Analyst, Information Security
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
Tabby is seeking an Information Security Analyst (Defensive Security) to support security architecture, cloud security, SDLC practices, and incident response. This entry-level role is ideal for recent graduates with a degree in IT, Computer Science, or Cybersecurity.
Key Skills for This Role
Responsibilities
- Assist senior architects in documenting and maintaining security architecture designs for IT projects.
- Support the review of proposed system designs and configurations by checking them against established security baselines.
- Help maintain up to date architecture diagrams, design documentation, and security control mappings.
- Assist in monitoring the organization's cloud environments (GCP/AWS) for misconfigurations using CSPM tools.
- Support the review and documentation of cloud infrastructure configurations against security best practices.
- Help track and document CI/CD pipeline security findings and assist in preparing remediation recommendations.
- Assist in integrating and operating security tools within CI/CD pipelines (e.g., SAST, DAST, dependency scanning).
- Help review and triage automated security scan results from SAST and DAST tools.
- Assist in executing pre defined vulnerability assessment test cases for web, mobile, API, and infrastructure targets.
- Support infrastructure vulnerability scanning activities using approved tools.
- Assist in the administration and monitoring of enterprise endpoint protection solutions (AV/EDR), including alert triage.
- Assist in developing and maintaining security assessment checklists and testing models.
Requirements
- Bachelor's degree in Information Technology, Computer Science, Software Engineering, Cybersecurity, or a related field
- Recent graduates and fresh university leavers are strongly encouraged to apply — no prior professional experience is required.
- Academic projects, capstone work, or self directed labs involving networking, cloud, or application security will be considered favorably.
- Any internship, academic project, or personal lab experience related to cybersecurity, networking, or software development is a strong advantage.
Full Job Posting
Overview
- The Cyber Security Analyst (Defensive Security) supports the organization's security architecture and infrastructure protection functions under the close guidance of senior security architects and engineers. The role contributes to securing cloud environments, maintaining endpoint protection solutio
Key Responsibilities
- Assist senior architects in documenting and maintaining security architecture designs for IT projects, ensuring alignment with the organization's security standards and regulatory requirements.
- Support the review of proposed system designs and configurations by checking them against established security baselines and flagging gaps for senior review.
- Help maintain up to date architecture diagrams, design documentation, and security control mappings across assigned systems and platforms.
- Participate in cross functional meetings with IT, DevOps, and Risk Management teams as an observer and note taker, gaining exposure to security strategy discussions.
- Assist in monitoring the organization's cloud environments (GCP/AWS) for misconfigurations and security posture issues using Cloud Security Posture Management (CSPM) tools.
- Support the review and documentation of cloud infrastructure configurations (e.g., GCP, Terraform, Kubernetes) against security best practices under senior guidance.
- Help track and document CI/CD pipeline security findings and assist in preparing remediation recommendations for engineering teams.
- Learn and apply foundational cloud security concepts including identity and access management, network segmentation, and secrets management in cloud native environments.
- Assist in integrating and operating security tools within CI/CD pipelines (e.g., SAST, DAST, dependency scanning) under the direction of senior engineers.
- Help review and triage automated security scan results from SAST and DAST tools, categorizing findings and escalating critical issues for senior review.
- Support source code review activities by following established checklists and flagging common vulnerability patterns (e.g., OWASP Top 10) for senior validation.
- Assist in maintaining documentation of security checkpoints and tool configurations across the development pipeline.
Skills, Knowledge and Expertise
- Bachelor's degree in Information Technology, Computer Science, Software Engineering, Cybersecurity, or a related field.
- Recent graduates and fresh university leavers are strongly encouraged to apply — no prior professional experience is required.
- Academic projects, capstone work, or self directed labs involving networking, cloud, or application security will be considered favorably.
- No mandatory professional experience required.
- Any internship, academic project, or personal lab experience related to cybersecurity, networking, or software development is a strong advantage.
- Exposure to regulated environments (Fintech, banking) is a plus but not required.
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at Tabby
Vendor Manager
الرياض, KSA
Tabby is hiring a Vendor Risk Manager to own the third-party risk program end-to-end, from due diligence to offboarding. Requires 3-4 years in third-party risk management, knowledge of NIST CSF, ISO 27001, SOC 2, and str
Intern QA Engineer
Riyadh, KSA
Tabby is looking for an Intern QA Engineer to join their team in Riyadh. This is an engineering role with real responsibility, focusing on product quality across multiple systems. Interns will work on production tasks, i
Intern Backend (Go) Engineer
الرياض, KSA
Tabby offers a paid backend engineering internship for strong early-career engineers. Interns work on production code in Go, developing and maintaining backend services, APIs, and data storage for high-load financial sys
Finance Manager (Financial Control)
Riyadh, KSA
Tabby is looking for a Finance Manager to support finance operations for its Saudi Arabia entity, ensuring accurate financial reporting, regulatory compliance, and strong financial governance. The role oversees statutory
Intern QA Engineer
الرياض, KSA
Tabby is seeking an Intern QA Engineer to join their engineering team in Riyadh. This is a paid internship with real responsibility, focusing on product quality across multiple systems. Candidates should have programming
DevOps Intern
الرياض, KSA
Tabby offers a paid DevOps internship for strong early-career engineers in Riyadh. Interns work on production cloud infrastructure, Kubernetes, CI/CD, and observability with real responsibility and a path to a junior rol
DBA Intern
الرياض, KSA
Tabby offers a paid DBA internship for strong early-career engineers to work on production database systems including PostgreSQL. Interns will investigate slow queries, review schema changes, maintain backups, and suppor
Senior Tax Associate
Riyadh, KSA
Tabby is seeking a Senior Tax Associate to manage tax compliance, audits, and transfer pricing across KSA and the GCC region. The role requires 2-3 years of tax experience, strong knowledge of Saudi tax regulations, and
Vendor Manager
الرياض, KSA
Intern QA Engineer
Riyadh, KSA
Intern Backend (Go) Engineer
الرياض, KSA
Finance Manager (Financial Control)
Riyadh, KSA
Intern QA Engineer
الرياض, KSA
DevOps Intern
الرياض, KSA
DBA Intern
الرياض, KSA
Senior Tax Associate
Riyadh, KSA
