Job Description

Apt Resources is a leading company in recruitment and is currently looking for a Digital Technical Engineer - Security VA to join the team of one of their prominent clients in Abu Dhabi. This a great opportunity for an ambitious person looking for a challenging job with growth.

Job Objective: To lead and implement VA (Vulnerability Assessment) and NAC (Network Access Control). Participate in the design and implementation of the Security operation center. The candidate will have experience designing and implementing NAC and VA solutions, including integrating security technologies like SIEM and SOAR. As an NAC, and VA Implementation Engineer, you will be responsible for deploying, configuring, and maintaining the NAC, and VA infrastructure. Related Responsibilities: Conduct vulnerability assessment using tools such as Nessus, Qualys, OpenVAS, or Rapid7 Nexpose for comprehensive vulnerability scans and assessments. Manage end-to-end vulnerability lifecycle, including vulnerability scanning, prioritization, remediation planning, and tracking of vulnerabilities through various stages. Analyze vulnerability scan results, identify and assess potential risks and impacts, and generate detailed reports with actionable recommendations for remediation. Coordinate with the patch management team to understand processes and tools to ensure timely deployment of security patches and updates across systems and applications. Implementation of various NAC technologies such as Cisco Identity Services Engine (ISE), or Forescout CounterACT. Configuration of the NAC features, as per the best practice. Coordinate with network security engineers to understand secure network design, segmentation, access control, and threat detection/prevention mechanisms. Configure integration of NAC solutions with other network security components, such as SIEM systems, intrusion detection/prevention systems (IDS/IPS), and security information and event management (SIEM) platforms. Configure and tune the NAC, to detect and respond to security incidents effectively Develop and maintain vulnerability policies and procedures and documentation Monitor endpoints and investigate vulnerabilities using VA tools Develop and fine-tune policies as per the business requirement Ensuring the customer's solution is configured and technically deployed to specification, accurately, and on-time Develop and maintain low-level designs, system diagrams, systems installation configuration & guides, support procedures, test plans, and runbook Participate to Develop, document, and implement SOC Disaster Recovery Plan and execute DR drills Work closely with application support & security teams to implement up-to-date patch levels and application-specific feature configuration Perform advanced problem determination and root-cause-analysis Plan and execute the Operation Readiness process for Infrastructure projects for transition into production support Act as Technical leads to 3rd party vendors to ensure technical assurance and adherence to quality standards Supports the definition of project scope, plans, and deliverables including costings and implementation dates Research, analyze, recommend, and implement new technologies, standards, processes, tools, and techniques. Identifies, develops, updates, and enforces standards and procedures Leading the team, providing direction and guidance on tasks and timescales, and coordinating various activities Participate in implementation delivery process improvement initiatives

Requirements Minimum Qualifications: Bachelor's degree or equivalent in Computer Science or a related field or equivalent work experience Certification from Forescout Certified Engineer (FSCE) Certified Vulnerability Assessor (CVA), or GIAC Certified Penetration Tester (GPEN) Certified Nessus Auditor (CNA) ITIL foundation certification At least 6-8 years' experience as a Technical Implementation Engineer relevant to NAC/VA streams Experience with NAC solutions such as ForeScout and Cisco ISE Experience with VA solutions such as Tenable, Qualys Experience with scripting languages such as Python, PowerShell, or Bash At least 3+ years of experience in participating in SoC deployment Experience in security hardening and soc performance tuning Knowledge of security standards and frameworks such as CVE, CWE, CVSS, and NIST guidelines to interpret vulnerability data, assign severity levels, and prioritize remediation efforts. Proficiency in scripting languages such as Python, PowerShell, or Bash to automate vulnerability scanning tasks, develop custom scripts for data manipulation, and integrate vulnerability assessment tools with other security systems. Understanding of risk assessment methodologies and the ability to perform risk assessments based on vulnerability data, considering the potential impact on systems, applications, and the overall security posture. Proficiency in various NAC technologies such as Cisco Identity Services Engine (ISE), Aruba ClearPass, or Forescout CounterACT. Understanding of their features, capabilities, and deployment options. Strong understanding of Risk, Threats, and Vulnerabilities Must be aware of Project Management and ITIL frameworks Solve problems quickly, effectively communicate solutions and associated risks Ability to clearly articulate concepts to people with varying technical backgrounds Recommend appropriate technology for tool selection Minimum Experience: Job-Specific Skills: Knowledge of industry-specific compliance requirements (e.g., PCI DSS, HIPAA, GDPR) and the ability to align vulnerability management practices with these standards. Expertise in authentication protocols and mechanisms such as 802.1X, RADIUS, TACACS+, and LDAP. Ability to design and configure authentication and authorization policies within the NAC solution. Knowledge of network policy enforcement mechanisms, including VLAN assignment, access control lists (ACLs), firewall rules, and virtual private networks (VPNs). Proficiency in configuring these policies within the NAC solution. Understanding of monitoring and alerting within enterprise environments Displays expertise and understanding of Threat identification and mitigation Other requirements: Should be fluent in Arabic If selected should be able to start work in a very short period. Should be willing to relocate to Abu Dhabi Benefits AED 20,000 to AED 30,000 all in package depending on experience

Full-time