Information Security Engineer

Job Description

We are seeking a talented and experienced Mid-Level Information Security Engineer to join our team. The ideal candidate will have a strong background in information security, incident response, threat hunting, and penetration testing. In this role, you will play a critical role in protecting our organization and our clients from cyber threats.

Responsibilities

Incident Monitoring and Response:

• Monitor security-related incidents, including spam, phishing, compromised websites and applications, and violations of the organization's security policy.
• Act swiftly to respond to and mitigate security incidents, ensuring minimal impact on the organization.

Threat Hunting and SIEM Development:

• Develop advanced threat hunting techniques to proactively identify potential security threats.
• Create and manage Security Information and Event Management (SIEM) policies using Wazuh XDR and SIEM products.

Log Analysis and Alerting:

• Develop log analysis event definitions and alerts using Graylog to identify potential security incidents.
• Continuously refine and optimize alerting rules to reduce false positives.

Incident Response Integration:

• Develop and maintain incident response integrations using TheHive Security Incident Response Platform to streamline incident management processes.

Penetration Testing and Vulnerability Assessments:

• Conduct penetration testing and vulnerability assessments, focusing on web and mobile development teams as part of the project lifecycle and on-demand or scheduled assessments.
• Collaborate with development teams to remediate identified vulnerabilities.

Information Security Policies:

• Actively participate in the development and implementation of information security policies to ensure compliance and alignment with industry best practices.
• Regularly perform security checks and compliance reporting.
• Track existing processes and offer solutions for improvements
• Implement new processes with the goal to optimize the company's security.

Tool Development:

• Develop custom tools and scripts to enhance incident management process workflows and automate routine security tasks.
• Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks.

Requirements

• Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience).
• 3+ years of experience in information security roles.
• Strong knowledge of cybersecurity principles, technologies, and best practices.
• Hands-on experience with SIEM tools, preferably Wazuh XDR and Graylog.
• Familiarity with TheHive Security Incident Response Platform.
• Experience in conducting penetration testing and vulnerability assessments.
• Proficiency in scripting and programming languages (e.g., Python, PowerShell).
• Excellent problem-solving and analytical skills.
• Strong communication and teamwork abilities.

• Private Health Insurance

• Social security

• Amazing learning environment

• Training & Development

• Performance Bonus

• Lunch

• Contract duration: Fixed-Term Appointment (FTA).
• Working hours: 7 hours daily, including lunch / 9:00 AM to 4:00 PM. 
• Probation period: 1-3 Months. 
• Duty station: Tripoli.
• The salary: Negotiable based on experience and qualifications.