Senior IT Cyber Security Assurance and Risk Specialist
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
ENEC Operations seeks a Senior IT Cyber Security Assurance and Risk Specialist to protect information systems by performing penetration testing, vulnerability management, and security assessments.
Key Skills for This Role
Responsibilities
- Scope and perform penetration testing on systems, networks, and applications to identify vulnerabilities.
- Lead the vulnerability management program including assessments, reporting, prioritization, and remediation validation.
- Perform Red team activities including exploitation, breach attack simulations, and phishing campaigns.
- Conduct technical investigations of cybersecurity events and incidents, designing and recommending effective mitigations.
- Develop and implement cloud security strategies and plans to protect cloud based systems, networks, and data.
- Perform Secure Architecture Reviews for upcoming projects.
- Provide technical guidance and support to IT teams on security related matters.
Requirements
- Bachelor's Degree
- 3 years of experience in IT security (or equivalent combination of education and experience)
- Professional certifications such as CEH, ECSA, OSCP, CISSP, GPEN, or Cloud Security Certifications
Full Job Posting
Job Purpose
- The purpose of the IT Cyber Security Assurance and Risk Specialist role is to continuously improve the protection of information systems by preventing unauthorized disclosure or modification. This involves coordinating with system owners and internal stakeholders to enhance Nawah's security posture.
Key Activities, Responsibility & Accountability
- Scope and perform penetration testing on systems, networks, and applications to identify vulnerabilities.
- Utilize manual and automated testing methods to find and exploit code flaws, misconfigurations, and insecure software.
- Use penetration testing tools and frameworks such as Metasploit, Nmap, Nessus, Burp Suite, Wireshark, Aircrack ng, SQLmap, Tenable, John the Ripper, Hydra, OWASP ZAP, SOAP UI, Echo mirage etc.
- Write clear and concise penetration testing reports detailing findings and recommendations.
- Plan and provide technical trainings to junior team members for their professional development and growth.
- Perform On demand and scheduled security assessments on enterprise solutions.
- Perform Red team activities including but not limited to exploitation of identified vulnerabilities, perform breach attack simulations, phishing campaigns, collaboration with blue team to improve monitoring and defence measures.
- Lead the vulnerability management program by performing scheduled and on demand vulnerability assessments, vulnerability reporting, vulnerability prioritization, provide recommendations for remediation of identified vulnerabilities, validate remediation of mitigated vulnerabilities.
- Work on Endpoint Detection and Response tool for operations and investigations.
- Perform Secure Architecture Reviews for upcoming projects.
- Conduct technical investigations of cybersecurity events and incidents, designing and recommending effective mitigations.
- Stay updated on the latest security trends, threats, and technologies.
Responsibilities & Accountabilities (contd.)
- Provide technical support and guidance in relation to cloud security.
- Stay updated on the latest cloud security trends, technologies, and best practices.
- Conduct regular security audits to identify potential weaknesses in cloud infrastructure.
- Support the Audit teams during audit with required evidence.
- Verify compliance to organization and regulatory requirements while onboarding of a new solution within the organization.
- Represent Information Security Assurance Team in Enterprise Design Authority meeting and Enterprise Change Management Board meeting to ensure proposed changes and design comply to organization and regulatory requirements.
- Provide strategic recommendations to enhance the organization’s overall security posture.
Qualifications
- Bachelor’s Degree
Experience
- 3 years’ experience, Diploma, Military or Police Academy graduate with 8 years’ experience, or High School with 10 years’ experience
Professional Certifications
- CEH, ECSA, OSCP, CISSP, GPEN, Cloud Security Certifications
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at ENEC Operations
Principal Nuclear Risk Management Engineer
Abu Dhabi, UAE
ENEC Operations seeks a Principal Nuclear Risk Management Engineer to develop and implement PRA models, accident management programs, and severe accident analysis for the Barakah Nuclear Power Plant. The role requires a
Cyber Security Assurance Specialist (NAWAH)
Abu Dhabi, UAE
ENEC Operations seeks a Cyber Security Assurance Specialist to implement the Cyber Security Program at Barakah nuclear plant. Responsibilities include policy creation, security assessments, incident response, and securit
Senior IT Cyber Security Assurance and Risk Specialist
Abu Dhabi Emirate, UAE
ENEC Operations is looking for a Senior IT Cyber Security Assurance and Risk Specialist to lead penetration testing, security architecture reviews, vulnerability management, and risk assessments. Candidates need a Bachel
OT Cyber Security Assurance and Risk Specialist
Abu Dhabi Emirate, UAE
ENEC Operations is seeking an OT Cyber Security Assurance and Risk Specialist to ensure compliance with cyber security programs and regulations. The role involves security assessments, risk management, vulnerability mana
Cloud Security Architect Lead
Abu Dhabi, UAE
ENEC Operations seeks a Cloud Security Architect Lead to design secure cloud solutions, develop cloud security strategy, and conduct security assessments. The role involves creating cloud security architecture, ensuring
Electrical Maintenance Technician
Abu Dhabi, UAE
ENEC Operations seeks an Electrical Maintenance Technician to perform electrical maintenance on safety and non-safety related systems at the Barakah nuclear plant. The role involves preventive maintenance, troubleshootin
PM Delivery Specialist - Plant Support
Abu Dhabi, UAE
ENEC Operations seeks a PM Delivery Specialist for plant support to plan, coordinate, and execute projects within corporate applications and technology domain at Barakah. Requires Bachelor's degree and 3 years of relevan
Senior Operations Training Instructor
Abu Dhabi, UAE
ENEC Operations seeks a Senior Operations Training Instructor at Barakah Nuclear Power Plant in Abu Dhabi. The role involves delivering technical instruction and evaluations for operations personnel, developing training
Principal Nuclear Risk Management Engineer
Abu Dhabi, UAE
Cyber Security Assurance Specialist (NAWAH)
Abu Dhabi, UAE
Senior IT Cyber Security Assurance and Risk Specialist
Abu Dhabi Emirate, UAE
OT Cyber Security Assurance and Risk Specialist
Abu Dhabi Emirate, UAE
Cloud Security Architect Lead
Abu Dhabi, UAE
Electrical Maintenance Technician
Abu Dhabi, UAE
PM Delivery Specialist - Plant Support
Abu Dhabi, UAE
Senior Operations Training Instructor
Abu Dhabi, UAE