AL-KHOBAR, KINGDOM OF SAUDI ARABIA

Position                    Cyber Security Analyst

Department             Information Technology

Institution                    Prince Mohammad bin Fahd University

Reports to             Manager – Cyber Security

introduction

The Cyber Security Analyst at Prince Mohammad bin Fahd University protects the university’s digital assets, network, and data by identifying vulnerabilities, monitoring threats, and enforcing security measures. This role ensures compliance with security policies, supporting a safe environment for research and academic activities.

Job Purpose

The Cyber Security Analyst role is to safeguard the university's IT infrastructure by proactively monitoring, identifying, and addressing security threats. This position involves implementing security measures, responding to incidents, and ensuring compliance with security policies to protect data and maintain the integrity of university systems. The analyst plays a key role in supporting a secure environment for all digital and academic activities.

Duties and Responsibilities

Major Duties/ Responsibilities:

·         Monitor all networks and computer systems to prevent, detect, and investigate security breaches.

·         Perform penetration testing to ensure the company’s networks are free of bugs that malware authors can take advantage of.

·         Design and implement multilevel security strategies to protect networks and data resources.

·         Plan computer and network security upgrades and test hardware and software related to the upgrade.

·         Stay up to date on new information technologies and apply those innovations in the company’s security standards and best practices.

·         Lead analysis of current architecture, risk exposure and defining mitigation measures in order to develop suitable recommendations.

·         Highlight Cyber Security threats and prepare the official reports.

·         Lead assessments of company’s security posture including benchmarking/maturity assessments.

·         Lead design of cyber security solutions and development of detailed technical specifications for the approved designs.

·         Lead implementation, integration and testing of approved security solutions.

·         Provide specialist technical support and address technical problems related to applications and production equipment to ensure any complex/escalated issues are handled with no or minimal downtime.

·         Oversee/perform preventive maintenance as per schedule to ensure relevant security systems/processes remain fit for purpose.

·         Provide subject matter expertise for cyber security related projects throughout its lifecycle to ensure delivery is as per plan/budget and client/TCC expectations.

·         Prepare and deliver technical presentations for successful project delivery

·         Lead cybersecurity evaluation and configuration review services

·         Anticipate future problem areas by monitoring workflows and network traffic patterns.

·         Prepare and perform cyber security awareness activities.

·         Prepare work papers documenting procedures performed and that fully support audit findings.

·         Assist IT operational audits in accordance with the annual audit plan.

·         Follows up the action plan progress (such as penetration tests, vulnerability scans) and ensures that recommendations are implemented in a timely manner

·         Assist staff members when they need help with security products and processes.

Job-Specific Skills:

·         Working experience in a SOC or NOSC environment

·         Must have strong working knowledge of information technology, including applications, networks and systems.

·         Knowledge in performing IT Audit reports

·         Experience in performing Risk Assessments reports.

·         Experience in developing Business Continuity Plans and Disaster Recovery Plans

·         Knowledge in the usage of vulnerability assessment and penetration testing tools

·         Knowledge of security attacks techniques, familiar with MITRE ATT@CK framework

·         Experience in using MS Office, MS Visio, Project Management tool.

·         Experience in project management, problem-solving, training/coaching, presentation skills, and conflict resolution skills.

·         General knowledge of ISO 27001, ITIL or other control frameworks

·         Experience in writing SOP's – operation manuals

·         Independent, motivated, and ambitious personality

Qualifications & Experience (Required)

• Bachelor's degree in computer science, technology or computer engineering
• 5 to 8 years of experience in progressively more complex and responsible operational roles within a dynamic Enterprise function
• Certified CompTIA Security+, CEH, CCNA, CCNP, CISSP (preferred)
• Experience in Cisco ASA, WatchGuard, Juniper, CheckPoint Firewall
• Knowledge of network and web protocols, and an in-depth knowledge of Linux/Unix tools and architecture
• Experience in Patch Management and vulnerably assessment.
• Knowledge and understanding of relevant legal and regulatory requirements.
• Knowledge of common information security management frameworks.
• Experience in Information Security and NCA controls implementation.
• Having experience in IT, Operational IT, Cybersecurity, incident detection, incident response, and forensics.
• Maintain quality service delivery by adhering to company standards and best practices.
• Strong attention to detail with an analytical mind and outstanding problem-solving skills.
• Familiarity with information technology concepts such as infrastructure, cyber security, and application controls.
• Great awareness of cybersecurity trends and hacking techniques.
• On-call network troubleshooting

Knowledge, Skills and Abilities (Required)

·         Strong written and verbal communication skills

·         Strong focus on first time quality

·         Desire to grow technical skills and ability to learn new technologies swiftly

·         High attention to detail, self-starter, result driven

·         Ability to work in a cross-functional team

·         Professional, polite, and attentive while also being accurate

·         Always prepared and responsive, willing to meet each challenge directly

·         Teamwork

·         Problem solving, Leadership

·         Perseverance and motivation

·         Ability to work under pressure, Confidence

·         Managing ambiguity, Resilience

·         Analytical skills, IT skills

Disclaimer

PMU reserves the right to alter, amend and add responsibilities to this position in line with the institutional needs. Changes and amendments to this job description shall be within the academic framework and the general employment conditions.