48 Dfir Analyst jobs in the United Arab Emirates

Help AG is looking for a talented and enthusiastic Security Analyst who will have a strong knowledge and interest in network security. The Security Analyst will be responsible for monitoring multiple security technologies and events using the Security Information Event Management (SIEM) tool in order to detect and identify IT security related incidents.

This role requires:

• 2-4 years of experience in information security, in areas such as security operations, intrusion detection, incident analysis, incident handling, log analysis, or firewall administration.
• 2-4 years of experience in one of the following: Network operations or engineering or system administration on Unix, Linux, Windows.

Responsibilities

• Follow detailed operational processes and procedures to appropriately analyze, escalate, and assist in the remediation of critical information security incidents.
• Correlate and analyze events using the Splunk/Log Rhythm/Qradar SIEM tool to detect IT security incidents.
• Conduct analysis of log files, including forensic analysis of system resource access.
• Review customer reports to ensure quality and accuracy.
• Monitor multiple security technologies, such as SIEM, IDS/IPS, Firewalls, Switches, VPNs, and other security threat data sources.
• Respond to inbound requests via phone and other electronic means for technical assistance with managed services.
• Respond in a timely manner (within documented SLA) to support, threat, and other cases.
• Document actions in cases to effectively communicate information internally and to customers.
• Resolve problems independently and understand escalation procedures.
• Maintain a high degree of awareness of the current threat landscape.
• Participate in knowledge sharing with other analysts and writing technical articles for Internal Knowledge Bases.
• Perform other essential duties as assigned.
• Able to work in rotating shifts within a 24/7 operating environment.

Qualifications & Skills

• A Degree in Computer Science, Information Systems, Electrical Engineering, or a closely related degree.
• An active interest in internet security, incident detection, network and systems security.
• A sound knowledge of IT security best practices, common attack types and detection/prevention methods.
• Demonstrable experience of analyzing and interpreting system, security, and application logs.
• Knowledge of the type of events that both Firewalls, IDS/IPS, and other security-related devices produce.
• Experience in using SIEM tools such as Splunk, Log Rhythm, Qradar, Alien Vault, NitroSecurity, etc.
• TCP/IP knowledge, networking, and security product experience.
• Knowledge of Cyber Kill Chain and MITRE ATT&CK frameworks.
• Possible attack activities, such as scans, man in the middle, sniffing, DoS, DDoS, etc., and possible abnormal activities, such as worms, Trojans, viruses, etc.
• CCNA, CISSP, GCA, GCIA, GCIH, CEH certification would be preferable.
• Outstanding organizational skills.
• Exclusive focus and vast experience in IT.
• Strong analytical and problem-solving skills.
• A motivated, self-managed individual who can demonstrate above-average analytical skills and work professionally with peers and customers even under pressure.
• Very good communication skills.
• Strong written and verbal skills.
• Strong interpersonal skills with the ability to collaborate well with others.
• Ability to speak and write in English is required; Arabic is preferred.

Benefits

• Health insurance with one of the leading global providers for medical insurance.
• Career progression and growth through challenging projects and work.
• Employee engagement and wellness campaigns activities throughout the year.
• Excellent learning and development opportunities.
• Inclusive and diverse working environment.
• Flexible/Hybrid working environment.
• Annual flight tickets to home country.
• Open door policy.

About Us

Help AG is the cybersecurity arm of e& enterprise (formerly Etisalat Digital) and provides leading enterprise businesses across the Middle East with strategic consultancy combined with tailored information security solutions and services that address their diverse requirements, enabling them to evolve securely with a competitive edge.

Present in the Middle East since 2004, Help AG was strategically acquired by e& (formerly Etisalat Group) in 2020, hence creating a cybersecurity and digital transformation powerhouse in the region.

Help AG has firmly established itself as the region's trusted IT security advisor by remaining vendor-agnostic, trustworthy, independent, and maintaining its focus on all aspects of cybersecurity. With best of breed technologies from industry-leading vendor partners, expertly qualified service delivery teams, and a state-of-the-art consulting practice, Help AG delivers unmatched value to its customers by strengthening their cyber defenses and safeguarding their business.

Join to apply for the Security Analyst role at Help AG, an e& enterprise company

Join to apply for the Security Analyst role at Help AG, an e& enterprise company

Get AI-powered advice on this job and more exclusive features.

Help AG is looking for a talented and enthusiastic Security Analyst who will have a strong knowledge and interest in network security. Security Analyst will be responsible for monitoring multiple security technologies and events using the Security Information Event Management (SIEM) tool in order to detect and identify IT security related incidents.

This role requires:

• 3 - 6 years of experience in information security, in areas such as security operations, intrusion detection, incident analysis, incident handling, log analysis, or firewall administration.
• 3 - 6 years of experience in one of the following: Network operations or engineering or system administration on Unix, Linux, Windows.
  
  

• Follow detailed operational process and procedures to appropriately analyse, escalate, and assist in remediation of critical information security incidents.
• Correlate and analyse events using the Splunk/Log Rhythm/Qradar SIEM tool to detect IT security incidents.
• Conduct analysis of log files, including forensic analysis of system resource access.
• Review customer reports to ensure quality and accuracy.
• Monitor multiple security technologies, such as SIEM, IDS/IPS, Firewalls, Switches, VPNs, and other security threat data sources.
• Respond to inbound requests via phone and other electronic means for technical assistance with managed services.
• Respond in a timely manner (within documented SLA) to support, threat, and other cases.
• Document actions in cases to effectively communicate information internally and to customers.
• Resolve problems independently and understand escalation procedure.
• Maintain a high degree of awareness of the current threat landscape.
• Participate in knowledge sharing with other analysts and writing technical articles for Internal Knowledge Bases.
• Perform other essential duties as assigned.
• Able to work in rotating shifts within a 24/7 operating environment.
  
  

• A Degree in Computer Science, Information Systems, Electrical Engineering, or a closely related degree.
• An active interest in internet security, incident detection, network and systems security.
• A sound knowledge of IT security best practices, common attack types and detection/prevention methods.
• Demonstrable experience of analysing and interpreting system, security, and application logs.
• Knowledge of the type of events that both Firewalls, IDS/IPS, and other security related devices produce.
• Experience in using SIEM tools such as Splunk, Log Rhythm, Qradar, Alien Vault, NitroSecurity, etc.
• TCP/IP knowledge, networking, and security product experience.
• Knowledge of Cyber Kill Chain and MITRE ATT&CK frameworks.
• Possible attack activities, such as scans, man in the middle, sniffing, DoS, DDoS, etc. and possible abnormal activities, such as worms, Trojans, viruses, etc.
• CCNA, CISSP, GCA, GCIA, GCIH, CEH certification would be preferable.
• Outstanding organizational skills.
• Exclusive focus and vast experience in IT.
• Strong analytical and problem-solving skills.
• A motivated, self-managed, individual who can demonstrate above average analytical skills and work professionally with peers and customers even under pressure.
• Very good communication skills.
• Strong written and verbal skills.
• Strong interpersonal skills with the ability to collaborate well with others.
• Ability to speak and write in English is required; Arabic is preferred.
  
  

• Health insurance with one of the leading global providers for medical insurance.
• Career progression and growth through challenging projects and work.
• Employee engagement and wellness campaigns activities throughout the year.
• Excellent learning and development opportunities.
• Inclusive and diverse working environment.
• Flexible/Hybrid working environment.
• Annual flight tickets to home country.
• Open door policy.
  
  

• Seniority level Not Applicable

• Employment type Full-time

• Job function Information Technology
• Industries IT Services and IT Consulting

Referrals increase your chances of interviewing at Help AG, an e& enterprise company by 2x

Get notified about new Security Analyst jobs in Dubai, Dubai, United Arab Emirates.

Dubai, United Arab Emirates 50 minutes ago

Dubai, Dubai, United Arab Emirates 1 year ago

Dubai, Dubai, United Arab Emirates 1 year ago

We're unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

The security fusion center specialist is responsible for executing various tasks and responsibilities related to the position as assigned by the direct manager. The role involves developing effective response scenarios to deal with different security threats, coordinating with agencies and sectors to ensure availability of necessary information, analyzing threats using predictive security techniques, and managing developmental projects for tools and techniques to detect cases of corruption, fraud, and information leakage.

• It is crucial to strictly adhere to RTA Information Security policies, procedures, and processes.
• One must also follow the Information Security data sharing guidelines for all internal and external data transfers.
• Any Information Security incidents should be immediately reported to your line manager and IT support for prompt guidance and resolution.
• Actively participating in all assigned Information Security training and awareness sessions is vital to enhance knowledge and address potential Information Security risks.

This role requires a strong understanding of security concepts, excellent analytical skills, and the ability to work effectively in a team environment.

• Developing effective response scenarios to deal with different security threats.
• Coordinating with different agencies and sectors to ensure the availability of necessary information.
• Analyzing threats using predictive security techniques to anticipate future security challenges.
• Managing developmental projects for tools and techniques to detect cases of corruption, fraud, and information leakage.

This role demands a strong foundation in security concepts, robust analytical skills, and the capacity to collaborate effectively within a team environment.

• A bachelor's or master's degree in computer science, computer engineering, information systems, or a related field from a recognized university.
• Data management, communication, information analysis, and project management skills.

Candidates must have a passion for security and be willing to learn and adapt to new technologies and processes.

Get AI-powered advice on this job and more exclusive features.

Direct message the job poster from Gargash Group

The Cybersecurity Analyst is responsible for protecting the group's IT infrastructure, data, and applications from cyber threats. The job involves monitoring systems, analysing vulnerabilities, implementing security solutions, and responding to security incidents to ensure the confidentiality, integrity, and availability of information assets

Key duties and Responsibilities:

• • Continuously monitor IT infrastructure, networks, and applications for security threats using Security Information and Event Management (SIEM) tools.
• Investigate security incidents, analyse root causes, and coordinate incident response efforts to mitigate risks.
• Work with senior cybersecurity professionals to develop incident response procedures and ensure timely resolution of security breaches.
• Perform in-depth forensic analysis to determine the impact and scope of security incidents.
• Correlate logs and alerts from various cybersecurity tools (EDR, XDR, SIEM, Email Security, DLP, DDoS, WAF, Proxy).
• Conduct vulnerability assessments and penetration testing to identify security weaknesses in systems, applications, and networks.
• Work with IT teams to remediate vulnerabilities and ensure compliance with security policies.
• Assess third-party vendors for security compliance and recommend necessary security controls.
• Stay updated on emerging cyber threats, attack techniques, and best practices to improve security defences.
• Assist in the deployment and configuration of cybersecurity tools, including firewalls, intrusion detection systems, endpoint protection, and identity access management solutions.
• Support the implementation of cybersecurity frameworks (e.g., NIST, ISO 27001, CIS Controls).
• Manage access control and identity management, ensuring the principle of least privilege is maintained.
• Conduct security audits and reviews of applications, cloud environments, and IT infrastructure.
• Gather and analyse threat intelligence to proactively identify potential security risks. 2
• Develop and fine-tune cybersecurity use cases for SOC/MDR operations.
• Perform malware analysis and reverse engineering of malicious code to understand threats and recommend countermeasures.
• Collaborate with security engineers to develop automated security workflows and AI-driven security monitoring solutions.
• Contribute to security awareness training programs for employees to reduce human-related security risks.
• Ensure compliance with regulatory and industry security standards, such as GDPR, PCI-DSS, and NIST frameworks.
• Document security incidents, remediation efforts, and process improvements to strengthen cybersecurity policies.
• Provide technical reports and recommendations to senior management on cybersecurity issues
• Uphold company values throughout business practices and utilise sound judgment in decision making.
• Any other additional duties as may be required by management based on needs of the business

Work Experience:

• A minimum of 3-5 years of experience in a similar role in Cyber Security.
• Experience with AI-based cybersecurity tools including Darktrace, Security Copilot, SOAR, Next-gen SIEM, CrowdStrike, AI-based Threat Intel, and Microsoft Security deployment (Defender, Purview DLP, IAM).

Skills/Behaviour Attributes:

• Strong knowledge of cybersecurity principles, technologies, protocols, and best practices.
• Proficiency in using cybersecurity tools and software for threat detection, analysis, and mitigation.
• Experience with security information and event management (SIEM) solutions.
• Solid understanding of network architecture, operating systems, and cloud computing platforms.
• Exceptional analytical and problem-solving abilities, with keen attention to detail.

• Seniority level Associate

• Employment type Full-time

• Job function Information Technology

Referrals increase your chances of interviewing at Gargash Group by 2x

Get notified about new Cyber Security Analyst jobs in Dubai, United Arab Emirates.

Dubai, United Arab Emirates 58 minutes ago

We're unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the Information Security Analyst role at International Free Zone Authority | IFZA

Join to apply for the Information Security Analyst role at International Free Zone Authority | IFZA

About Us

IFZA Dubai is the most dynamic and truly international Free Zone Community in the UAE, optimizing the country's strategic location and world-class infrastructure. We provide easy, reliable, and fast company formation services through our network of Professional Partners and Government Authorities.

About Us

IFZA Dubai is the most dynamic and truly international Free Zone Community in the UAE, optimizing the country's strategic location and world-class infrastructure. We provide easy, reliable, and fast company formation services through our network of Professional Partners and Government Authorities.

Job Description

Job Overview:

The Information Security Analyst will be responsible for protecting IFZA's information systems by identifying, assessing, and mitigating security risks. This role involves monitoring, analyzing, and responding to security incidents, implementing security measures, and ensuring compliance with industry standards and regulations. The ideal candidate is proactive, detail-oriented, and possesses strong technical and analytical skills.

Main Responsibilities

• Threat Monitoring and Incident Response:
• Monitor network traffic and security alerts for potential threats using SIEM tools (e.g., Microsoft Sentinel).
• Investigate and respond to security incidents, including malware infections, phishing attacks, and unauthorized access.
• Conduct root cause analysis and document incident reports with remediation recommendations.
• Risk Assessment and Vulnerability Management:
• Perform regular vulnerability scans and penetration testing to identify weaknesses in systems and applications.
• Collaborate with IT teams to prioritize and remediate vulnerabilities.
• Conduct risk assessments to evaluate potential security threats and recommend mitigation strategies.
• Security Policy and Compliance:
• Implement, and enforce security policies, procedures, and standards in alignment with frameworks such as NIST, ISO 27001, or GDPR.
• Ensure compliance with regulatory requirements and industry's best practices.
• Assist in preparing for and responding to internal and external audits.
• Security Awareness and Training:
• Conduct security awareness training for employees to promote best practices (e.g., password management, phishing prevention).
• Create and distribute educational materials on emerging cyber threats.
• System and Network Security:
• Configure and manage security tools such as firewalls, intrusion detection/prevention systems (IDS/IPS), and endpoint protection solutions.
• Implement and monitor encryption, authentication, and access control mechanisms.
• Threat Intelligence and Research:
• Stay updated on the latest cyber threats, vulnerabilities, and attack vectors.
• Analyze threat intelligence reports and apply findings to enhance organizational security posture.
  
  

• Bachelor's in Engineering, Computer Science, or related field.
• 8+ years of experience in Information Security.
• Minimum 3 + years hands-on experience in SOC, blue-team, or security engineering roles.
• Proven expertise with Microsoft Sentinel, Microsoft Defender, Incident management, Compromised recovery, patch management and vulnerability management platform.
• Solid grasp of TCP/IP, Windows/Linux internals, AWS/Azure security primitives.
• Scripting for automation (Python, Bash, or PowerShell).
• Familiarity with MITRE ATTACK mapping and threat-hunting methodology.
• CompTIA Security+, CEH, GRC, CCNA or CCNP - Security.
• Analytical mindset with strong investigation and documentation discipline.
• Clear verbal/written communication for incident briefings and executive reports.
• Ability to multitask and stay calm under pressure.
• Experience with Zero Trust architecture projects.
• Knowledge of privacy regulations (GDPR, HIPAA, PDPA).
• Exposure to DevSecOps.
  
  

• International team (over 60 nationalities)
• 24 working days as annual leave
• Annual flight home
• Life insurance plan
• Medical insurance plan (with the option to upgrade at your own cost)
  
  

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology
• Industries Government Administration

Referrals increase your chances of interviewing at International Free Zone Authority | IFZA by 2x

Get notified about new Information Security Analyst jobs in Dubai, Dubai, United Arab Emirates.

We're unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

About Cyberr:

At Cyberr, we specialize in connecting top cybersecurity talent with leading organizations across various industries. Our mission is to ensure our clients’ digital landscapes are secure by providing them with expert professionals who are passionate about cybersecurity. We are currently hiring skilled Cybersecurity Analysts on behalf of multiple clients who are looking to strengthen their security teams and protect their valuable digital assets.

Job Summary:

As a Cybersecurity Analyst working with one of Cyberr’s esteemed clients, you will be instrumental in safeguarding critical information and IT systems from cyber threats. You will be responsible for monitoring, detecting, and responding to security incidents, conducting vulnerability assessments, and working closely with other teams to implement robust security measures. This is a unique opportunity to apply your cybersecurity expertise in a dynamic environment with the support of a leading recruitment agency.

Key Responsibilities:

• Continuously monitor security alerts and events from various tools such as SIEM systems, firewalls, IDS/IPS, and endpoint protection software.
• Perform detailed analyses of security incidents, identify the root causes, and recommend remediation actions.
• Conduct regular vulnerability assessments and risk evaluations to detect potential security threats.
• Collaborate with IT teams to enhance security protocols, ensuring alignment with industry standards and best practices.
• Assist in developing and enforcing security policies, procedures, and guidelines.
• Stay informed about the latest cybersecurity threats, trends, and best practices.
• Prepare detailed security reports for management, highlighting findings, risks, and recommended actions.
• Participate in audits and compliance checks to ensure adherence to security frameworks such as NIST, ISO 27001, or CIS Controls.

Qualifications:

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent experience).
• 2-4 years of experience in cybersecurity or a related field.
• Strong knowledge of cybersecurity principles, threat management, vulnerability management, and incident response.
• Hands-on experience with security tools such as SIEMs, firewalls, IDS/IPS, and endpoint protection platforms.
• Familiarity with security frameworks and standards like NIST, ISO 27001, or CIS Controls.
• Excellent analytical and problem-solving skills.
• Strong communication skills, capable of explaining complex security issues to non-technical stakeholders.
• Relevant certifications (e.g., CompTIA Security+, CISSP, CEH) are highly desirable.

What Cyberr Offers:

• Competitive salary and comprehensive benefits packages through our clients.
• Access to a network of high-profile clients and cutting-edge cybersecurity projects.
• Opportunities for ongoing professional development and certification support.
• Flexible work arrangements, including remote options, depending on client requirements.
• A supportive and collaborative environment with Cyberr’s expert guidance throughout your career.

This is a challenging role that involves managing and conducting internal and external penetration testing. The ideal candidate will have expertise in identifying security gaps and recommending improvements.

• Penetration Testing: Conducts thorough assessments of an organization's security posture by simulating real-world attacks to identify vulnerabilities. Develops and implements strategies to mitigate identified risks and improve overall security.
• Vulnerability Scanning: Oversees the execution of regular vulnerability scans to ensure the accuracy and reliability of the scanning infrastructure. Identifies areas for improvement to minimize operational impact.
• Threat Automation: Designs and develops projects to simulate emerging threats, creating tools to support security requirements and implementing scalable software to ensure accurate security controls.
• Red Team Intelligence: Develops and executes red team projects aligned with strategic security goals, providing insights into infrastructure, applications, and processes to identify potential risks. Emulates real-world attacker techniques to test organizational security.

The successful candidate must possess OSCP, GIAC GPEN, GWAPT, CISSP, CEH, or similar certifications. Knowledge in scripting languages (Bash, Python, Perl, Ruby), systems programming, OWASP Top 10, and mobile application penetration testing is preferred.

We offer a competitive compensation package and opportunities for professional growth and development.

Qualified candidates should submit their resumes for consideration.

JOB TITLE:

Network & Security Analyst L2 - (DXB UAE)

JOB PURPOSE:

The L2 Network & Security Engineer will be responsible for designing implementing and maintaining enterprise-level network infrastructure and security solutions. The role involves troubleshooting network issues ensuring security compliance and optimizing network performance while adhering to industry best practices.

QUALIFICATION:

Bachelors degree in computer science Information Technology Electronics & Communication or related field.

CERTIFICATIONS:

• Cisco CCNA / CCNP
• Palo Alto PCNSE
• F5 Certified Administrator
• Fortinet NSE Certification
• Check Point (CCSA/CCSE)
• Juniper (JNCIS/JNCIP)
• ITIL Foundation

EXPERIENCE:

10-12 Years

RESPONSIBILITIES (INCLUDES ALL TASKS):

• Network Infrastructure:
  • Strong experience in routing & switching (Cisco Juniper Arista).
  • Hands-on with MPLS BGP OSPF EIGRP VLAN VPN SD-WAN.
  • Experience in firewall management (Palo Alto Fortinet Cisco ASA/FTD Check Point).
• Security Operations:
  • Knowledge of Firewalls IDS/IPS DDoS protection NAC Zero Trust.
  • Experience in vulnerability assessment penetration testing and security audits.
• Cloud & Virtualization:
  • Exposure to AWS/Azure/GCP networking & security.
  • Familiarity with VMware NSX SDN ACI.
• Monitoring & Troubleshooting:
  • Proficient in Wireshark SolarWinds PRTG Nagios.

Key Responsibilities:

• Network Management:
  Configure monitor and troubleshoot LAN/WAN/WLAN/SD-WAN networks.
  Manage firewalls load balancers proxies and VPNs.
• Security Implementation:
  Deploy and maintain security policies ACLs threat prevention mechanisms.
  Conduct security assessments patch management and compliance checks (ISO 27001 NIST PCI-DSS).
• Incident Response:
  Investigate and resolve network breaches DDoS attacks malware infections.
  Perform forensic analysis and log reviews.
• Automation & Optimization:
  Implement network automation (Python Ansible Terraform) for efficiency.
  • Optimize network performance latency and bandwidth utilization.
• Collaboration & Documentation:
  Work with L3 teams SOC and IT compliance teams.
  Maintain network diagrams SOPs and audit reports.
• Work under pressure in a fast-paced environment while multi-tasking efficiently.
• Demonstrate excellent problem-solving skills and attention to detail.
• Provide 24/7 network and security support as required.

TECHNICAL SKILLS /COMPETENCIES:

MANDATORY

• Networking: Cisco/Juniper Routing & Switching Firewalls (Palo Alto/Fortinet) VPN SD-WAN.
• Security: Firewalls IDS/IPS Vulnerability Management.
• Protocols: TCP/IP BGP OSPF VLAN DHCP DNS IPv6.
• Tools: Wireshark SolarWinds Splunk Nessus Nmap
• Familiarity with network monitoring tools and best security practices.
• Strong understanding of network infrastructure design and troubleshooting.
• Excellent communication skills in English (both verbal and written).
• Ability to work efficiently in a team-oriented environment with high self-motivation.
• A customer-focused mindset with strong delivery service ethics.
• Good understanding of Monitoring tools such as SolarWinds Manage Engine Ops Manager Zabbix etc.
• Willingness to work in a 24/7 support window.
• Good understanding of the ITSM processes.

OPTIONAL

• Cisco Viptela SD-WAN and Fortinet SDWAN
• Cisco SD Access Cisco ACI
• Cisco or Avaya IPT
• VMware NSX-T
• Network Switches Dell Extreme

SOFT SKILLS:

MANDATORY

• Self-confidence motivation and ability to work independently and in a team
• Ability to collaborate with stakeholders at the operational level
• Strong customer service orientation

About this role

We are seeking a skilled and proactiveAzure Cloud Security Analystto join our cybersecurity team. In this role, you will be responsible for safeguarding our Azure cloud infrastructure, applications, and data by leveraging Azure-native security tools, proactive threat detection, and best-in-class cloud security practices.

You will play a critical role in security monitoring, incident response, identity and access management, vulnerability assessments, and compliance assurance across our cloud environment.

Your responsibilities

Monitor & Detect Threats :

Use Azure-native tools like Sentinel, Defender for Cloud, and Security Center to monitor cloud environments, detect anomalies, and configure security alerts

Incident Response & Investigation :

Investigate security incidents and alerts, perform root cause analysis, and support remediation using tools like Sentinel Playbooks, XDR, and Velociraptor

Identity & Access Management :

Secure Azure AD using MFA, PIM, Conditional Access, and enforce RBAC for least-privilege access across cloud resources

Risk & Vulnerability Management :

Conduct risk assessments and vulnerability scans; identify misconfigurations and enforce policies through Azure Policyand collaboration with DevOps

Network Security & Compliance :

Manage Azure Firewall, NSGs, and WAF; ensure compliance with standards like ISO 27001, C5 : 2020, SOC 2, and GDPR

Automation & DevSecOps :

Automate security operations and integrate controls into CI / CD pipelines using Logic Apps, PowerShell, and Azure Policy

Your qualifications, skills and experience

Hands-on experience with Azure Security Center, Microsoft Defender for Cloud, Azure Sentinel

Strong knowledge ofSIEM toolslike Sentinel or Splunk

Expertise inIAM, including Azure AD, OAuth / SAML, RBAC, PIM, and MFA

Proficient inincident response,threat hunting, andforensic investigation

Deep understanding ofnetwork securityand Azure-native firewall services

Familiarity with security standards : ISO 27001, SOC 2, C5 : 2020, GDPR

Experience with scripting / automation using PowerShell, Python, and Terraform

Location

Dubai

We offer you

Open-minded and international environment and culture, fast-paced and with quick decision-making approach

Encouraging climate where every team member can make a difference and influence decisions and processes

Meritocratic culture where ongoing feedback is part of life to grow and develop

Company that believes in life-long learning and supporting the development of its team

How to apply

If you are passionate about joining a growing and motivated team of financial services enthusiasts and want to contribute to the growth of a leading international FinTech company, please click below to apply.

About us

additiv enables leading financial institutions and brands globally to develop new and transform existing business models, capitalizing on digital innovation and Finance-as-a-Service capabilities.

additiv's API-first cloud platform is one of the world's most powerful solutions in wealth management, credit, and insurance. The technology, together with the global ecosystem of regulated financial service providers, opens new opportunities for banks, insurance companies, asset managers, IFAs but also 'consumer brands' to offer their own and third-party financial solutions quickly and flexibly via existing or new customer channels.

Headquartered in Switzerland, with regional offices in Singapore, UAE, and Germany and 300 employees, additiv serves over 400 financial companies (banks, insurers, asset managers, pension providers, IFAs etc) and brands globally.

For more information, please visit "