IT SECURITY OPERATIONS ENGINEER

Duncan & Ross عرض جميع الوظائف

  • الرياض
  • دائم
  • دوام كامل
  • قبل 16 يوم
  • التقديم على الوظيفة بسهولة
IT Security Operations Engineer (Command Center)SummaryThe OT Security Operations Engineer is responsible for supporting and maintaining the organization's Operational Technology (OT) security controls, with a primary focus on OT firewalls and Nozomi Guardian. The engineer performs continuous monitoring, investigations, policy maintenance, and operational support for security technologies protecting corporate and asset environments. This role will be a part of the IT Security Operations team to ensure the integrity, availability, and resilience of critical infrastructure. The IT Security Operations Engineer will work in the Command Center providing moderate-level operational support for all enterprise IT security controls used in the organization.Key ResponsibilitiesPerform scheduled operational checks on the following platforms:
  • Proofpoint Email Security (inbound/outbound mail flow, quarantine, TAP alerts)
  • Microsoft Defender XDR (Endpoint alerts, device health, AV signature status)
  • Zscaler Internet Access / ZPA (tunnel status, policy errors)
  • FortiGate / Palo Alto / Cisco Firewalls / OT Firewalls
  • Forescout (endpoint visibility and compliance checks)
OT Firewall Operations
  • Perform daily and weekly health checks on OT firewalls (Fortinet, Palo Alto, Cisco, or other industrial firewalls)
  • Review and optimize OT firewall policies, zones, and rule sets
  • Assist in implementing and validating rule changes, NAT policies, and segmentation controls
  • Troubleshoot issues related to OT network communication, VPN tunnels, and firewall performance
Incident Response Support
  • Lockdown/isolate endpoints via Microsoft Defender
  • Gather logs from firewalls, Cloudflare, Zscaler, Proofpoint, Splunk
  • Assist with user communication during incidents
  • Update ticketing system with accurate timelines and findings
Documentation & Reporting
  • Maintain shift logs, incident summaries, and dashboard status
  • Generate daily, weekly, and monthly security operations reports
  • Update SOPs and runbooks for product-specific tasks
Technical SkillsModerate understanding and troubleshooting skills across:
  • Proofpoint PPS/PTR/CTR
  • Zscaler ZIA/ZPA
  • FortiGate, Palo Alto, Cisco, OT Firewalls
  • NAC tools (Forescout)
  • Good understanding of networking (TCP/IP, VPN, DNS, HTTP/S)
Experience
  • 3–5 years in IT Security or IT Operations in a large enterprise environment
  • Experience with the OT tools listed above is a must
  • Solid troubleshooting and analytical skills
  • Certifications (optional but beneficial):
  • Security+
  • ISA/IEC 62443 cybersecurity knowledge
  • CCNP Security
  • Zscaler ZIA/ZPA Foundations
  • Fortinet NSE4 / Palo Alto PCNSA
Key Deliverables
  • Flexible to work in rotation (shifts — weekdays and weekends) — Mandatory
  • Timely triage and escalation of alerts across security platforms
  • Accurate daily health checks for all products
  • Shift handover logs and incident documentation
  • First-level troubleshooting for all security tools
EducationBachelor's degree in Cybersecurity, Computer Science, Information Security, or a related field (or equivalent experience).Vertical: Technology

Duncan & Ross