- Security Architecture & Implementation: Design, deploy, and manage security tools including firewalls (e.g., Palo Alto, Fortinet), intrusion detection/prevention systems (IDS/IPS), SIEM, endpoint protection, and vulnerability management solutions.
- · Network & System Security: Harden network devices, servers (Windows/Linux), and workstations. Implement and maintain secure configurations and access controls.
- · Vulnerability Management: Conduct regular security assessments, penetration tests, and vulnerability scans. Analyze results and prioritize remediation efforts with IT operations teams.
- · Incident Response: Serve as a key member of the incident response team. Investigate security alerts, contain threats, and lead eradication and recovery efforts. Develop and maintain incident response plans.
- · Security Monitoring: Continuously monitor security systems and logs for anomalous activity and potential indicators of compromise.
- · Policy & Compliance: Develop and enforce IT security policies, procedures, and standards. Ensure technical compliance with healthcare data protection regulations and assist in internal and external audits.
- · Security Awareness: Collaborate with the IT team and business units to promote a culture of security awareness through training and guidance.
· Bachelor’s degree in Computer Science, Information Security, or a related field.· 3-5 years of proven experience in a cybersecurity engineering or analyst role.· Relevant technical certifications are mandatory. (e.g., CISSP, CISM, CompTIA Security+, CEH, GSEC, or vendor-specific certifications like CCNA Security, PCNSE).· Hands-on experience with: · Firewalls, VPNs, and network security concepts. · SIEM platforms (e.g., Splunk, ArcSight, QRadar). · Endpoint Detection and Response (EDR) tools. · Vulnerability scanning tools (e.g., Nessus, Qualys). · Operating Systems: Windows Server, Linux.· Strong understanding of networking protocols (TCP/IP, DNS, DHCP, HTTP/S) and cloud security (Azure/AWS is a plus).· Familiarity with healthcare information security standards and data privacy laws is a significant advantage.· Excellent problem-solving and analytical skills.· Fluency in English and Arabic.