Application Security - L2​/L3

Advanced technology and cybersecurity company (sirar) established by stc, the region’s ICT and digital services provider, sirar by stc is a cutting‑edge cybersecurity provider that empowers organization to take control of their cyber capabilities and digital environments. As experts in business security and privacy. We offer a comprehensive range of solutions that help you to operate online safely, securely, and efficiently.

• Handles the application security systems as a subject matter expert.
• Provides incident report (IR) for Critical and Emergency issues.
• Handling the escalated tickets & incidents.
• Ensuring the systems health and availability.
• Preparing the needed documentation/ procedures/ policies.
• Providing knowledge awareness and transfers sessions.
• Following the best-practice and providing systems fine tuning, optimization and gaps analysis.
• Ensuring and maintaining the MBSS for the management systems.
• Following up the emerging threats, vulnerabilities and security risks to be addressed.
• Keeping the OS and signatures up-to-date.
• Handling new handovers of the systems/services.
• Performing regular clean-up and access review.
• Prepare reports that meet the customer requirements, policies and standards.
• Responding to the technical questions or concerns from the other teams.
• Preventive maintenance, system integrations.
• Execute regular disaster recovery drills to ensure preparedness and resilience against potential incidents.
• Escalating the complex issues and software bugs to the vendor’s technical support.
• Contribute to the overall success of the company by performing all other duties and responsibilities as assigned by line manager.

• Bachelor’s degree in Cybersecurity, Computer Science/Engineering, Information Technology, or related discipline.

• Industry recognized security certifications such as CCNP Security, CCIE, CISSP or equivalent related certifications are preferred.
• Technology/Vendor based certifications are preferred.
• Operating systems certifications such as MCSE and RHCSA is preferred.

• 3 - 7 years in relevant experience.

• Strong endpoint security and hands on experience (DLP, AV, DAM, EDR/NDR and XDR).
• Strong web and email security understanding and experience.
• Operating System administrations (Microsoft Operating System family, Linux and UNIX).
• Network advance troubleshooting experience (Routing, DNS and TCP/IP protocols).
• Programing and database basics and concepts.
• APT, sandboxing, SSLV offloading and PKI fundamentals and concepts.
• ITIL fundamentals, Problem, Incident, Change and Release Management.
• Virtualization and Storage Solid understanding.
• SIEM administration.
• Comprehensive understanding of information security policies and best practices in identity management.
• Advanced troubleshooting and diagnostic skills to efficiently resolve complex issues.
• Excellent communication, reporting and time management skills.