Senior Risk management engineer
Job Description
The Senior technical risk management engineer will act as a Technical SME for Risk management team members. And will be responsible of reduction of the overall security vulnerabilities and risks of the on-boarded entities by supervising, guiding, , analyzing, reporting and driving the mitigation actions of security vulnerabilities within the network, endpoint, and infrastructures of the entity in a consistent and expeditious manner. By minimizing the internal and external IT security risks, vulnerability management helps defend against proprietary and entity data loss and reduces the ability for threat actors to carry out malicious activities against the on- boarded entity information systems.
Responsibilities
Desired Candidate Profile
General experience and knowledge: • Technical degree in Computer Science • Technical certification in System security • Technical certification in Network security • Technical Certification in Risk management • Minimum 8 Years experience technical experience in systems and networks • Minimum 5 Years’ Experience in Risk management role Essential experience: • Excellent understanding of Risk and vulnerability management Lifecycle • Solid knowledge in System and network hardening • Solid knowledge in System and network security best practices Essential skills: • Hands on experience in leading the activities of remediating Vulnerability management for Systems and Networks • Hands on experience with Systems Windows and Linux systems hardening • Hands on experience with Network hardening and security best practices • Good knowledge of common operating systems (e.g. Windows, Linux and Unix) • Excellent oral and written communication in English (with Arabic an advantage) Certificate Master's degree Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) Microsoft Certified Solutions Expert (MCSE) Cloud Platform and Infrastructure SANS GIAC Security Essentials (GSEC Additional Key responsibilities; Should be able to handle tasks/activities in every stage of the cyber threat intelligence lifecycle. • Provide expert guidance on cyber threat intelligence tools, technologies, and methodologies. • Write CTI reports for various stakeholders. • Mentor and train junior analysts in cyber threat intelligence best practices and use cases. Skills / Qualifications • Minimum 5 years' experience in cyber threat intelligence operations. Should have more than 10 years' experience in cyber security. • SANS GCTI highly desirable. • Should have skills/prior experience in other cyber security domains such as penetration testing, SOC, incident response. • Expert level proficiency in threat intelligence platforms and tools. • Excellent analytical, problem-solving, and communication skills.