Talent.com
عرض العمل هذا غير متوفر في بلدك.
Sr. IT Security Engineer (SIEM, NDR )

Sr. IT Security Engineer (SIEM, NDR )

Total-TECH Co.Riyadh, Riyadh Region, Saudi Arabia
منذ أكثر من 30 يومًا
الوصف الوظيفي

The Job Description

  • Design, deploy, and maintain Splunk Enterprise, and Splunk ES (Enterprise Security) for advanced security analytics.
  • Develop and optimize Splunk dashboards, alerts, correlation searches, and threat intelligence integrations.
  • Manage Splunk data ingestion pipelines, including log parsing, normalization, and enrichment.
  • Integrate and analyze NDR solutions such as Darktrace, ExtraHop, Vectra AI, or Corelight with Splunk.
  • Develop custom detections and alerts based on network anomalies, behavioral analysis, and threat intelligence.
  • Correlate NDR telemetry with SIEM logs to detect advanced network-based attacks (e.g., lateral movement, C2 traffic).
  • Deploy and manage deception technologies such as Illusive Networks, TrapX, Fidelis Deception, or Attivo Networks.
  • Integrate honeypots, decoy systems, and fake credentials to lure and detect adversaries.
  • Create and fine-tune custom deception campaigns to simulate real-world attack scenarios.
  • Automate deception-related alerts and incident response workflows within Splunk ES & SOAR.
  • Design correlation rules, SIEM-based threat models, and security detections aligned with MITRE ATT&CK.
  • Collaborate with SOC teams to enhance incident detection and response capabilities.
  • Conduct log management audits, forensic investigations, and security assessments.
  • Document Splunk configurations, runbooks, and security procedures.

Requirements :

  • 5+ years of experience as a Splunk Engineer, SIEM Engineer, or Security Operations Engineer.
  • Expertise in Splunk ES, Splunk SOAR, and Splunk search processing language (SPL).
  • Hands-on experience with Network Detection & Response (NDR) platforms like Darktrace, ExtraHop, Vectra AI, or Corelight.
  • Experience with security deception tools such as Attivo Networks, Illusive Networks, or Fidelis Deception.
  • Strong understanding of network security, log analysis, and SIEM threat detection methodologies.
  • Splunk Certified Architect or Splunk Enterprise Security Certified Admin.
  • Bachelor’s or Master’s degree in Cybersecurity, Computer Science, Information Security, or a related field (or equivalent experience).

    • #J-18808-Ljbffr

    إنشاء تنبيه وظيفي لهذا البحث

    Security Engineer • Riyadh, Riyadh Region, Saudi Arabia

    وظائف ذات صلة
    Sr. Network Security Engineer

    Sr. Network Security Engineer

    Innovative SolutionsRiyadh, Riyadh Province, SA
    Quick Apply
    Innovative Solutions (IS) is a leading pure-player Cybersecurity company in the GCC, established in 2003 and headquartered in Riyadh, with a presence in Al Khobar, Jeddah, Dubai, and Abu Dhabi.Our ...أظهر المزيدآخر تحديث: منذ أكثر من 30 يومًا
    • عَرْضٌ مُرَوَّجٌ له
    L2 F5 Application Security Engineer – Edge Protection

    L2 F5 Application Security Engineer – Edge Protection

    DXC TechnologyRiyadh, Riyadh Region, Saudi Arabia
    L2 F5 Application Security Engineer – Edge Protection.Job location : onsite in Riyadh.At DXC Technology, we believe strong connections and community are key to our success.Our work model prioritizes...أظهر المزيدآخر تحديث: منذ أكثر من 30 يومًا
    • عَرْضٌ مُرَوَّجٌ له
    Security System Engineer

    Security System Engineer

    ConfidentialRiyadh, Saudi Arabia
    We are seeking a highly capable and hands-on System Engineer to lead the design, installation, configuration, and integration of IT, telecom, and RF systems. The role is primarily based at customer ...أظهر المزيدآخر تحديث: 23 منذ أيام
    • عَرْضٌ مُرَوَّجٌ له
    Sr. Microsoft 365 Security Engineer

    Sr. Microsoft 365 Security Engineer

    Total-TECH Co.Riyadh, Riyadh Region, Saudi Arabia
    Configure and manage Microsoft Defender for Endpoint, Office 365, Identity, and Cloud Apps to detect and prevent threats. Implement and maintain Microsoft Purview Compliance solutions (DLP, Insider ...أظهر المزيدآخر تحديث: منذ أكثر من 30 يومًا
    • عَرْضٌ مُرَوَّجٌ له
    Sr. IT Security Engineer (SIEM, NDR )

    Sr. IT Security Engineer (SIEM, NDR )

    Total-TECH Co.Riyadh, Saudi Arabia
    Design, deploy, and maintain Splunk Enterprise, and Splunk ES (Enterprise Security) for advanced security analytics.Develop and optimize Splunk dashboards, alerts, correlation searches, and threat ...أظهر المزيدآخر تحديث: منذ أكثر من 30 يومًا
    • عَرْضٌ مُرَوَّجٌ له
    Resident Network and Security Engineer - Senior

    Resident Network and Security Engineer - Senior

    Digital Future Middle East (DFME)Riyadh, Saudi Arabia
    Senior Network & Security Engineer on-site at customers\' premises in Riyadh, KSA.Requires deep expertise in Cisco and Fortinet networking and security technologies, strong firewall management skil...أظهر المزيدآخر تحديث: 25 منذ أيام
    • عَرْضٌ مُرَوَّجٌ له
    Senior Information Security Presales Engineer

    Senior Information Security Presales Engineer

    InovasysRiyadh, Saudi Arabia
    Senior Information Security Presales Engineer.Get AI-powered advice on this job and more exclusive features.Job Summary We are looking for a highly skilled Senior Information Security Presales Engi...أظهر المزيدآخر تحديث: منذ أكثر من 30 يومًا
    • عَرْضٌ مُرَوَّجٌ له
    Expert IT Security Operation

    Expert IT Security Operation

    Master WorksRiyadh, Saudi Arabia
    Master Works is hiring for one our Subsidiary (Soor Cybersecurity) Expert IT Security Operation Job Description : Responsible for developing, implementing, and maintaining enterprise-level informati...أظهر المزيدآخر تحديث: منذ أكثر من 30 يومًا
    • عَرْضٌ مُرَوَّجٌ له
    Senior Information Security Engineer

    Senior Information Security Engineer

    TabbyRiyadh, Saudi Arabia
    We’re looking for an experienced and proactive.Senior Information Security Engineer.You’ll lead complex investigations, shape our detection capabilities, and provide strategic input into incident r...أظهر المزيدآخر تحديث: منذ أكثر من 30 يومًا
    Security System Engineer (Saudi Arabia)

    Security System Engineer (Saudi Arabia)

    Eram TalentRiyadh, Riyadh Province, SA
    Quick Apply
    Eram Talent is seeking a proficient Security System Engineer to join our client in Saudi Arabia.In this role, you will be responsible for the design, implementation, and maintenance of advanced sec...أظهر المزيدآخر تحديث: 26 منذ أيام
    • عَرْضٌ مُرَوَّجٌ له
    Sr. IT Security Engineer (NAC,NDR)

    Sr. IT Security Engineer (NAC,NDR)

    Total-TECH Co.Riyadh, Riyadh Region, Saudi Arabia
    Configure and maintain Forescout Counter ACT for network access control, device profiling, and policy enforcement.Operate Forescout policies to control access for wired & wireless users.Operate and...أظهر المزيدآخر تحديث: منذ أكثر من 30 يومًا
    • عَرْضٌ مُرَوَّجٌ له
    Security System Engineer (Saudi Arabia)

    Security System Engineer (Saudi Arabia)

    Eram GroupRiyadh, Riyadh Region, Saudi Arabia
    Eram Talent is seeking a proficient Security System Engineer to join our client in Saudi Arabia.In this role, you will be responsible for the design, implementation, and maintenance of advanced sec...أظهر المزيدآخر تحديث: 23 منذ أيام
    • عَرْضٌ مُرَوَّجٌ له
    L2 F5 Application Security Engineer – Edge Protection

    L2 F5 Application Security Engineer – Edge Protection

    DXC Technology Inc.Riyadh, Saudi Arabia
    L2 F5 Application Security Engineer – Edge Protection page is loaded L2 F5 Application Security Engineer – Edge Protection Apply locations SAU - RIYADH time type Full time posted on Posted 4 Days A...أظهر المزيدآخر تحديث: منذ أكثر من 30 يومًا
    • عَرْضٌ مُرَوَّجٌ له
    Security Engineer Lead

    Security Engineer Lead

    weai labsRiyadh, Riyadh Region, Saudi Arabia
    Leading the future in luxury electric and mobility.At Lucid, we set out to introduce the most captivating, luxury electric vehicles that elevate the human experience and transcend the perceived lim...أظهر المزيدآخر تحديث: منذ أكثر من 30 يومًا
    • عَرْضٌ مُرَوَّجٌ له
    L3 F5 Application Security Engineer

    L3 F5 Application Security Engineer

    DXC TechnologyRiyadh, Saudi Arabia
    Overview Join to apply for the.L3 F5 Application Security Engineer.Technical Support & Incident Management : Provide expert-level 9x5 support for F5 Access Policy Manager, F5 Web Application Firewal...أظهر المزيدآخر تحديث: 25 منذ أيام
    • عَرْضٌ مُرَوَّجٌ له
    Cyber Security Engineer

    Cyber Security Engineer

    NuSummit CybersecurityRiyadh, Saudi Arabia
    Overview Direct message the job poster from NuSummit Cybersecurity.We are seeking an experienced Senior SailPoint IdentityIQ (IIQ) Developer to join our cybersecurity and identity governance team i...أظهر المزيدآخر تحديث: 9 منذ أيام
    IT Security Architect

    IT Security Architect

    SWATXRiyadh, Riyadh Province, SA
    Quick Apply
    The IT Security Architect is responsible for designing and implementing robust security architectures within the organization. This role involves analyzing security requirements and creating archite...أظهر المزيدآخر تحديث: منذ أكثر من 30 يومًا
    • عَرْضٌ مُرَوَّجٌ له
    SOC Resident Engineers L2 & L3

    SOC Resident Engineers L2 & L3

    EverythinginclickRiyadh, Saudi Arabia
    Job Description of SOC Resident Engineers L2 & L3.We are looking for SOC Resident Engineers (L2 & L3) to join our growing cybersecurity team. In this role, you will serve as a frontline defender, en...أظهر المزيدآخر تحديث: منذ أكثر من 30 يومًا
    • عَرْضٌ مُرَوَّجٌ له
    Senior Network Security Engineer

    Senior Network Security Engineer

    Emdad By ElmRiyadh, Riyadh Region, Saudi Arabia
    Senior Network Security Engineer.We are seeking a highly skilled and experienced.The ideal candidate will have a strong background in designing, implementing, and managing enterprise-level security...أظهر المزيدآخر تحديث: 16 منذ أيام
    • عَرْضٌ مُرَوَّجٌ له
    L3 F5 Application Security Engineer (9x5 Support)

    L3 F5 Application Security Engineer (9x5 Support)

    DXC TechnologyRiyadh, Saudi Arabia
    Overview L3 F5 Application Security Engineer (9x5 Support) at DXC Technology.Provide expert-level 9x5 support for F5 Access Policy Manager, F5 Web Application Firewall, and Infoblox DNS Security en...أظهر المزيدآخر تحديث: منذ أكثر من 30 يومًا