Cybersecurity Specialist

The Job Summary

The Cybersecurity Specialist is responsible for establishing and operating the core hands‑on cybersecurity controls for Petromin. As one of the first dedicated cybersecurity hires, the role covers security monitoring, identity and access controls, endpoint, email, network and cloud security, vulnerability management, incident response, awareness, documentation and compliance support. The role is expected to use approved AI and automation tools responsibly to handle more work in less time, improve reporting, accelerate triage and reduce repetitive manual effort while protecting confidential data.

• Establish, operate and continuously improve day‑to‑day cybersecurity controls across Petromin systems, users, branches and digital platforms.
• Monitor security alerts from Microsoft 365 / Entra, endpoint protection, firewalls, email security, SIEM / MSSP tools and other sources; investigate and escalate promptly.
• Administer core controls including MFA, privileged access, endpoint protection, email / web security, secure configuration baselines and periodic access reviews.
• Perform vulnerability scanning, patch validation, configuration hardening and risk‑based remediation tracking with IT infrastructure and application teams.
• Support incident response by triaging alerts, collecting evidence, containing threats, coordinating recovery, documenting root cause and improving playbooks.
• Build and maintain practical security policies, standards, SOPs, asset / control inventories, exception logs and security dashboards.
• Conduct phishing awareness, security training and user guidance in coordination with HR, IT and business units.
• Review new systems, cloud services, integrations and vendor solutions for cybersecurity risks before deployment.
• Use approved AI and automation tools responsibly to accelerate alert triage, threat research, reporting, policy drafting, scripting and repetitive security tasks without exposing confidential data.
• Support audits, compliance evidence, risk assessments, third‑party security reviews, backup / DR testing and management reporting.

Bachelor's degree in Cybersecurity, Information Technology, Computer Science, Engineering or equivalent practical experience.

Security+, CySA+, CEH, SC-200, AZ-500, CCNA Security or ISO 27001 Foundation preferred. Microsoft security certifications are a plus.

1-5 years in cybersecurity, IT security, SOC, infrastructure security or a similar hands‑on technical security role. Experience in a lean environment is preferred.

• Hands‑on knowledge of Microsoft 365 / Entra , MFA, IAM, EDR / antivirus, firewalls, VPN, email security and vulnerability tools.
• Ability to investigate alerts, document evidence and coordinate incident containment and recovery.
• Practical understanding of secure configuration, patching, backups, DR testing and third‑party security reviews.
• Ability to use approved AI, scripts, Power Shell / Python or no‑code automation to improve productivity.
• Strong documentation, follow‑up, communication and confidentiality discipline.

English:
Professional

Arabic:
Preferred