الوصف الوظيفي
Security Events Monitoring & Analysis:
Collect and correlate data and logs to central systems such as SIEM platform for security review and analysis.
Review and monitor generated security alerts and conduct initial analysis and perform triage to validate and escalate as appropriate.
Define threat scenarios to monitor and develop alerts to detect malicious behavior or anomalies.
Establish security incident KPIs and dashboard.
Develop and report metrics for the overall information security situation (e.g., number of targeted attacks/attempts).
Track and control all of cybersecurity incidents until closing and handing over ticket to the Cybersecurity Investigation Coordinator for root cause analysis.
Budget:
Participate in the department’s annual budgeting cycle and process.
Contribute to utilizing the department’s budget effectively, and accurately report on progress made and challenges encountered.
Investigate and propose implementing strategies that result in positive financial impact for SANS and mitigate financial and operational risks.
Cyber Incident Management:
Gather information and conduct in-depth analysis to understand the full context of an alert.
Investigate, coordinate and execute relevant tasks in response to cybersecurity incidents.
Ensure containment and remediation for security incident to reduce the risk to SANS.
Perform forensic analysis to identify the perpetrators of a malicious act, collect evidence, create a timeline of the security incident, and preserve the audit trail for the possibility of legal proceedings in the future.
Perform root cause analysis report and lesson learned for major cybersecurity incidents.
Threat Intelligence & Vulnerability Management:
Manage & administrate security scanners & ensure effective controls are in place to detect vulnerabilities across SANS infrastructure, services and applications.
Discover vulnerabilities and ensure mitigation actions are implemented in the defined time schedule.
Create detailed technical reports about vulnerability scanning and hands findings over to the resolver teams; responds to technical queries related to the reports and findings.
Develop and lead cyber threat intelligence efforts to identify and analyze long-term and short-term cyber threat actor groups, techniques and tactics.
Perform threat hunting to discover anomalies behavior in SANS’ network.
Ensure deployment of a robust threat intelligence system that allows for effective information exchange and cooperation with national and international organization related to cyber threats.
Policies, Processes and Procedures:
Propose improvements to Cybersecurity department’s policies, and ensure the implementation of procedures and controls across all areas of activity so that all relevant procedural/legislative requirements are fulfilled while delivering high quality and cost-effective results.
Monitor day-to-day activities to ensure compliance with stipulated policies and procedures.
Stimulate subordinates and contribute to the identification of opportunities for continuous improvement of systems and processes taking into account leading practices, changes in business environment, cost reduction and productivity improvement.
People Management :
Manage, guide and assist direct reports to perform their functional operations in accordance with set policies and procedures.
Participate in identifying and recruiting key talent for the department.
Promote a high-performance working environment embracing SANS’s values.
المهارات
Operational Excellence
Safety Awareness
Teamwork
Business Acumen
Communication
Strategic Thinking
Visionary Leadership
Cyber Intelligence and vulnerability Management
Security Event and Information Management (SIEM)
Cyber Incident Management
Knowledge and Experience:
• 9-12 years of experience in cyber security, with at least 6 years of experience in a managerial position
Education:
A bachelor’s degree in Computer Science, IT or equivalent is required.
CISSP and GCIH certification is preferred.
تفاصيل الوظيفة
منطقة الوظيفة جدة, المملكة العربية السعودية
قطاع الشركة --
طبيعة عمل الشركة صاحب عمل (القطاع الخاص)
الدور الوظيفي تكنولوجيا المعلومات
نوع التوظيف دوام كامل
الراتب الشهري غير محدد
عدد الوظائف الشاغرة 1
المرشح المفضل
المستوى المهني إدارة
عدد سنوات الخبرة الحد الأدنى: 9
الشهادة بكالوريوس/ دبلوم عالي
https://www.bayt.com/ar/saudi-arabia/jobs/cybersecurity-defense-center-manager-4280088/
نسخة للطباعة 
ابلغ عن اعلان مخالف