×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Security Manager

Security Operations Center; SOC Engineer

Job in Riyadh, Riyadh Region, Saudi Arabia
Listing for: Estarta Solutions
Full Time position
Listed on 2026-06-06
Job specializations:
  • IT/Tech
    Cybersecurity, Security Manager
Salary/Wage Range or Industry Benchmark: 200000 - 300000 SAR Yearly SAR 200000.00 300000.00 YEAR
Job Description & How to Apply Below
Position: Security Operations Center (SOC) Engineer

Applicants from Saudi Arabia and outside Saudi Arabia are welcome to apply. Relocation support will be provided for selected candidates who are based outside the Kingdom.

About the Role:

Estarta is looking for an experienced and highly motivated Security Operations Center (SOC) Engineer to join our cybersecurity team in Riyadh, Saudi Arabia. This role is ideal for a security professional who is passionate about cyber defense, threat detection, incident response, and security automation.

As a SOC Engineer, you will play a key role in strengthening and enhancing security operations by designing, implementing, and managing advanced security monitoring and response solutions. You will work closely with cybersecurity teams, IT operations, and stakeholders to detect, investigate, and respond to cyber threats while continuously improving security visibility, automation capabilities, and operational effectiveness.

The successful candidate will possess strong hands‑on experience with SIEM, SOAR, and EDR technologies, along with a deep understanding of security operations, threat intelligence, incident response, and modern cyber defense strategies.

Key Responsibilities Security Monitoring & Threat Detection:
  • Design, deploy, configure, and maintain Security Information and Event Management (SIEM) platforms to provide comprehensive visibility across enterprise environments.
  • Develop, tune, and optimize security use cases, correlation rules, alerts, and dashboards to improve threat detection capabilities and minimize false positives.
  • Analyze security events and logs from multiple sources to identify malicious activities, suspicious behavior, and potential security incidents.
  • Ensure continuous monitoring coverage across networks, endpoints, applications, cloud services, and security infrastructure.
Security Automation & Orchestration:
  • Design, develop, and maintain Security Orchestration, Automation, and Response (SOAR) playbooks and workflows.
  • Automate repetitive security tasks to improve SOC efficiency, accelerate incident response, and reduce manual effort.
  • Integrate SOAR platforms with security technologies, ticketing systems, threat intelligence feeds, and operational tools.
  • Continuously improve automation capabilities to enhance response times and operational effectiveness.
Endpoint Security & Incident Response:
  • Monitor, investigate, and respond to alerts generated by Endpoint Detection and Response (EDR) platforms.
  • Perform detailed incident analysis, root‑cause investigations, and forensic reviews when required.
  • Support containment, eradication, and recovery activities during security incidents.
  • Collaborate with cross‑functional teams to ensure timely resolution of security threats and vulnerabilities.
Threat Hunting & Security Analysis:
  • Conduct proactive threat hunting activities to identify advanced threats that may evade traditional detection mechanisms.
  • Utilize threat intelligence, Indicators of Compromise (IOCs), behavioral analytics, and MITRE ATT&CK techniques to identify malicious activity.
  • Analyze emerging threats, attack techniques, vulnerabilities, and industry trends to improve detection coverage and response readiness.
  • Recommend and implement enhancements to strengthen the organization's overall security posture.
  • Develop and maintain operational documentation, including security procedures, playbooks, detection logic, incident response processes, and technical guides.
  • Contribute to SOC maturity initiatives and continuous improvement programs.
  • Participate in security reviews, assessments, and optimization projects.
  • Provide knowledge sharing and technical guidance to other team members when needed.
Required Qualifications:
  • Bachelor's degree in Cybersecurity, Computer Science, Information Security, Information Technology, or a related field.
  • Minimum of 5 years of hands‑on experience in Security Operations Centers (SOC), cybersecurity operations, security engineering, or incident response environments.
  • Strong practical experience with SIEM platforms such as:
  • FortiSIEM
  • Splunk
  • IBM QRadar
  • Proven hands‑on experience with SOAR technologies, including:
  • FortiSOAR
  • Cortex XSOAR
  • Tines
  • Strong experience working with EDR solutions such as:
  • F…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search