112 Threat Detection jobs in the United Arab Emirates

We're seeking an experienced Senior Penetration Tester to join our cybersecurity team and lead offensive security engagements across various environments and technologies. This is a unique opportunity for you to play a crucial role in identifying security weaknesses before adversaries can exploit them, helping our clients improve their overall security posture.

• Main Responsibilities:
• Lead and execute advanced penetration testing and red team exercises across networks, web applications, APIs, mobile, cloud, and IoT environments.
• Perform threat modeling and vulnerability assessments aligned with the latest TTPs (MITRE ATT&CK, OWASP Top 10, etc.).
• Deliver detailed findings through clear, concise, and technically accurate reports tailored for both technical and executive audiences.
• Collaborate with blue teams to validate detections and improve defenses.
• Provide mentorship and guidance to junior team members.
• Contribute to tool development, methodology improvements, and knowledge sharing within the team.

Key Requirements:

• A minimum of 4 years of hands-on experience in penetration testing or red teaming.
• A deep understanding of network protocols, operating systems (Windows / Linux), and secure software development practices.
• A strong knowledge of exploitation techniques, post-exploitation tactics, and evasion techniques.
• Relevant certifications such as OSCP, OSCE, OSEP, CRTP, or similar.

About the Role:

This senior-level position requires a high degree of expertise and experience in penetration testing and red teaming. The ideal candidate will have a strong understanding of security principles and be able to apply that knowledge in a real-world setting. If you're passionate about staying ahead of the curve and pushing the boundaries of what's possible in cybersecurity, we want to hear from you!

We are seeking a highly skilled Cybersecurity Expert to join our team. As a key member of our security department, you will be responsible for detecting and responding to potential threats to our systems and data.

• Design and implement threat detection and response strategies
• Monitor and analyze network traffic for suspicious activity
• Collaborate with cross-functional teams to resolve security incidents

To be successful in this role, you will need:

• Proven experience in threat detection and response
• Excellent analytical and problem-solving skills
• Strong communication and collaboration skills

This is an excellent opportunity to work with a dynamic team and contribute to the development of our cybersecurity capabilities. You will have access to ongoing training and professional development opportunities to help you grow in your career.

In addition to a competitive salary and benefits package, we offer:

• A dynamic and supportive work environment
• Ongoing training and professional development opportunities
• The chance to work on challenging and exciting projects

Cybersecurity Specialist - Threat Detection and Response

We are seeking a highly skilled Cybersecurity Specialist to join our team. In this role, you will be responsible for detecting and responding to security threats in real-time, ensuring the integrity and confidentiality of our systems and data.

Key Responsibilities:

">
• Monitor and analyze security logs and system activity to identify potential threats
">
• Develop and implement effective threat detection and response strategies
">
• Collaborate with cross-functional teams to ensure seamless incident response and remediation
">
• Stay up-to-date with emerging security threats and trends, and incorporate this knowledge into our threat detection and response efforts
">
• Maintain accurate and detailed records of all security incidents, including root cause analysis and recommendations for improvement
">

Requirements:

">
• Bachelor's degree in Computer Science, Cybersecurity, or a related field
">
• At least 2 years of experience in cybersecurity, with a focus on threat detection and response
">
• Strong analytical and problem-solving skills, with the ability to think critically and make sound decisions under pressure
">
• Excellent communication and collaboration skills, with the ability to work effectively with technical and non-technical stakeholders
">
• Proficiency in security tools and technologies, including SIEM, firewalls, and intrusion detection systems
">

Benefits:

">
• A competitive salary and benefits package
">
• Ongoing training and professional development opportunities
">
• The chance to work with a talented and dynamic team
">
• A collaborative and supportive work environment
">

What We Offer:

">
• A dynamic and challenging work environment
">
• Ongoing opportunities for growth and development
">
• A commitment to diversity, equity, and inclusion
">
• A comprehensive benefits package
">

">
• Strong analytical and problem-solving skills
">
• Excellent communication and collaboration skills
">
• Proficiency in security tools and technologies
">
• Ability to work effectively in a fast-paced environment
">
• Capacity to stay up-to-date with emerging security threats and trends
">

About Us:

We are a leading organization dedicated to delivering high-quality services and solutions to our clients. Our team is passionate about making a positive impact, and we are committed to fostering a culture of innovation, collaboration, and continuous learning.

Join to apply for the Detection Engineer / Threat Researcher role at ITHR Technologies Consulting LLC

Join to apply for the Detection Engineer / Threat Researcher role at ITHR Technologies Consulting LLC

Job Title: Detection Engineer / Threat Researcher
Location: Remote (Candidates based in India only)
Employment Type: Permanent, Full-time
Employer: Dubai-based Cybersecurity Company
Salary: AED 5,000 6,000 per month
About The Role
We are seeking a skilled and motivated Detection Engineer / Threat Researcher to join our cybersecurity team. You will play a critical role in detecting, analyzing, and responding to cyber threats, ensuring our clients' environments remain secure. This role requires a proactive approach to threat hunting, creating detection rules, and contributing to the development of security operations capabilities.
Key Responsibilities

• Develop, fine-tune, and maintain detection rules and signatures for SIEM, EDR, and IDS/IPS platforms.
• Conduct threat hunting activities to proactively identify malicious activity and anomalies.
• Perform malware analysis, reverse engineering, and behavioral analysis of threats.
• Research and analyze the latest cyber threats, tactics, techniques, and procedures (TTPs).
• Work closely with SOC analysts to improve detection coverage and reduce false positives.
• Maintain detailed threat intelligence repositories and contribute to threat intelligence feeds.
• Collaborate with cross-functional teams to improve incident detection and response processes.
  

• 3+ years of experience in cybersecurity, threat detection, or threat research.
• Proficiency in using SIEM tools (e.g., Splunk, Elastic, Sentinel) and EDR platforms (e.g., CrowdStrike, SentinelOne).
• Strong understanding of MITRE ATT&CK framework and common attack techniques.
• Hands-on experience with detection rule creation (Sigma, YARA, Suricata, etc.).
• Knowledge of malware analysis tools (e.g., IDA Pro, Ghidra, Cuckoo Sandbox).
• Proficiency in scripting languages (Python, PowerShell, Bash) for automation and custom detections.
• Strong analytical skills with attention to detail and the ability to work independently.
  

• Relevant certifications such as GCFA, GCTI, GREM, OSCP, or SANS Blue Team certifications.
• Experience with cloud security monitoring (AWS, Azure, GCP).
• Familiarity with Threat Intelligence Platforms (TIPs).
  

• Permanent, remote role with a Dubai-based employer.
• Work with a cutting-edge cybersecurity team across multiple industries.
• Competitive salary range (AED 5,000 6,000 per month).
• Opportunities for professional growth and certification sponsorship.
  

• Seniority levelNot Applicable

• Employment typeFull-time

• Job functionEngineering and Information Technology
• IndustriesIT Services and IT Consulting

Referrals increase your chances of interviewing at ITHR Technologies Consulting LLC by 2x

Global Village, Dubai, United Arab Emirates 8 months ago

Dubai, Dubai, United Arab Emirates 10 hours ago

Global Village, Dubai, United Arab Emirates 1 month ago

Global Village, Dubai, United Arab Emirates 4 months ago

Global Village, Dubai, United Arab Emirates 2 months ago

Global Village, Dubai, United Arab Emirates 1 month ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

We have an urgent requirement for Information Security Analyst for our client based at Abu Dhabi

• Penetration Testing and Red Teaming: Conduct comprehensive penetration testing and red teaming exercises on systems, networks, applications and mobile to identify vulnerabilities and potential entry points for attackers.
• Develop and execute custom tools and scripts to automate testing and exploitation processes.
• Analyze and report on findings, providing detailed explanations of vulnerabilities and recommended remediation steps.
• Simulate advanced persistent threats (APTs) to test the resilience of security controls and incident response capabilities.
• ASM: Continuously discover and catalog all assets, including hardware, software, and network components.
• ASM: Monitor the attack surface for changes and potential vulnerabilities, using automated tools and manual assessments.

• Perform thorough vulnerability assessments to identify and prioritize security weaknesses.
• Utilize industry-standard tools such as Qualys, Nessus or Nexpose and methodologies to uncover vulnerabilities in various environments.
• Provide actionable recommendations for remediation and mitigation strategies.
• Patch management

• Conduct threat modeling and risk assessments to identify potential attack vectors and vulnerabilities.
• Develop and maintain a comprehensive understanding of our systems, networks, and applications to identify potential vulnerabilities.
• Provide recommendations for remediation and mitigation strategies.

• Participate in security incident response and crisis management efforts as needed.
• Collaborate with incident response teams to contain and remediate security incidents.
• Provide technical expertise and guidance during incident response efforts.

• Stay up-to-date with the latest security threats and trends, and adapt testing methodologies accordingly.
• Develop and maintain a comprehensive knowledge of industry-leading security tools and technologies.
• Participate in security research and development efforts to identify and develop new testing techniques and methodologies.

• Collaborate with development teams to implement security patches and fixes.
• Provide technical guidance and support to development teams on security-related issues.
• Communicate complex technical information to non-technical stakeholders in a clear and concise manner.

• Develop and maintain detailed reports on findings, including vulnerability assessments, penetration testing results, and recommendations for remediation.
• Document testing methodologies, tools, and results in a clear and concise manner.
• Maintain accurate and up-to-date records of testing activities and results.

• Bachelor's degree in Computer Science, Information Assurance, or a related field
• OSCP, CEH, or other relevant certifications
• 5+ years of experience in penetration testing, vulnerability assessment, or a related field
• Strong understanding of networking protocols, operating systems, and applications
• Proficiency in programming languages such as Python, C++, or Java
• Experience with penetration testing frameworks and tools such as Nmap, Nessus, Burp Suite, or Metasploit
• Strong analytical and problem-solving skills
• Excellent communication and reporting skills
• Ability to work independently and as part of a team
• Strong attention to detail and ability to maintain accurate records
• Ability to work in a fast-paced environment with tight deadlines

• Experience with cloud-based technologies and cloud security
• Familiarity with Agile development methodologies
• Strong understanding of compliance and regulatory requirements (e.g., GDPR, PCI-DSS)
• Experience with security orchestration, automation, and response (SOAR) tools
• Familiarity with threat intelligence and threat hunting

• Associate

• Full-time

• Information Technology

• Technology, Information and Internet

Conduct penetration testing and red teaming on systems networks applications and mobile platforms to identify vulnerabilities. Develop and use custom tools/scripts to automate testing and exploitation. Simulate advanced persistent threats (APTs) to assess security controls and incident response. Continuously discover catalog and monitor all assets for attack surface management (ASM). Perform vulnerability assessments using industry-standard tools (e.g. Qualys Nessus Nexpose) and methodologies. Prioritize and provide actionable remediation recommendations for identified vulnerabilities. Participate in patch management activities. Conduct threat modeling and risk assessments to uncover and prioritize potential attack vectors. Collaborate with incident response teams to contain and remediate security incidents. Provide technical guidance and expertise during incident response and crisis management. Stay updated on latest security threats trends and tools; adapt testing methodologies as needed. Participate in security research and develop new testing techniques/methodologies. Work with development teams to implement security patches and provide security guidance. Communicate complex technical findings to both technical and non-technical stakeholders. Develop and maintain detailed documentation and reports on testing results methodologies and remediation steps. Maintain accurate records of all security testing and assessment activities. Ensure compliance with relevant security certifications and regulatory requirements. Demonstrate strong programming skills (e.g. Python C Java) and knowledge of security tools (e.g. Nmap Burp Suite Metasploit). Work independently and collaboratively in a fast-paced environment managing multiple priorities and deadlines.

• Conduct penetration testing and red teaming on systems networks applications and mobile platforms to identify vulnerabilities.
• Develop and use custom tools/scripts to automate testing and exploitation.
• Simulate advanced persistent threats (APTs) to assess security controls and incident response.
• Continuously discover catalog and monitor all assets for attack surface management (ASM).
• Perform vulnerability assessments using industry-standard tools (e.g. Qualys Nessus Nexpose) and methodologies.
• Prioritize and provide actionable remediation recommendations for identified vulnerabilities.
• Participate in patch management activities.
• Conduct threat modeling and risk assessments to uncover and prioritize potential attack vectors.
• Collaborate with incident response teams to contain and remediate security incidents.
• Provide technical guidance and expertise during incident response and crisis management.
• Stay updated on latest security threats trends and tools; adapt testing methodologies as needed.
• Participate in security research and develop new testing techniques/methodologies.
• Work with development teams to implement security patches and provide security guidance.
• Communicate complex technical findings to both technical and non-technical stakeholders.
• Develop and maintain detailed documentation and reports on testing results methodologies and remediation steps.
• Maintain accurate records of all security testing and assessment activities.
• Ensure compliance with relevant security certifications and regulatory requirements.
• Demonstrate strong programming skills (e.g. Python C Java) and knowledge of security tools (e.g. Nmap Burp Suite Metasploit).
• Work independently and collaboratively in a fast-paced environment managing multiple priorities and deadlines.

• Strong programming skills (e.g. Python, C, Java).
• Knowledge of security tools (Nmap, Burp Suite, Metasploit).
• Ability to communicate complex technical findings to technical and non-technical stakeholders.
• Experience with incident response, crisis management, and patch management activities.

• Conduct comprehensive penetration testing and red teaming exercises on systems, networks, applications and mobile to identify vulnerabilities and potential entry points for attackers.
• Develop and execute custom tools and scripts to automate testing and exploitation processes.
• Analyze and report on findings, providing detailed explanations of vulnerabilities and recommended remediation steps.
• Simulate advanced persistent threats (APTs) to test the resilience of security controls and incident response capabilities.
• ASM: Continuously discover and catalog all assets, including hardware, software, and network components.
• ASM: Monitor the attack surface for changes and potential vulnerabilities, using automated tools and manual assessments.
  
  

• Perform thorough vulnerability assessments to identify and prioritize security weaknesses.
• Utilize industry-standard tools such as Qualys, Nessus or Nexpose and methodologies to uncover vulnerabilities in various environments.
• Provide actionable recommendations for remediation and mitigation strategies.
• Patch management
  
  

• Conduct threat modeling and risk assessments to identify potential attack vectors and vulnerabilities
• Develop and maintain a comprehensive understanding of our systems, networks, and applications to identify potential vulnerabilities
• Provide recommendations for remediation and mitigation strategies
  
  

• Participate in security incident response and crisis management efforts as needed
• Collaborate with incident response teams to contain and remediate security incidents
• Provide technical expertise and guidance during incident response efforts
  
  

• Stay up-to-date with the latest security threats and trends, and adapt testing methodologies accordingly
• Develop and maintain a comprehensive knowledge of industry-leading security tools and technologies
• Participate in security research and development efforts to identify and develop new testing techniques and methodologies
  
  

• Collaborate with development teams to implement security patches and fixes
• Provide technical guidance and support to development teams on security-related issues
• Communicate complex technical information to non-technical stakeholders in a clear and concise manner
  
  

• Develop and maintain detailed reports on findings, including vulnerability assessments, penetration testing results, and recommendations for remediation
• Document testing methodologies, tools, and results in a clear and concise manner
• Maintain accurate and up-to-date records of testing activities and results
  
  

• Bachelor's degree in Computer Science, Information Assurance, or a related field
• OSCP, CEH, or other relevant certifications
• 5+ years of experience in penetration testing, vulnerability assessment, or a related field
• Strong understanding of networking protocols, operating systems, and applications
• Proficiency in programming languages such as Python, C++, or Java
• Experience with penetration testing frameworks and tools such as Nmap, Nessus, Burp Suite, or Metasploit
• Strong analytical and problem-solving skills
• Excellent communication and reporting skills
• Ability to work independently and as part of a team
• Strong attention to detail and ability to maintain accurate records
• Ability to work in a fast-paced environment with tight deadlines
  
  

• Experience with cloud-based technologies and cloud security
• Familiarity with Agile development methodologies
• Strong understanding of compliance and regulatory requirements (e.g., GDPR, PCI-DSS)
• Experience with security orchestration, automation, and response (SOAR) tools
• Familiarity with threat intelligence and threat hunting
  
  

Our client is a UAEbased bespoke IT services provider with a strong client base in Abu Dhabi. To support the growth of their cybersecurity service offering our client is seeking to recruit anInformation Security Engineerspecializing inNetwork Detection and Response (NDR)andMobile Device Management (MDM) technologies.

Information Security Engineer ExtraHop & Ivanti
Based in Abu Dhabi UAE

YOUR RESPONSIBILITIES:

• Deploy configure and maintainNDR solutions particularlyExtraHop to detect investigate and respond to security threats and anomalies across the organizations network and endpoints.
  
• Create syntaxes to detect indicators of compromise (IOCs) and malicious behavior from emerging threats. Write and execute queries in NDR systems to search for desired events.
  
• Develop and enforce security policies within NDR systems to strengthen endpoint and network security.
  
• Actively monitor and respond to security incidents conduct proactivethreat hunting and investigate anomalies to identify and neutralize potential security threats.
  
• Integrate NDR systems with other security tools SIEM platforms and threat intelligence sources in collaboration with crossfunctional teams.
  
• Provide training and raise security awareness regardingExtraHopsolutions and best practices among internal teams.
  
• Maintain thorough documentation of configurations policies and procedures related toExtraHop implementations generating detailed reports for compliance and management.
  

• A degree in Information Security Computer Science or a related field.
  
• 5 years of experiencedeploying and managingNDR solutions specificallyExtraHop and managingMDM solutionslikeIvantiorMobileiron.
  
• 5 years of experience in implementation of NDR solutions via ExtraHop and MDM solutions via Ivanti /MobileIron platform is a must.
  
• Indepth knowledge of security policies incident response and threat detection techniques.
  
• Strong problemsolving and analytical skills with experience in threat detection risk management and troubleshooting.
  
• Experience with otherSIEM security products(e.g. Splunk ArcSight Nitro or LogRhythm) andinfrastructure componentssuch as firewalls IDS/IPS and DLP systems.
  
• Excellent project management skills to oversee NDR implementations and integration projects.
  
• Effective communication skills and a passion for technology and cybersecurity.
  

• Join a growing company in the Middle East region.
  
• Competitive remuneration package.
  
• Work with highprofile clients in the UAE.
  

Please apply with an updated resume if you are interested in this opportunity. All applications will be treated as strictly confidential.

Comaea Consulting

We are seeking a highly skilled information security specialist with extensive experience in deploying and migrating Microsoft Defender solutions. This includes Microsoft Defender for Endpoint (MDE), Microsoft Defender for Cloud (MDC), and Microsoft Defender for Identity (MDI).

• Plan, design, and implement Microsoft Defender solutions (MDE, MDC, and MDI) for clients.
• Manage the end-to-end migration process from existing security solutions to Microsoft Defender suite.
• Ensure seamless integration and minimal disruption during the migration process.
• Integrate MDE, MDC, and MDI with existing client infrastructure and other security tools.
• Customize and configure each Defender solution to meet specific client security policies and requirements.
• Optimize security features and settings to enhance threat detection and response capabilities.
• Provide expert-level support during and after the migration phase.
• Troubleshoot and resolve issues related to MDE, MDC, and MDI deployments.

A bachelor's degree in computer science, IT, cybersecurity, or equivalent experience is required.

5+ years of experience as a security engineer are necessary.

Proficiency in MDI, MDC, MDE, excellent analytical and communication skills are also required.

Our team provides a collaborative environment that fosters growth and development opportunities.

With our focus on innovation and excellence, you will have the chance to work on cutting-edge projects and technologies.