Top Careers - Jobs Site in Gulf Emirates - Latest Jobs in Dubai UAE, Saudi Arabia, Oman, Qatar, Bahrain, Kuwait & GCC. Free Jobs Posting Site in Dubai & the Middle East Gulf.

jobs in UAE Dubai Abu Dhabi Sharjah Ajman

UAE JOBS

Jobs in Saudi Arabia

Saudi Jobs

jobs in kuwait

Kuwait Jobs

jobs in oman

Oman Jobs

jobs in Qatar

Qatar Jobs

jobs in bahrain

Bahrain Jobs

Dubai Jobs

Abudhabi Jobs

Sharjah Jobs

RAK Jobs

UAQ Jobs

Fujairah Jobs

Riyadh Jobs

Dammam Jobs

Jobs for Indians

Jobs for Pakistanis

Jobs for Philippines

Jobs for other Nationalities

Attention Employers! We are one of the best FREE job posting sites in UAE and GCC emirates. Sign-up and start with 10 Free Job Posting Credits now


Threat Defense Operations Manager Job Vacancy in UAE Abdu Dhabi

Posted date [2024-10-17]   (ID: 32238)
Gulf and UAE company jobs
We are dedicated to helping your business thrive by connecting you with the best talent in the industry. We specialise in matching skilled candidates with the right opportunities, ensuring they find the perfect fit to advance their careers.

The Threat Defense Operations Manager reports to the Head of Information Security Cyber Defense Operations. This role is responsible for creating detection logic and maintaining data sources that contain information on indicators, correlations, and existing detection logic. The manager collaborates with information security teams, the IT Department, and other business units to identify data sources, develop use cases, and advise on SIEM configuration.

Key Metrics:

Number of cyber threat hunting activities completed on or before target dates.
Percentage of customized rules created.
Percentage of incidents not prevented due to SIEM misconfiguration.
Number of threat reports generated or reviewed.
Key Accountabilities of the Role:

Develop and maintain an understanding of current vulnerabilities and mitigation strategies in ADIB's cyber defense operations.
Collaborate with ITD to review alerts generated by detection infrastructure, focusing on false positive alerts.
Analyze threat information from various sources, including logs, Intrusion Detection Systems (IDS), and intelligence reports from Cyber Threat Intelligence.
Continuously analyze the security stack and gather log ingestion feedback to identify gaps and prioritize detection needs.
Identify and hunt for threat actor groups, their tools, techniques, procedures (TTPs), and Indicators of Compromise (IOCs) in collaboration with the information security team.
Create tailored detection logic based on the Group threat landscape, using industry-specific intelligence and developed use cases in the form of threat rules and signatures.
Work with ITD to add data sources and provide guidance on SIEM configuration.
Operationalize identified IOCs by testing and overseeing the deployment of SIEM monitoring and alerting rules.
Support Cyber Threat Intelligence and IS Risk Management teams by providing context on the threat landscape for group risk management activities.
Maintain a data source catalog containing information on indicators, correlations, and existing detection logic.
Collaborate with Threat Analysts to identify and recommend new internal and external data sources for developing additional threat detection logic.
Monitor the efficacy of existing detection logic and decommission or age-off rules as necessary.
Specialist Skills / Technical Knowledge Required for This Role:

Knowledge of banking processes and operational frameworks.
Strong understanding of information security processes, services, and systems.
Proficient in threat hunting techniques, zero-day exploit activities, and malware identification.
Knowledgeable in network monitoring and exploitation techniques.
Familiarity with SIEM configuration requirements and logic.
Good understanding of network protocols and web application attack vectors.
Knowledge of ISO 27001, NESA, PCI DSS, SWIFT, and other security standards and regulations.
Bachelor's degree in Computer Science, Engineering, IT, or a related technical discipline.
Relevant professional certifications such as Security+, CEH, GCIA, GCIH, CISSP.
Previous Experience:

7-9 years of experience in information security threat hunting within large international banks or financial institutions.
Experience with scripting/programming, exploitation techniques, and use case development.
Familiarity with common attack vectors and IOC datasets.
Experience in developing SIEM configuration logic.
Job Title Threat Defense Operations Manager
Job Description The Threat Defense Operations Manager reports to the Head of Information Security Cyber Defense Operations. This role is responsible for creating detection logic and maintaining data sources that contain information on indicators, correlations, and existing detection logic. The manager collaborates with information security teams, the IT Department, and other business units to identify data sources, develop use cases, and advise on SIEM configuration.

Key Metrics:

Number of cyber threat hunting activities completed on or before target dates.
Percentage of customized rules created.
Percentage of incidents not prevented due to SIEM misconfiguration.
Number of threat reports generated or reviewed.
Key Accountabilities of the Role:

Develop and maintain an understanding of current vulnerabilities and mitigation strategies in ADIB's cyber defense operations.
Collaborate with ITD to review alerts generated by detection infrastructure, focusing on false positive alerts.
Analyze threat information from various sources, including logs, Intrusion Detection Systems (IDS), and intelligence reports from Cyber Threat Intelligence.
Continuously analyze the security stack and gather log ingestion feedback to identify gaps and prioritize detection needs.
Identify and hunt for threat actor groups, their tools, techniques, procedures (TTPs), and Indicators of Compromise (IOCs) in collaboration with the information security team.
Create tailored detection logic based on the Group threat landscape, using industry-specific intelligence and developed use cases in the form of threat rules and signatures.
Work with ITD to add data sources and provide guidance on SIEM configuration.
Operationalize identified IOCs by testing and overseeing the deployment of SIEM monitoring and alerting rules.
Support Cyber Threat Intelligence and IS Risk Management teams by providing context on the threat landscape for group risk management activities.
Maintain a data source catalog containing information on indicators, correlations, and existing detection logic.
Collaborate with Threat Analysts to identify and recommend new internal and external data sources for developing additional threat detection logic.
Monitor the efficacy of existing detection logic and decommission or age-off rules as necessary.
Specialist Skills / Technical Knowledge Required for This Role:

Knowledge of banking processes and operational frameworks.
Strong understanding of information security processes, services, and systems.
Proficient in threat hunting techniques, zero-day exploit activities, and malware identification.
Knowledgeable in network monitoring and exploitation techniques.
Familiarity with SIEM configuration requirements and logic.
Good understanding of network protocols and web application attack vectors.
Knowledge of ISO 27001, NESA, PCI DSS, SWIFT, and other security standards and regulations.
Bachelor's degree in Computer Science, Engineering, IT, or a related technical discipline.
Relevant professional certifications such as Security+, CEH, GCIA, GCIH, CISSP.
Previous Experience:

7-9 years of experience in information security threat hunting within large international banks or financial institutions.
Experience with scripting/programming, exploitation techniques, and use case development.
Familiarity with common attack vectors and IOC datasets.
Experience in developing SIEM configuration logic.
Post Details
Job Start Date 1970-01-01
Salary from 0.00
Salary to 0.00
Number of Vacancies 1
Location Job Location -> UAE Abdu Dhabi
Location City Abdu Dhabi
    
Desired Candidate's Profile
Gender No Preference
Nationality
Candidate Current Location
Work Experience 1-2 Years
Candidate Profile Description
Job Classification
Job Type Job Type -> Full-time
Industry Type Job Industry -> Management Consulting
Job Function Job Functions -> Management
Employers Details
Company Halian
Contact Person
Designation
Telephone +97143652642
Email malika.singh(at)halian.com




Download Careers in Gulf Emirates Android App
careersingulf Android App google play store