General Profile

General Profile:
Strong leadership skills with the ability to manage and guide a cybersecurity team.
Deep understanding of cybersecurity operations, compliance frameworks, and risk management.
Ability to analyze security threats, assess vulnerabilities, and coordinate response activities.
Strong problem-solving skills and decision-making capabilities.
Effective communication skills to interact with both technical and non-technical stakeholders.
Knowledge of cybersecurity tools such as SIEM, firewalls, IDS/IPS, threat intelligence platforms, and digital forensics tools.

Job Description

Key Responsibilities:

• Supervise and lead a team responsible for cybersecurity operations, incident response, and risk mitigation.
• Monitor security systems and ensure the timely investigation and resolution of security threats.
• Ensure compliance with cybersecurity policies, frameworks, and industry best practices.
• Provide guidance on security threat analysis, vulnerability management, and mitigation strategies.
• Collaborate with internal departments to improve security posture and enforce security controls.
• Train and mentor cybersecurity staff, ensuring continuous improvement in skills and knowledge.
• Assist in cybersecurity audits, assessments, and penetration testing efforts.
• Support the implementation of governance, risk, and compliance (GRC) activities related to cybersecurity.
• Sets priorities for the team to ensure task completion; coordinates work activities with other supervisors, with the rest of IT department and also with other affiliates and subsidiaries.

Functional Specific Responsibilities:

• Security Architecture & Operations: Oversee the design and enforcement of security frameworks and enterprise security solutions.
• Threat Intelligence & Response: Supervise the collection, analysis, and dissemination of cybersecurity intelligence.
• Incident Response & Digital Forensics: Lead investigations into security incidents, malware analysis, and forensic assessments.
• Vulnerability & Risk Management: Identify security vulnerabilities, implement remediation measures, and enforce compliance.
• Automation & Security Engineering: Support automation of security processes through cybersecurity tools and scripting.
• SOC & Continuous Monitoring: Ensure Level 2 support for Saudi Aramco Global SOC monitoring and response capabilities for cybersecurity events.
• Compliance & Governance: Manage compliance initiatives, cybersecurity audits, and regulatory requirements.

Requirements:

• Education: Bachelor’s degree in Cybersecurity, Information Security, Computer Science, or related field.
• Experience:7+ years in cybersecurity roles, with at least 2 years in a supervisory or leadership position.
• Certifications(preferred): CISSP, CISM, CEH, GIAC, Security+, or other relevant industry certifications.
• Language(s):Excellent English skills, both written and verbally

Technical Skills:

• Experience with SIEM and SOAR tools, network and endpoint security solutions.
• Proficiency in digital forensics, threat intelligence, and malware analysis.
• Strong understanding of risk assessment methodologies, compliance frameworks (ISO 27001, NIST, GDPR, etc.).
• Advanced knowledge of general security methodologies, concepts and terminologies
• Soft Skills:Strong leadership, communication, problem-solving, and critical-thinking skills.

Functional Specific Requirements

• Hands-on experience with cybersecurity platforms like SOAR, SIEM, threat intelligence feeds, and log management tools.
• Deep understanding of cloud security (Microsoft 365, Azure) and identity governance frameworks.
• Knowledge of penetration testing methodologies and incident response frameworks.
• Experience in managing large-scale security events, such as malware outbreaks or coordinated cyberattacks.
• Ability to develop and execute cybersecurity tabletop drills, ensuring readiness for security incidents.
• Strong analytical skills to assess and interpret complex security data and risk scenarios.