Cybersecurity Operations consultant (Vulnerability Management & Incident response) (HQA-LOCAL)

Overview

The Cybersecurity Operations consultant will be responsible for implementing, maintaining, and improving a vulnerability management program and supporting Security Operations Center (SOC) operations in detecting, analyzing, containing, and remediating security incidents.

Tasks Summary

• Aggregate, analyze, and prioritize vulnerabilities from multiple sources.
• Perform risk-based triage of vulnerabilities.
• Coordinate remediation activities with IT, infrastructure, and application owners.
• Track remediation progress and validate vulnerability closure.
• Maintain vulnerability metrics, dashboards, and status reporting.
• Monitor SIEM, EDR, and security tools in real time.
• Triage and classify incoming alerts.
• Execute predefined playbooks and SOPs for common alert types.
• Perform basic IOC lookups.
• Document all incidents in the ticketing system.
• Escalate confirmed or complex incidents.
• Report recurring false positives and log ingestion gaps.
• Ensure alignment of vulnerability and incident management activities with internal security policies.
• Identify systemic weaknesses and propose improvement actions.
• Provide regular reporting to security leadership.
• Provide active support during security incidents and events.
• Provide strategic risk guidance for IT projects.
• Ensure security programs comply with relevant rules, policies, and standards.
• Monitor the external threat environment.
• Perform technical security assessments.
• Provide active support to users for daily security requests.

Experience Requirements

• Minimum 6 years of experience for a bachelor’s degree and a minimum of 5 years for a master’s degree.
• Deep domain expertise in vulnerability management.
• Varied experience in application development, SOC, system/infrastructure management.

Qualification Requirements

University degree from accredited educational institution in computer sciences or information technology or other related discipline.

Other Details

Languages Required: Fluency in both Arabic and English are required.

Languages Preferred: Cybersecurity certification related to vulnerability management like CEH, Comptia Security+ / Pentest+, GIAC or OSCP is desirable.

Contract Duration: 12 months

Work Modality:

Remuneration: Monthly remuneration equivalent to A16 Step 1 amounting to JOD 1,190.43 for every fully completed month.