Senior Cybersecurity Specialist at BMC

Jeddah, Makkah Region, Saudi Arabia -

Full Time

Start Date

Immediate

Expiry Date

04 Jul, 26

Salary

0.0

Posted On

05 Apr, 26

Experience

10 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Firewall Management, Endpoint Security, Email Security, Network Detection and Response, Vulnerability Assessment, Penetration Testing, Patch Management, SIEM, Web Application Firewall, Azure Cloud Security, Incident Response, Identity and Access Management, Zero Trust, Cybersecurity Frameworks, Risk Mitigation

Industry

Primary and Secondary Education

Description

Job Summary: The Senior Cybersecurity Specialist will be responsible for managing and enhancing the BMC’s cybersecurity posture by implementing, monitoring, and maintaining advanced security solutions. The role requires expertise in next-generation firewalls, endpoint security EDR and XDR, email security, network detection and response (NDR), vulnerability assessment and penetration testing VAPT, patch management, and cloud security. The ideal candidate will ensure compliance with industry best practices and regulatory requirements while proactively defending against cyber threats. Key Responsibilities: Firewall Management: Configure, maintain, and optimize next-generation firewalls, including Palo Alto, Fortinet, and Sophos, ensuring robust perimeter security. Endpoint Security: Oversee the deployment and management of endpoint protection solutions EDR and XDR such as Trend Micro, Sophos, and Cortex ensuring protection against malware, ransomware, and other threats. Email Security: Implement and monitor email security solutions to prevent phishing, spam, and other email-based cyber threats. Network Security & NDR: Manage network security tools and Network Detection & Response (NDR) solutions to detect and mitigate advanced threats in real-time. Vulnerability Assessment and Penetration Testing: Conduct regular VAPT to identify security gaps and recommend corrective actions. Patch Management: Develop and maintain an efficient patch management strategy to ensure timely updates and minimize security risks. Security Information and Event Management (SIEM): Administer and optimize SIEM solutions to monitor, analyze, and respond to security incidents effectively. Web Application Firewall (WAF): Configure and manage WAF solutions to protect web applications from attacks such as SQL injection and cross-site scripting (XSS). Azure Cloud Security: Implement and oversee security controls in Azure including identity and access management (IAM), encryption, and network security groups, ensuring compliance with cloud security best practices. Incident Response: Lead cybersecurity incident response efforts, conducting root cause analysis and implementing remediation measures. Security Compliance & Best Practices: Ensure adherence to cybersecurity frameworks (NCA, NIST, ISO 27001, etc.) and regulatory requirements. Security Awareness & Training: Conduct training sessions to educate employees on cybersecurity best practices and threat mitigation. Requirements Qualifications & Skills: Master’s or bachelor’s degree in Cybersecurity, Information Security, or a related field. Professional certifications such as CISSP, CISM, CEH, CompTIA Security+, Palo Alto PCNSE, Fortinet NSE, and Azure Security Engineer or equivalent are highly desirable. Minimum of 8-15 years of experience in cybersecurity roles, with hands-on experience in managing firewalls, endpoint security, and cloud security. Strong knowledge of security technologies, including SIEM, NDR, WAF, and vulnerability management tools. Experience with Azure security tools and configurations. Familiarity with compliance frameworks and industry standards. Excellent analytical, troubleshooting, and problem-solving skills. Strong communication and documentation abilities. Familiarity with Zero Trust security models and implementation

Responsibilities

The Senior Cybersecurity Specialist will manage and enhance the organization's security posture by implementing advanced solutions like firewalls, EDR, and NDR. They will also lead incident response efforts, conduct vulnerability assessments, and ensure compliance with industry frameworks.