194 Intrusion Detection jobs in the United Arab Emirates

• Conduct comprehensive penetration testing and red teaming exercises on systems, networks, applications and mobile to identify vulnerabilities and potential entry points for attackers.
• Develop and execute custom tools and scripts to automate testing and exploitation processes.
• Analyze and report on findings, providing detailed explanations of vulnerabilities and recommended remediation steps.
• Simulate advanced persistent threats (APTs) to test the resilience of security controls and incident response capabilities.
• ASM: Continuously discover and catalog all assets, including hardware, software, and network components.
• ASM: Monitor the attack surface for changes and potential vulnerabilities, using automated tools and manual assessments.
  
  

• Perform thorough vulnerability assessments to identify and prioritize security weaknesses.
• Utilize industry-standard tools such as Qualys, Nessus or Nexpose and methodologies to uncover vulnerabilities in various environments.
• Provide actionable recommendations for remediation and mitigation strategies.
• Patch management
  
  

• Conduct threat modeling and risk assessments to identify potential attack vectors and vulnerabilities
• Develop and maintain a comprehensive understanding of our systems, networks, and applications to identify potential vulnerabilities
• Provide recommendations for remediation and mitigation strategies
  
  

• Participate in security incident response and crisis management efforts as needed
• Collaborate with incident response teams to contain and remediate security incidents
• Provide technical expertise and guidance during incident response efforts
  
  

• Stay up-to-date with the latest security threats and trends, and adapt testing methodologies accordingly
• Develop and maintain a comprehensive knowledge of industry-leading security tools and technologies
• Participate in security research and development efforts to identify and develop new testing techniques and methodologies
  
  

• Collaborate with development teams to implement security patches and fixes
• Provide technical guidance and support to development teams on security-related issues
• Communicate complex technical information to non-technical stakeholders in a clear and concise manner
  
  

• Develop and maintain detailed reports on findings, including vulnerability assessments, penetration testing results, and recommendations for remediation
• Document testing methodologies, tools, and results in a clear and concise manner
• Maintain accurate and up-to-date records of testing activities and results
  
  

• Bachelor's degree in Computer Science, Information Assurance, or a related field
• OSCP, CEH, or other relevant certifications
• 5+ years of experience in penetration testing, vulnerability assessment, or a related field
• Strong understanding of networking protocols, operating systems, and applications
• Proficiency in programming languages such as Python, C++, or Java
• Experience with penetration testing frameworks and tools such as Nmap, Nessus, Burp Suite, or Metasploit
• Strong analytical and problem-solving skills
• Excellent communication and reporting skills
• Ability to work independently and as part of a team
• Strong attention to detail and ability to maintain accurate records
• Ability to work in a fast-paced environment with tight deadlines
  
  

• Experience with cloud-based technologies and cloud security
• Familiarity with Agile development methodologies
• Strong understanding of compliance and regulatory requirements (e.g., GDPR, PCI-DSS)
• Experience with security orchestration, automation, and response (SOAR) tools
• Familiarity with threat intelligence and threat hunting
  
  

Conduct penetration testing and red teaming on systems networks applications and mobile platforms to identify vulnerabilities. Develop and use custom tools/scripts to automate testing and exploitation. Simulate advanced persistent threats (APTs) to assess security controls and incident response. Continuously discover catalog and monitor all assets for attack surface management (ASM). Perform vulnerability assessments using industry-standard tools (e.g. Qualys Nessus Nexpose) and methodologies. Prioritize and provide actionable remediation recommendations for identified vulnerabilities. Participate in patch management activities. Conduct threat modeling and risk assessments to uncover and prioritize potential attack vectors. Collaborate with incident response teams to contain and remediate security incidents. Provide technical guidance and expertise during incident response and crisis management. Stay updated on latest security threats trends and tools; adapt testing methodologies as needed. Participate in security research and develop new testing techniques/methodologies. Work with development teams to implement security patches and provide security guidance. Communicate complex technical findings to both technical and non-technical stakeholders. Develop and maintain detailed documentation and reports on testing results methodologies and remediation steps. Maintain accurate records of all security testing and assessment activities. Ensure compliance with relevant security certifications and regulatory requirements. Demonstrate strong programming skills (e.g. Python C Java) and knowledge of security tools (e.g. Nmap Burp Suite Metasploit). Work independently and collaboratively in a fast-paced environment managing multiple priorities and deadlines.

• Conduct penetration testing and red teaming on systems networks applications and mobile platforms to identify vulnerabilities.
• Develop and use custom tools/scripts to automate testing and exploitation.
• Simulate advanced persistent threats (APTs) to assess security controls and incident response.
• Continuously discover catalog and monitor all assets for attack surface management (ASM).
• Perform vulnerability assessments using industry-standard tools (e.g. Qualys Nessus Nexpose) and methodologies.
• Prioritize and provide actionable remediation recommendations for identified vulnerabilities.
• Participate in patch management activities.
• Conduct threat modeling and risk assessments to uncover and prioritize potential attack vectors.
• Collaborate with incident response teams to contain and remediate security incidents.
• Provide technical guidance and expertise during incident response and crisis management.
• Stay updated on latest security threats trends and tools; adapt testing methodologies as needed.
• Participate in security research and develop new testing techniques/methodologies.
• Work with development teams to implement security patches and provide security guidance.
• Communicate complex technical findings to both technical and non-technical stakeholders.
• Develop and maintain detailed documentation and reports on testing results methodologies and remediation steps.
• Maintain accurate records of all security testing and assessment activities.
• Ensure compliance with relevant security certifications and regulatory requirements.
• Demonstrate strong programming skills (e.g. Python C Java) and knowledge of security tools (e.g. Nmap Burp Suite Metasploit).
• Work independently and collaboratively in a fast-paced environment managing multiple priorities and deadlines.

• Strong programming skills (e.g. Python, C, Java).
• Knowledge of security tools (Nmap, Burp Suite, Metasploit).
• Ability to communicate complex technical findings to technical and non-technical stakeholders.
• Experience with incident response, crisis management, and patch management activities.

Our client is a UAEbased bespoke IT services provider with a strong client base in Abu Dhabi. To support the growth of their cybersecurity service offering our client is seeking to recruit anInformation Security Engineerspecializing inNetwork Detection and Response (NDR)andMobile Device Management (MDM) technologies.

Information Security Engineer ExtraHop & Ivanti
Based in Abu Dhabi UAE

YOUR RESPONSIBILITIES:

• Deploy configure and maintainNDR solutions particularlyExtraHop to detect investigate and respond to security threats and anomalies across the organizations network and endpoints.
  
• Create syntaxes to detect indicators of compromise (IOCs) and malicious behavior from emerging threats. Write and execute queries in NDR systems to search for desired events.
  
• Develop and enforce security policies within NDR systems to strengthen endpoint and network security.
  
• Actively monitor and respond to security incidents conduct proactivethreat hunting and investigate anomalies to identify and neutralize potential security threats.
  
• Integrate NDR systems with other security tools SIEM platforms and threat intelligence sources in collaboration with crossfunctional teams.
  
• Provide training and raise security awareness regardingExtraHopsolutions and best practices among internal teams.
  
• Maintain thorough documentation of configurations policies and procedures related toExtraHop implementations generating detailed reports for compliance and management.
  

• A degree in Information Security Computer Science or a related field.
  
• 5 years of experiencedeploying and managingNDR solutions specificallyExtraHop and managingMDM solutionslikeIvantiorMobileiron.
  
• 5 years of experience in implementation of NDR solutions via ExtraHop and MDM solutions via Ivanti /MobileIron platform is a must.
  
• Indepth knowledge of security policies incident response and threat detection techniques.
  
• Strong problemsolving and analytical skills with experience in threat detection risk management and troubleshooting.
  
• Experience with otherSIEM security products(e.g. Splunk ArcSight Nitro or LogRhythm) andinfrastructure componentssuch as firewalls IDS/IPS and DLP systems.
  
• Excellent project management skills to oversee NDR implementations and integration projects.
  
• Effective communication skills and a passion for technology and cybersecurity.
  

• Join a growing company in the Middle East region.
  
• Competitive remuneration package.
  
• Work with highprofile clients in the UAE.
  

Please apply with an updated resume if you are interested in this opportunity. All applications will be treated as strictly confidential.

Comaea Consulting

We are seeking a highly skilled information security specialist with extensive experience in deploying and migrating Microsoft Defender solutions. This includes Microsoft Defender for Endpoint (MDE), Microsoft Defender for Cloud (MDC), and Microsoft Defender for Identity (MDI).

• Plan, design, and implement Microsoft Defender solutions (MDE, MDC, and MDI) for clients.
• Manage the end-to-end migration process from existing security solutions to Microsoft Defender suite.
• Ensure seamless integration and minimal disruption during the migration process.
• Integrate MDE, MDC, and MDI with existing client infrastructure and other security tools.
• Customize and configure each Defender solution to meet specific client security policies and requirements.
• Optimize security features and settings to enhance threat detection and response capabilities.
• Provide expert-level support during and after the migration phase.
• Troubleshoot and resolve issues related to MDE, MDC, and MDI deployments.

A bachelor's degree in computer science, IT, cybersecurity, or equivalent experience is required.

5+ years of experience as a security engineer are necessary.

Proficiency in MDI, MDC, MDE, excellent analytical and communication skills are also required.

Our team provides a collaborative environment that fosters growth and development opportunities.

With our focus on innovation and excellence, you will have the chance to work on cutting-edge projects and technologies.

Job Title: Information Security Specialist

The role of the Information Security Specialist will be to design and implement security controls to safeguard an organization's data and systems. This position will involve configuring, maintaining, and monitoring security devices as well as conducting vulnerability assessments and responding to security incidents.

1. Configure and manage various types of security devices including firewalls, intrusion detection and prevention systems, and security information and event management systems.

2. Conduct thorough vulnerability assessments and penetration testing to identify potential security weaknesses.

3. Rapidly respond to security incidents, perform forensic investigations, and provide detailed incident reports.

4. Develop and enforce robust security policies and procedures to ensure compliance with industry standards and regulations.

5. Maintain continuous surveillance of security logs and alerts to stay ahead of emerging threats.

6. Implement and configure cloud security tools to protect against cyber threats.

A minimum of 10 years of experience in information security is required for this position. Applicants should have a strong understanding of security engineering principles and practices.

The Senior Information Security Analyst is a pivotal role in safeguarding the confidentiality, integrity, and availability of information assets. This critical position requires an individual with strong IT security knowledge, exceptional analytical skills, and experience in implementing corrective actions to mitigate security violations.

• Identify and recommend corrective measures for security breaches
• Conduct vulnerability assessments and recommend remediation strategies
• Communicate potential threats to sensitive information
• Support report development for management and audits
• Test security controls for compliance with ISO27001, ISR, and other regulatory requirements

To succeed in this challenging role, candidates should possess a Bachelor's degree in Computer Science or IT, 3+ years of relevant experience, and knowledge of prominent security certifications (CISSP, CISA, CISM, GIAC). Strong problem-solving skills, excellent communication, and interpersonal abilities are essential for effective collaboration with diverse stakeholders.

Are you ready to embark on a cybersecurity journey? As a SOC Trainee, you will join a training program designed to equip you with the essential skills to become a Security Operations Center Analyst.

CyberGate Defense is launching a structured training program for talented fresh graduates with a passion for cybersecurity. This program is exclusive to UAE nationals and is aimed at providing hands-on experience with SIEM platforms (e.g., ArcSight, Splunk).

You will have the opportunity to monitor security alerts and events from various sources, analyze and prioritize security incidents, and create clear, concise reports on security incidents.

• Emirati Nationals : This program is exclusive to UAE nationals.
• Fresh Graduates : Bachelor's degree in Information Security, Cybersecurity, Computer Science, or a related field.
• Immediate Availability : Candidates must be ready to join immediately.
• Passion for Cybersecurity : Strong interest and eagerness to learn.
• Problem-Solver : Analytical mindset and attention to detail.
• Communication Skills : Proficient in English, both verbal and written.

• Mentorship : Mentorship from seasoned cybersecurity professionals.
• Career Path : Clear progression to becoming a full-fledged SOC Analyst.
• Impactful Work : Opportunity to contribute to a high-profile government project.
• Immediate Start : Kick off your cybersecurity career without delay.

• Seniority level : Internship.
• Employment type : Full-time.
• Job function : Information Technology.
• Industries : IT Services and IT Consulting.

We are currently looking for an Information Security Officer for our UAE operations with the following:

1. Platform specific (e.g. SIEM/ Networking/ Operating System) certifications.
2. Security (e.g. SANS/ ISC2 / CEH/ CISSP/CISM/CISO) certifications.

5-10 years experience in Information Security or related field. Strong operations knowledge with banking background who has hands-on experience on implementing and managing IS applications such as EDR, SIEM, DLP. Has network-related experience with education in computer science, Network/Cyber Security, and related certifications.

Joining time frame: 2 weeks (maximum 1 month)

No

Fulltime

We are seeking an experienced Cybersecurity Consultant to join our organization. As a key member of our security team, you will be responsible for conducting comprehensive security assessments and risk analyses to identify gaps against information and cybersecurity standards.

• Conduct Security Assessments: Perform thorough security audits to evaluate the effectiveness of security controls and systems, and analyze and interpret security assessment findings to provide recommendations for remediation.
• Collaborate with Clients and Internal Teams: Develop and implement information security policies, standards, and procedures in collaboration with clients and internal teams, ensuring seamless integration into system development lifecycle processes.
• Advise on Security Best Practices: Stay up-to-date with the latest security threats, vulnerabilities, and technologies through continuous learning and professional development, advising clients on security best practices, industry standards, and emerging trends to enhance their security posture.

Required Skills and Qualifications:

To succeed in this role, you will need:

• Proven Experience: Proven experience in information security consulting or a similar role, preferably in diverse industries.
• Deep Understanding: Deep understanding of information security principles, risk management, and industry best practices, including familiarity with security frameworks and standards (e.g., ISO 27001, NIST, PCI-DSS).
• Strong Skills: Strong analytical and problem-solving skills, excellent communication and interpersonal skills, and the ability to prioritize tasks, manage multiple projects simultaneously, and meet deadlines.

About the Opportunity:

This is a unique opportunity to join our organization and contribute your expertise to help us achieve our goals. If you are passionate about cybersecurity and have a proven track record of success, we encourage you to apply.