IT Security Engineer
Founded in 1982, Saeed R Al-Zahrani Corp. (SRACO) is one of the oldest and well known independent company in Saudi Arabia. Headquartered in Dammam, SRACO has offices in Riyadh and Jeddah. As a conglomerate of Saeed Raddad Group, SRACO has a workforce of over 7000 employees gainfully employed throughout the Kingdom. SRACO has reputation of being a professional organization over 25 years of being in business. Our operations and processes are matured over years of qualitative performance, desire to continuously improve the quality, strive to improve customer satisfaction and be a long term partner.
Job Details
Industry Type: IT - Software Services
Functional Area: IT - Software
Location of Job Eastern Province - Saudi Arabia
Job Description Audit and Compliance
1. Coordinate External & Internal Audit, Coordinate Implementation of audit recommendations with operation sections and Ensure systems in compliance with CIT Standards.
2. Create and Maintain system security Checklist to ensure compliance from day one and doing compliance assessment check. Incident Management
1. coordinate the incident management efforts and provide continues update to management. 2. Perform RCA (Root Cause Analysis) and provide CAPA (Corrective Action & Preventive Action) report to management with monthly overview of incidents. Risk Management 1. Perform Risk Assessments and produce Risk Analysis reports. 2. Coordinate implementation of Risk Treatment plans with DCS Operation Teams Security Awareness 1. Monthly quiz 2. E-mail awareness 3. Awareness During DCS gathering 4. DCS monthly security update to management 5. SMT periodical update of IT DCS security Progress Vulnerability & Penetration 1. Coordinate Penetration tests and vulnerability assessment 2. Follow up with DCS operation teams to close the vulnerabilities
Desired Candidate's Profile
Profile 1. 3+ years of experience in information security functions 2. deep knowledge of vulnerability management and counter-measures for Windows and Unix/Linux platforms. 3. Strong understanding of auditing, planning and maintaining security policies, procedures, and guidelines . 4. Performing detailed and ongoing risk assessment and risk analysis to determine security heath check. 5. Hands-on experience in security incident management and root cause analysis. 6. strong presentation, reporting, problem-solving and communication skills. 7. Prepare Monthly quiz & send E-mail awareness and Awareness sessions to other sections . 8. CISSP, CCSP, GIAC, and CISM is preferred!
Education Basic - Bachelors in Computer Application ( Computers )
Nationality Any Nationality
Founded in 1982, Saeed R Al-Zahrani Corp. (SRACO) is one of the oldest and well known independent company in Saudi Arabia. Headquartered in Dammam, SRACO has offices in Riyadh and Jeddah. As a conglomerate of Saeed Raddad Group, SRACO has a workforce of over 7000 employees gainfully employed throughout the Kingdom. SRACO has reputation of being a professional organization over 25 years of being in business. Our operations and processes are matured over years of qualitative performance, desire to continuously improve the quality, strive to improve customer satisfaction and be a long term partner.
Job Details
Industry Type: IT - Software Services
Functional Area: IT - Software
Location of Job Eastern Province - Saudi Arabia
Job Description Audit and Compliance
1. Coordinate External & Internal Audit, Coordinate Implementation of audit recommendations with operation sections and Ensure systems in compliance with CIT Standards.
2. Create and Maintain system security Checklist to ensure compliance from day one and doing compliance assessment check. Incident Management
1. coordinate the incident management efforts and provide continues update to management. 2. Perform RCA (Root Cause Analysis) and provide CAPA (Corrective Action & Preventive Action) report to management with monthly overview of incidents. Risk Management 1. Perform Risk Assessments and produce Risk Analysis reports. 2. Coordinate implementation of Risk Treatment plans with DCS Operation Teams Security Awareness 1. Monthly quiz 2. E-mail awareness 3. Awareness During DCS gathering 4. DCS monthly security update to management 5. SMT periodical update of IT DCS security Progress Vulnerability & Penetration 1. Coordinate Penetration tests and vulnerability assessment 2. Follow up with DCS operation teams to close the vulnerabilities
Desired Candidate's Profile
Profile 1. 3+ years of experience in information security functions 2. deep knowledge of vulnerability management and counter-measures for Windows and Unix/Linux platforms. 3. Strong understanding of auditing, planning and maintaining security policies, procedures, and guidelines . 4. Performing detailed and ongoing risk assessment and risk analysis to determine security heath check. 5. Hands-on experience in security incident management and root cause analysis. 6. strong presentation, reporting, problem-solving and communication skills. 7. Prepare Monthly quiz & send E-mail awareness and Awareness sessions to other sections . 8. CISSP, CCSP, GIAC, and CISM is preferred!
Education Basic - Bachelors in Computer Application ( Computers )
Nationality Any Nationality
