We are seeking a talented and experienced Mid-Level Information Security Engineer to join our team. The ideal candidate will have a strong background in information security, incident response, threat hunting, and penetration testing. In this role, you will play a critical role in protecting our organization and our clients from cyber threats.
Incident Monitoring and Response:
- Monitor security-related incidents, including spam, phishing, compromised websites and applications, and violations of the organization's security policy.
- Act swiftly to respond to and mitigate security incidents, ensuring minimal impact on the organization.
Threat Hunting and SIEM Development:
- Develop advanced threat hunting techniques to proactively identify potential security threats.
- Create and manage Security Information and Event Management (SIEM) policies using Wazuh XDR and SIEM products.
Log Analysis and Alerting:
- Develop log analysis event definitions and alerts using Graylog to identify potential security incidents.
- Continuously refine and optimize alerting rules to reduce false positives.
Incident Response Integration:
- Develop and maintain incident response integrations using TheHive Security Incident Response Platform to streamline incident management processes.
Penetration Testing and Vulnerability Assessments:
- Conduct penetration testing and vulnerability assessments, focusing on web and mobile development teams as part of the project lifecycle and on-demand or scheduled assessments.
- Collaborate with development teams to remediate identified vulnerabilities.
Information Security Policies:
- Actively participate in the development and implementation of information security policies to ensure compliance and alignment with industry best practices.
- Regularly perform security checks and compliance reporting.
- Track existing processes and offer solutions for improvements
- Implement new processes with the goal to optimize the company's security.
- Develop custom tools and scripts to enhance incident management process workflows and automate routine security tasks.
- Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks.
- Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience).
- 3+ years of experience in information security roles.
- Strong knowledge of cybersecurity principles, technologies, and best practices.
- Hands-on experience with SIEM tools, preferably Wazuh XDR and Graylog.
- Familiarity with TheHive Security Incident Response Platform.
- Experience in conducting penetration testing and vulnerability assessments.
- Proficiency in scripting and programming languages (e.g., Python, PowerShell).
- Excellent problem-solving and analytical skills.
- Strong communication and teamwork abilities.
Private Health Insurance
Amazing learning environment
Training & Development
- Contract duration: Fixed-Term Appointment (FTA).
- Working hours: 7 hours daily, including lunch / 9:00 AM to 4:00 PM.
- Probation period: 1-3 Months.
- Duty station: Tripoli.
- The salary: Negotiable based on experience and qualifications.