Cybersecurity Operations Consultant

We are seeking a highly skilled and motivated Cybersecurity Operations Consultant to join one of our clients in KSA. The consultant will be responsible for the day-to-day management, monitoring, and response to security alerts and incidents. This role is crucial for maintaining a strong security posture, ensuring effective protection against cyber threats, and facilitating prompt incident resolution across the organization.Key Responsibility:Security Monitoring and Alert Management:Manage and monitor security alerts generated by various systems, including Microsoft Azure alerts (e.g., Defender for Endpoint, Defender for Cloud, etc.) and other security monitoring tools.Analyze alerts, triage their severity, and provide corrective action recommendations to mitigate risks.Incident Response and Coordination:Serve as a key responder in the Security Incident Response process.Coordinate with relevant departments (IT, Legal, etc.) to ensure swift and effective handling of detected security incidents, from initial detection through to complete resolution.Provide technical support as needed, including on-call support during and outside of business hours, for critical security alerts and incidents.Security System Management:Review and adjust security system configurations to ensure optimal performance and effective protection. This includes systems such as:FirewallsIntrusion Prevention Systems (IPS)Network Access Control (NAC)Data Loss Prevention (DLP)Managed Detection and Response (MDR) monitoring systems.Reporting and Documentation:Prepare detailed incident handling reports from initial detection to closure, meticulously documenting the response steps, root cause analysis, and lessons learned.Generate weekly and monthly operational reports summarizing critical security situations, the total number of incidents, and the responses and remediation actions implemented.Required Qualifications and ExperienceExperience: 3 – 5 years of experience in a dedicated security operations role (e.g., SOC Analyst, Security Engineer, Incident Responder).Technical Skills: Proven practical experience managing and configuring enterprise security controls (Firewalls, IPS, NAC, DLP, MDR) and monitoring platforms (Microsoft Azure security tools).Location/Regional Experience: Practical experience operating within the Kingdom of Saudi Arabia (KSA) is required.Incident Handling: Strong understanding and practical experience with the full incident response lifecycle.MDR Experience (Plus): Experience working with or managing an MDR (Managed Detection and Response) Security Information and Event Management (SIEM) site is a distinct advantage.Certifications : Certifications such as CISA, CCSK, or relevant cloud security certifications (e.g., AWS Security, Azure Security) are a strong plus.Language (Preferred): Arabic speaking is preferred, but not mandatory.CompetenciesExceptional analytical and problem-solving skills with a keen attention to detail.Ability to work under pressure in time-sensitive incident response situations.Strong verbal and written communication skills for coordinating with various teams and producing clear, executive-level reports.High level of integrity and professional judgment in handling sensitive security information.