Staff Infrastructure & Security Engineer

Staff Infrastructure & Security Engineer Mozn is a rapidly growing technology firm revolutionising the field of Artificial Intelligence and Data Science headquartered in Riyadh, Saudi Arabia and it’s working to realise Vision 2030 with a proven track record of excellence in supporting and growing the tech ecosystem in Saudi Arabia and the GCC region. Mozn is the trusted AI technology partner for some of the largest government organisations, as well as many large corporations and startups.

We are in an exciting stage of scaling the company to provide AI-powered products and solutions both locally and globally that ensure the growth and prosperity of our digital humanity. It is an exciting time to work in the field of AI to create a long-lasting impact.

About the role As a Staff Infrastructure & Security Engineer, you will lead the design, implementation, and maintenance of Mozn’s security infrastructure. Reporting to the CISO, you will work closely with IT and Engineering teams to protect Mozn’s networks, servers, and cloud services against threats. You will secure cloud environments (GCP / OCI / AWS / Azure), manage on-premise and cloud networking (firewalls, VPNs, etc.), and oversee security monitoring and incident response within the Cybersecurity Operations Team. This senior role carries end-to-end responsibility for infrastructure security – from preventative measures like architecture hardening and vulnerability management to responsive measures like incident investigation and remediation.

What you’ll do

Design, implement, and maintain security infrastructure : architect and manage the organization’s security tools, networks, and systems to ensure a robust defense. This includes firewalls, intrusion detection / prevention systems, VPN gateways, and cloud security controls. For example, you will evaluate and deploy solutions such as next-generation firewalls and SD‑WAN for our new offices, and ensure secure configurations in on‑premises and cloud environments

Take ownership of security for Mozn’s cloud platforms. Implement best practices for cloud security posture management, identity and access management, network segmentation, and monitoring across these services. Ensure that containerized workloads and Kubernetes clusters (e.g., GKE) are secured, working with DevOps to deploy cloud security sensors and controls.

Monitor security alerts and events across infrastructure, using our SIEM and MDR platforms. Analyze logs and alerts for signs of incidents. Respond to and investigate security incidents and breaches, coordinating containment and recovery efforts. Work closely with our managed SOC service to triage incidents and implement preventive improvements

Conduct regular security assessments, scans, and penetration tests to identify vulnerabilities in systems and networks. Manage Mozn’s vulnerability management program, using tools for continuous scanning and risk prioritization. Work with system owners to remediate findings and verify fixes, thereby strengthening Mozn’s security posture

Develop and enforce security protocols, policies, and procedures to protect sensitive information and systems. Ensure that infrastructure security controls align with internal policies and external standards (ISO 27001) and regulations. You will help maintain compliance with SAMA CSF and NCA ECC requirements, embedding these controls into daily operations. This includes managing access controls, patch management, backup / DR processes, and other operational security tasks in accordance with policy

Oversee day‑to‑day security of networks, servers, and endpoints. This entails managing network security devices (firewalls, IDS / IPS), securing LAN / WAN connectivity, and maintaining site‑to‑site VPNs (e.g., supporting IPSEC tunnels between corporate and cloud networks). Ensure proper configuration and updating of security appliances and coordinate with IT on infrastructure changes under change management policies

Work closely with IT, DevOps, and Engineering teams to embed security in all projects and operations. Provide guidance on securely configuring cloud resources, reviewing architecture for security implications, and supporting dev teams with environment setups (e.g., secure VPC designs, network ACLs). Communicate and collaborate with other departments to resolve any security issues or gaps that overlap with their area, ensuring security is a shared responsibility

Act as a subject‑matter expert for cybersecurity best practices within the Cybersecurity team and the wider organization. Provide guidance or training to internal teams on secure system use, cloud security, and new threats. Keep up‑to‑date with the latest cybersecurity threats, tools, and technologies and proactively recommend enhancements to our security posture

Qualifications

Bachelor’s or master’s degree in computer science, Information Security, or a related field, equivalent experience and professional training will also be considered

7+ years of hands‑on experience in cybersecurity engineering or infrastructure security roles, including experience in security operations. Proven expertise in managing and securing cloud environments (GCP, AWS, OCI, and / or Azure) is required. The ideal candidate has a track record of implementing security measures across both on‑premise and cloud infrastructure

Technical Skills :

Cloud Security : Deep understanding of cloud security architectures and services on AWS, Azure, OCI, and GCP (IAM, VPC network security, security groups, cloud monitoring, etc.). Experience protecting containerized and serverless environments (e.g., securing Kubernetes clusters)

Network & System Security : Strong knowledge of enterprise network design and security – including firewalls, VPNs, IDS / IPS, zero‑trust network access, and network segmentation. Experience configuring and managing security devices (firewalls, routers, VPN concentrators) and securing Linux / Windows servers via hardening and patching

Security Monitoring & Tools : Hands‑on experience with security monitoring and incident management tools. For example, proficiency in using SIEM platforms and EDR solutions for detecting and analyzing threats. Experience with vulnerability scanners for continuous vulnerability management. Knowledge of SAST / DAST tools and DevSecOps practices is a plus

Standards & Frameworks : Good understanding of information security frameworks and standards : ISO / IEC 27001, NIST CSF, and importantly Saudi‑specific frameworks like SAMA Cybersecurity Framework and NCA Essential Cybersecurity Controls. The candidate should be able to map technical controls to these standards and ensure ongoing compliance

Analytical & Problem‑Solving : Excellent analytical skills to assess complex systems and investigate incidents. Ability to perform root‑cause analysis on security events and vulnerabilities and drive pragmatic solutions. Should be comfortable handling urgent incident response as well as longer‑term project work

Strong communication skills – able to document security architectures, write clear policies / procedures, and report on risks and incidents to management. Capable of collaborating in cross‑functional teams and explaining security topics to technical and non‑technical colleagues. Attention to detail and a proactive mindset are critical. The role also demands leadership in execution, taking initiative to improve processes and mentor team members in security best practices

Preferred Certifications

Cloud Security Certifications : e.g. AWS Certified Security – Specialty , Microsoft Certified : Azure Security Engineer , or GCP Professional Cloud Security Engineer – Oracle Cloud Infrastructure 2025 Security Professional .

Security Management Certifications : e.g. Certified Information Systems Security Professional (CISSP) validating broad security knowledge and leadership capability

Technical Security Certifications : e.g. Certified Cloud Security Professional (CCSP)

Any certification in specialized domains like network (CCNP Security) or systems (Linux security) are a plus

You will be at the forefront of an exciting time for the Middle East, joining a high‑growth rocket‑ship in an exciting space.

You will be given a lot of responsibility and trust. We believe that the best results come when the people responsible for a function are given the freedom to do what they think is best.

The fundamentals will be taken care of : competitive compensation, top‑tier health insurance, and an enabling culture so that you can focus on what you do best.

You will enjoy a fun and dynamic workplace working alongside some of the greatest minds in AI.

We believe strength lies in difference, embracing all for who they are and empowered to be the best version of themselves.

#J-18808-Ljbffr