GF1620 - SENIOR ANALYST - CYBER SECURITY

  • Company
    Gulf Air Group
  • Division
    Information Technology
  • Location
    Bahrain - Head Quarter
  • Department
    Information Technology
  • Closing Date
    26-Mar-2025

  • Qualifications
  • Bachelor’s degree in computer science, information technology, cybersecurity, or a related field (master’s degree preferred).
  • Experience
  • A minimum of 5–8 years of experience in cyber security.
    • Roles & Responsibilities
    • Perform advanced analysis of security incidents and events to identify potential threats, vulnerabilities, and mitigation strategies.
    • Manage and enhance the organization's Threat Detection and Response capabilities using tools like Microsoft Defender XDR, Microsoft Sentinel, and others.
    • Conduct regular vulnerability assessments using tools like Nessus, Qualys, or OpenVAS, and ensure timely remediation of identified risks.
    • Implement and maintain Privilege Access Management (PAM) solutions to safeguard critical systems and resources.
    • Develop and execute Security Hardening Guidelines aligned with CIS or SITG Benchmarks.
    • Automate repetitive security tasks using Python scripting and enhance operational efficiency.
    • Support the integration of security practices within the SDLC by collaborating with DevSecOps teams and leveraging tools like GitHub, SonarQube, or AWS CodePipeline.
    • Monitor and respond to cybersecurity incidents, ensuring quick containment and thorough root cause analysis.
    • Assist in maintaining and optimizing cloud security frameworks using tools such as AWS Security Hub and Azure Security Center.
    • Conduct firewall rule reviews, user access reviews, and network segmentation assessments to ensure secure configurations.
    • Collaborate with cross-functional teams to improve the organization’s overall cybersecurity posture.
    • Stay updated with emerging cybersecurity threats, trends, and regulations, and provide recommendations to address them proactively.
    • Skills & Technologies Required
    • Threat Detection and Response using any of these tools (Microsoft Defender XDR, Microsoft Sentinel, Microsoft Defender for Cloud, Microsoft Defender for Endpoint).
    • Vulnerability Management using any of these tools (Nessus, Qualys, OpenVAS).
    • Privilege Access Management (PAM) using any of these tools (Wallix, CyberArk, BeyondTrust).
    • Security Automation and Orchestration using any of these tools (Python, Splunk Phantom, Cortex XSOAR, Azure Sentinel ).
    • DevSecOps using any of these tools (SonarQube, GitHub Actions, AWS CodePipeline).
    • Security Hardening and Compliance using any of these tools (CIS Benchmarks, SITG Benchmarks, Qualys Policy Compliance).
    • Cloud Security using any of these tools (AWS Security Hub, Azure Security Center, Microsoft Defender for Cloud).
    • Network Security using any of these tools (Palo Alto Networks, Fortinet, Cisco ASA, Snort, Suricata).
    • Endpoint Security using any of these tools (Microsoft Defender for Endpoint, CrowdStrike Falcon, SentinelOne).
  • About Application Process
  • If you meet the criteria and you are enthusiastic about the role, we would welcome your application. To complete the application you would need the following document(s):
  • Resume/CV
  • Passport-size photograph
To apply online, please click on https://gulfairgroup.sniperhire.net/vacancy/172178