, WAF policies, DNS RPZ rules, IPAM updates, and GTM load-balancing pools.
• Apply software patches, hot-fixes, and signature updates under change-management guidelines.

Incident Handling & Escalation

• Investigate connectivity, authentication, or DNS anomalies; capture logs, packet traces, and ASM violation details.
• Escalate unresolved or systemic issues to the L3 engineer with clear documentation of findings and attempted fixes.

Compliance & Reporting

• Generate daily/weekly health-check reports and edge-security KPI dashboards aligned to SAMA CSF IAM-01 / NET-02 requirements.
• Ensure all changes, incidents, and maintenance tasks are fully documented in ServiceNow.

Collaboration & Knowledge Transfer

• Coordinate with network, application, and SOC teams during deployments or incident bridges.
• Maintain and improve runbooks, SOPs, and knowledge-base articles; deliver informal training sessions to L1 analysts.

Required Qualifications:

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity or related field.
• 3–5 years hands-on experience supporting F5 BIG-IP modules (minimum APM and ASM/WAF) and Infoblox DNS Security in production.
• Solid understanding of TCP/IP, HTTP/S, SSL/TLS, DNS, and authentication protocols (SAML, OAuth).
• Experience with ServiceNow (or similar ITSM), basic shell/CLI troubleshooting, and log analysis tools.
• Working knowledge of SAMA Cybersecurity Framework or NCA ECC controls for edge security.

Desired Skills & Certifications:

• F5 Certified Administrator (302) or F5 CTS (APM or ASM).
• Infoblox Certified DNS Administrator / Security Expert.
• ITIL Foundation, CompTIA Security+, or equivalent security credential.
• Scripting (Python/TCL/bash) for automation of routine tasks.
• Familiarity with load-balancer traffic policies, iRules/LTM policies, and DNSSEC principles.

Working Conditions:

• Full-time on-site role (Sunday–Thursday), 9×5 support with participation in an on-call rota for critical escalations.
• Occasional evening or weekend work during planned maintenance windows.
• Collaborative, fast-paced environment interfacing with network, application, SOC, and compliance teams.

Must be eligible to work in Saudi Arabia and pass SAMA background checks.

At DXC Technology, we believe strong connections and community are key to our success. Our work model prioritizes in-person collaboration while offering flexibility to support wellbeing, productivity, individual work styles, and life circumstances. We’re committed to fostering an inclusive environment where everyone can thrive.

Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf.More information on employment scams is available here .

DXC Technology (NYSE: DXC) helps global companies run their mission-critical systems and operations while modernizing IT, optimizing data architectures, and ensuring security and scalability across public, private and hybrid clouds. The world's largest companies and public sector organizations trust DXC to deploy services to drive new levels of performance, competitiveness, and customer experience across their IT estates. Learn more about how we deliver excellence for our customers and colleagues atDXC.com .

Job Description:

Job Title:
L3 F5 Application Security Engineer (9x5 Support)

Key Responsibilities:

• Technical Support & Incident Management:

• Provide expert-level 9x5 support for F5 Access Policy Manager, F5 Web Application Firewall, and Infoblox DNS Security environments.

• Serve as the L3 escalation point for critical incidents escalated from L1/L2 teams, ensuring timely and effective resolution.

• Perform root cause analysis on incidents, document findings, and recommend preventive measures.

• System Configuration & Maintenance:

• Configure, monitor, and maintain F5 security devices to optimize performance and security.

• Implement and manage policies, rules, and configurations for Access Policy Manager and Web Application Firewall.

• Apply patches, updates, and upgrades in accordance with best practices and organizational policies.

• DNS Security & Infoblox Management:

• Configure, monitor, and manage Infoblox DNS Security solutions to safeguard the DNS infrastructure.

• Implement and enforce DNS security policies, ensuring compliance with industry standards.

• Troubleshoot DNS security incidents and collaborate with network teams to ensure robust and secure DNS operations.

• Security & Compliance:

• Ensure adherence to security policies, industry standards, and compliance requirements across all managed platforms.

• Collaborate with security teams to conduct vulnerability assessments and security audits.

• Develop and enforce security best practices to mitigate risks and enhance the overall security posture.

• Collaboration & Documentation:

• Work closely with network, application, and infrastructure teams to troubleshoot and resolve cross-functional issues.

• Create and maintain detailed documentation on configurations, processes, and incident resolutions for F5 and Infoblox solutions.

• Provide training and knowledge transfer sessions to support teams to elevate overall operational competency.

Required Qualifications:

• Bachelor’s degree in Computer Science , Information Technology, or a related field.

• Minimum of 5 years’ experience in network and application security, with a strong focus on F5 technologies and DNS security.

• Proven expertise in managing and troubleshooting F5 Access Policy Manager and F5 Web Application Firewall solutions.

• Experience with Infoblox DNS Security solutions and best practices.

• Solid understanding of networking protocols (TCP/IP, DNS, etc.) and security protocols (SSL, TLS).

• Experience in incident response, system monitoring, and performance tuning within high-availability environments.

Desired Skills & Certifications:

• Strong analytical, troubleshooting, and problem-solving skills.

• Excellent communication and interpersonal abilities to effectively collaborate with technical and non-technical stakeholders.

• Ability to work in a fast-paced, dynamic environment while managing multiple priorities.

• Relevant F5 certifications (e.g., F5 Certified Administrator, F5 Certified Technology Specialist) are highly desirable.

• Familiarity with Infoblox certifications or training, change management, ITIL processes, and documentation best practices.

Working Conditions:

• Provide 9x5 support, with the expectation of occasional on-call responsibilities.

• Work in a collaborative team environment, interacting with various IT and security teams.

• Maintain a high degree of flexibility to address evolving business needs and urgent security incidents.

At DXC Technology, we believe strong connections and community are key to our success. Our work model prioritizes in-person collaboration while offering flexibility to support wellbeing, productivity, individual work styles, and life circumstances. We’re committed to fostering an inclusive environment where everyone can thrive.

Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf.More information on employment scams is available here .

L2 F5 Application Security Engineer – Edge Protection page is loaded L2 F5 Application Security Engineer – Edge Protection Apply locations SAU - RIYADH time type Full time posted on Posted 4 Days Ago job requisition id 51552176

Job Description:

Job Summary:
The L2 F5 Application Security Engineer provides day-to-day operational support, monitoring, and maintenance for the full Edge Protection tool-set mandated by SAMA: F5 BIG-IP (Access Policy Manager, Web Application Firewall, Local & Global Traffic Manager) and Infoblox DNS Security (MANDATORY). The role ensures high availability, policy compliance, and prompt incident response for all edge-security platforms, escalating complex issues to the L3 F5 team. Success is measured by swift ticket resolution, precise change execution, and strict adherence to SAMA/NCA controls.

Key Responsibilities:

Operational Support & Monitoring

• Continuously monitor F5 APM, ASM/WAF, LTM, GTM and Infoblox DNS grids for health, performance, and security events.
• Respond to alerts and service-desk tickets within SLA; perform first-pass diagnosis and fix routine issues.

Configuration & Maintenance

• Implement approved configuration changes: access policies, iRules, WAF policies, DNS RPZ rules, IPAM updates, and GTM load-balancing pools.
• Apply software patches, hot-fixes, and signature updates under change-management guidelines.

Incident Handling & Escalation

• Investigate connectivity, authentication, or DNS anomalies; capture logs, packet traces, and ASM violation details.
• Escalate unresolved or systemic issues to the L3 engineer with clear documentation of findings and attempted fixes.

Compliance & Reporting

• Generate daily/weekly health-check reports and edge-security KPI dashboards aligned to SAMA CSF IAM-01 / NET-02 requirements.
• Ensure all changes, incidents, and maintenance tasks are fully documented in ServiceNow.

Collaboration & Knowledge Transfer

• Coordinate with network, application, and SOC teams during deployments or incident bridges.
• Maintain and improve runbooks, SOPs, and knowledge-base articles; deliver informal training sessions to L1 analysts.

Required Qualifications:

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity or related field.
• 3–5 years hands-on experience supporting F5 BIG-IP modules (minimum APM and ASM/WAF) and Infoblox DNS Security in production.
• Solid understanding of TCP/IP, SSL/TLS, DNS, and authentication protocols (SAML, OAuth).
• Experience with ServiceNow (or similar ITSM), basic shell/CLI troubleshooting, and log analysis tools.
• Working knowledge of SAMA Cybersecurity Framework or NCA ECC controls for edge security.

Desired Skills & Certifications:

• F5 Certified Administrator (302) or F5 CTS (APM or ASM).
• Infoblox Certified DNS Administrator / Security Expert.
• ITIL Foundation, CompTIA Security+, or equivalent security credential.
• Scripting (Python/TCL/bash) for automation of routine tasks.
• Familiarity with load-balancer traffic policies, iRules/LTM policies, and DNSSEC principles.

Working Conditions:

• Full-time on-site role (Sunday–Thursday), 9×5 support with participation in an on-call rota for critical escalations.
• Occasional evening or weekend work during planned maintenance windows.
• Collaborative, fast-paced environment interfacing with network, application, SOC, and compliance teams.

Must be eligible to work in Saudi Arabia and pass SAMA background checks.

At DXC Technology, we believe strong connections and community are key to our success. Our work model prioritizes in-person collaboration while offering flexibility to support wellbeing, productivity, individual work styles, and life circumstances. We’re committed to fostering an inclusive environment where everyone can thrive.

Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf.More information on employment scams is available here .

DXC Technology (NYSE: DXC) helps global companies run their mission-critical systems and operations while modernizing IT, optimizing data architectures, and ensuring security and scalability across public, private and hybrid clouds. The world's largest companies and public sector organizations trust DXC to deploy services to drive new levels of performance, competitiveness, and customer experience across their IT estates. Learn more about how we deliver excellence for our customers and colleagues atDXC.com .

Get AI-powered advice on this job and more exclusive features.

Direct message the job poster from 83zero

Languages: Fluent in Arabic & English

83zero is proud to be partnered with a global cybersecurity powerhouse, known for delivering cutting-edge cloud security solutions to enterprise clients worldwide. We’re currently supporting them in sourcing a Prisma Cloud Resident Engineer for a key financial services customer based in Riyadh.

This is a 12-month fixed-term contract offering full-time, onsite delivery—an opportunity to work at the heart of a high-profile security programme, supporting a business-critical cloud transformation.

About the Role:

This is a hands-on role focused on Prisma Cloud Compute Edition (Twistlock) . You’ll be embedded onsite with the customer, helping them manage and optimise their cloud-native security posture across OpenShift environments and CI/CD pipelines .

You’ll be the dedicated Prisma Cloud expert on the ground, working shoulder to shoulder with engineering and security teams to drive best practice, automation, and compliance across the entire development lifecycle.

Key Responsibilities:

• Act as the onsite subject matter expert for Prisma Cloud Compute (Twistlock).
• Conduct regular platform health checks and provide operational support.
• Automate security practices within CI/CD workflows—covering code, IaC, and container images.
• Guide and triage runtime alerts while enhancing detection and response mechanisms.
• Recommend improvements based on best practices and latest product features.
• Collaborate with internal and vendor teams to ensure seamless delivery and adoption.

Required Skills & Experience:

• Proven hands-on experience with Prisma Cloud Compute Edition (Twistlock) .
• Strong background in OpenShift , container security , and CI/CD pipeline integration .
• Skilled in automating cloud security workflows and securing IaC and container workloads.
• Strong communication and stakeholder management skills.
• Fluent in Arabic and English .
• Must be based in or willing to relocate to Riyadh, Saudi Arabia , and work 100% onsite.

This is a high-priority engagement with a fast-moving process. If you're an experienced cloud security professional looking for a new challenge in a dynamic environment, we’d love to speak with you.

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology
• Industries Information Services, Technology, Information and Media, and IT Services and IT Consulting

Referrals increase your chances of interviewing at 83zero by 2x

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Dammam, Saudi Arabia | Posted on 08/31/2024

Company: Cyber Space LLC

Position Summary: We are seeking a highly skilled Cyber Security Engineer specializing in Governance, Risk, and Compliance (GRC) to join our team in Dammam, Saudi Arabia. The ideal candidate will have a solid foundation in cybersecurity principles and a strong understanding of regional compliance requirements, including SAMA, NCA, and CCC. This role demands a proactive individual who is fluent in English and possesses a minimum of a Bachelor's degree in a related field.

Key Responsibilities:

1. Develop, implement, and maintain GRC frameworks in alignment with the company’s cybersecurity strategy.
   
2. Ensure compliance with local regulations, including SAMA, NCA, and CCC standards.
   
3. Conduct risk assessments and develop mitigation strategies to minimize potential security risks.
   
4. Collaborate with cross-functional teams to ensure that all cybersecurity policies and procedures are adhered to.
   
5. Monitor and report on compliance status and security metrics to senior management.
   
6. Provide guidance on best practices in cybersecurity governance, risk management, and compliance.
   
7. Lead and participate in internal and external audits, ensuring all security measures are up-to-date and compliant.
   
8. Stay informed about the latest cybersecurity threats, trends, and technologies to enhance the company’s GRC capabilities.
   

Qualifications:

1. Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field.
   
2. Minimum of 3-5 years of experience in a cybersecurity role, with a focus on GRC.
   
3. In-depth knowledge of SAMA, NCA, and CCC compliance standards and requirements.
   
4. Fluent in English, with strong verbal and written communication skills.
   
5. Proven ability to work independently and as part of a team.
   
6. Strong analytical and problem-solving skills.
   
7. Relevant certifications such as CISSP, CISM, or CRISC are a plus.
   

Overview

GovCIO is currently hiring for a Cyber Security Engineer. This position will be located in Saudi Arabia and will be an onsite position.

Responsibilities

Correlates threat data from various sources to establish the identity and modus operandi of hackers active in client's networks and posing a potential threat. Provides the customer with assessments and reports facilitating situational awareness and understanding of current cyber threats and adversaries. Develops cyber threat profiles based on geographic region, country, group, or individual actors. Produces cyber threat assessments based on entity threat analysis. May provide computer forensic and intrusion support to high technology investigations in the form of computer evidence seizure, computer forensic analysis, data recovery, and network assessments. Researches and maintains proficiency in tools, techniques, countermeasures, and trends in computer network vulnerabilities, data hiding and network security and encryption.

• Collaborates with intrusion analysts to identify, report on, and coordinate remediation of cyber threats to the client.

• Provides timely and actionable sanitized intelligence to cyber incident response professionals.

• Leverages technical knowledge of computer systems and networks with cyber threat information to assess the client's security posture.

• Conducts intelligence analysis to assess intrusion signatures, tactics, techniques and procedures associated with preparation for and execution of cyber attacks.

• Researches hackers, hacker techniques, vulnerabilities, exploits, and provides detailed briefings and intelligence reports to leadership.

Qualifications

Bachelor's with 5 - 8 years (or commensurate experience)

Required Skills and Experience

• Clearance Required: Secret

• Bachelors Degree in Technical field

• Three+ (3) years experience working as an Information Systems Security Engineer (ISSE); or Information Systems Security Manager (ISSM); or Fully Qualified Validator (FQV); or Network Security Engineer supporting C4I systems

• Experience assisting Partner Nations (PN), Service Components, and other stakeholders with assessing a PN system or network utilizing the Risk Management Framework (RMF)

• Experience guiding a PN through the RMF process as required by the JS J6 Foreign Partner Connection Guide

• Experience working OCONUS in security cooperation efforts or for foreign customers (i.e., not for US military bases or USG facilities

*PENDING CONTRACT AWARD *

Preferred Skills and Experience:

• Three+ (3) years experience with NAVWAR prime mission products.

• Experience interacting with USG and foreign senior military/government officials.

• Completion of DISAM SCM courses such as SCM-C.

• DISAM International Affairs Certification Level 1 or above.

• IAM Level III Certification (CISSP).

• Experience working in austere locations (e.g., Middle Eastern nations) in security cooperation/assistance efforts or for foreign customers (i.e., not for US military bases or USG facilities).

• Experience working with other Program Offices to ensure that Program of Record (PoR) andnon-PoR solutions meet FMS Cybersecurity requirements.

• Experience providing Subject Matter Expertise identifying Cybersecurity solutions to meet PN requirements

• Experience assisting a PN with developing RMF artifacts such as the Security Categorization Form (SCF), Security Controls Selection Form (SCCF), Security Assessment Report (SAR), Security

Company Overview

GovCIO is a team of transformers--people who are passionate about transforming government IT. Every day, we make a positive impact by delivering innovative IT services and solutions that improve how government agencies operate and serve our citizens.

But we can't do it alone. We need great people to help us do great things - for our customers, our culture, and our ability to attract other great people. We are changing the face of government IT and building a workforce that fuels this mission. Are you ready to be a transformer?

What You Can Expect

Interview & Hiring Process

If you are selected to move forward through the process, here’s what you canexpect:

• During the Interview Process

• Virtual video interview conducted via video with the hiring manager and/or team

• Camera must be on

• A valid photo ID must be presented during each interview

• During the Hiring Process

• Enhanced Biometrics ID verification screening

• Background check, to include:

• Criminal history (past 7 years)

• Verification of your highest level of education

• Verification of your employment history (past 7 years), based on information provided in your application

Employee Perks

At GovCIO, we consistently hear that meaningful work and a collaborative team environment are two of the top reasons our employees enjoy working here. In addition, our employees have access to a range of perks and benefits to support their personal and professional well-being, beyond the standard company offered health benefits, including:

• Employee Assistance Program (EAP)

• Corporate Discounts

• Learning & Development platform, to include certification preparation content

• Training, Education and Certification Assistance*

• Referral Bonus Program

• Internal Mobility Program

• Pet Insurance

• Flexible Work Environment

*Available to full-time employees

Our employees’ unique talents and contributions are the driving force behind our success in supporting our customers, which ultimately fuels the success of our company. Join us and be a part of a culture that invests in its people and prioritizes continuous enhancement of the employee experience.

We are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, disability, or status as a protected veteran. EOE, including disability/vets.

Posted Pay Range

The posted pay range, if referenced, reflects the range expected for this position at the commencement of employment, however, base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, education, experience, and internal equity. The total compensation package for this position may also include other compensation elements, to be discussed during the hiring process. If hired, employee will be in an “at-will position” and the GovCIO reserves the right to modify base salary (as well as any other discretionary payment or compensation program) at any time, including for reasons related to individual performance, GovCIO or individual department/team performance, and market factors.

Posted Salary Range

USD $85,000.00 - USD $130,000.00 /Yr.

Submit a referral to this job (

Location SA-Riyadh

ID 2025-6097

Category Cyber Security & Intelligence

Position Type Full-Time