Senior Specialist - IT Security

About the company:

Almosafer (part of Seera Group) Saudi Arabia’s Leading Travel CompanyElevating the journey for travelers from Saudi Arabia, the region & beyond, while harnessing Seera Group’s 40+ years of expertise, Almosafer supports Saudi Arabia’s vision as a national champion for tourism. Almosafer creates opportunities for outbound, leisure, and religious travel, whilst serving B2C and B2B customers, partners, and suppliers with state-of-the-art travel solutions, a digital-first mindset, and travel advisory.

About the role:We are looking for exceptional systems & software engineers who love to solve complex security problems fundamentally from first principles. This is not your typical IR or analyst role, we spend large percentages of our time on project work, balancing this with our operational duties such as detection engineering and incident response. If you're ready to make a tangible impact and drive innovative security projects, apply now to join our global team and help shape the future of security at Almosafer.

Responsibilities:

• Build, deploy and maintain large scale security systems across our ecosystem.

• Research, innovate and improve our security capabilities through new and enhanced tooling.

• Develop smart automation strategies to reduce the need for manual alert triage.

• Conduct detection engineering to increase coverage, identifying malicious activities across Almosafer’s endpoints, infrastructure, networks, and cloud environments.

• Investigate alerts and potential incidents end-to-end, including digital forensics, malware analysis and threat intelligence as needed.

• Lead incident response efforts and respond to intrusion attempts and suspicious activities, collaborating with multiple Almosafer teams.

• Participate in red team exercises and threat simulations in order to identify gaps, improve competencies and expand the team’s knowledge.

Profile Requirements:

• S

  trong programming skills in Python and/or Go.

• P

  ractical experience with BeyondCorp or ZeroTrust security models.

• P

  roven expertise in one or more detection and response related areas such as:- digital forensics (forensic artefacts, disk and cloud acquisition and analysis, forensic tooling e.g. GRR, Timesketch)- malware analysis (static and dynamic analysis, using tools like IDA Pro and Ghidra)- incident management and response (coordinating large scale or impactful security events with multiple stakeholders)- host/network intrusion detection (able to parse and understand large and often unfamiliar logs and systems)- network telemetry (understanding network flows, PCAPs and technologies like Zeek)- threat intelligence (have an understand of how to model a threat actor and their TTPs)- threat hunting (know how to find suspicious activity or IOCs across data lakes)

• U

  nderstanding of operating system internals, with a core competency in two or more of the following including file and disk structures, forensic process, security controls, hardening, scripting and binary investigations: macOS, windows, Linux

• A

  dvanced knowledge of cloud infrastructure, including being able to build and deploy systems and investigate security events across two or more such as: Amazon Web Services, Kubernetes, Google Cloud Platform

• B

  achelor of Science in Computer Science, Engineering, Information Systems, or equivalent years of experience in a related technical field

• 3

  + years of experience in the field of incident response, detection engineering or related security disciplines

B

eing you @ Almosafer:At Almosafer we strongly believe in diversity and equal opportunities for all candidates. We do not discriminate based on any characteristic and follow fair employment practices regarding citizenship and immigration status. Join our inclusive work environment.