Job Description

About the Company

Business Continuity Solutions (BCS)

is a leading provider of technology-enabled business continuity services in the Middle East. Since 2009, BCS has specialized in IT and consulting solutions, offering services such as Data Center Optimization, Unified Communications, Cybersecurity, Vulnerability Assessments, Cloud Solutions, and Business Continuity Planning. BCS partners with global blue-chip companies to deliver cutting-edge, secure, and scalable technology solutions.

Role Overview

We are looking for a

Cybersecurity Engineer (SOC)

to join our team in Dubai. This full-time, on-site role is ideal for candidates passionate about cybersecurity, threat detection, and infrastructure defense. The selected candidate will monitor and respond to security incidents, manage threat detection tools, and support the deployment and maintenance of security technologies.

Key Responsibilities

1. Security Infrastructure & Operations

Deploy and monitor endpoint protection platforms like Microsoft Defender for Endpoint, CrowdStrike, and SentinelOne. Deploy antivirus solutions such as

CrowdStrike

and

Sophos

.

2. Threat Detection & Incident Response (TDIR)

Monitor and analyze logs using SIEM solutions such as Microsoft Sentinel, Splunk, QRadar, and Elastic Security. Perform threat hunting and incident response using EDR/XDR tools. Conduct forensic analysis of compromised systems.

3. Vulnerability Assessment & Management

Deploy and manage vulnerability assessment tools like

Qualys VMDR

and

Tenable

. Conduct vulnerability scanning using

Nessus

,

OpenVAS

, and report on remediation activities. Note: Training will be provided on these tools if the candidate lacks experience.*

4. Network & Email Security

Support and monitor firewall infrastructure across Cisco, Palo Alto, FortiGate, Sophos, and SonicWall. Implement and manage email security solutions such as

Barracuda

and

Mimecast

to mitigate phishing and spam threats.

5. Cloud Security

Support cloud security across AWS, Azure, and Google Cloud environments. Utilize tools such as

Microsoft Defender for Cloud

,

AWS Security Hub

, and

Google Security Command Center

. Configure CWPP (Cloud Workload Protection Platforms) and CSPM (Cloud Security Posture Management) solutions.

6. Compliance & Risk Management

Ensure security policies align with standards like NIST, ISO 27001, GDPR, SOC 2, and PCI-DSS. Assist in risk assessments and enforcement of security best practices.

7. Documentation & Reporting

Maintain accurate records of incidents, changes, and configurations. Prepare periodic reports on SOC activity and findings.

Core Security Tools & Technologies

Firewalls & Network Security

- Palo Alto, Fortinet, Cisco ASA, pfSense, SonicWall

Endpoint & Antivirus

- CrowdStrike, Sophos, Microsoft Defender for Endpoint, SentinelOne

SIEM & Log Management -

Microsoft Sentinel, Splunk, QRadar, Elastic Security

Vulnerability Tools

- Qualys VMDR, Tenable, Nessus, OpenVAS

Pen Testing Tools

- Metasploit, Burp Suite, Kali Linux

Email Security

- Barracuda, Mimecast.

IAM Solutions

- Azure AD, Okta, CyberArk, BeyondTrust

Cloud Security

- Microsoft Defender for Cloud, AWS Security Hub, Prisma Cloud.

Compliance Frameworks

- NIST, ISO 27001, GDPR, CIS Benchmarks.

Security Best Practices

? Adopt a

Zero Trust Model

- enforce least privilege and assume breach. ? Use

Multi-Factor Authentication (MFA)

to mitigate identity threats. ? Continuously monitor logs using SIEM tools. ? Automate incident response using

SOAR

platforms. ? Regularly patch and update systems to minimize vulnerability exposure.

Recommended Certifications

CompTIA Security+

- Foundational cybersecurity knowledge

Certified Ethical Hacker (CEH)

- Skills in penetration testing and ethical hacking

Microsoft SC-200 / SC-300 / SC-400

- Security Operations, Identity, and Compliance

GIAC Security Essentials (GSEC)

- Broad security knowledge and risk management

Certified Cloud Security Professional (CCSP)

- Advanced skills in cloud security practices

CISSP (Certified Information Systems Security Professional)

- Advanced security architecture and leadership.

Offensive Security Certified Professional (OSCP)

- Hands-on penetration testing expertise.

Job Details

Job Type:

Full-time

Work Location:

On-site (Dubai, UAE)

Schedule:

Day shift / Night shift (rotational)

Benefits:

Health insurance, Cell phone reimbursement

Supplemental Pay:

Performance bonus, Yearly bonus
Job Type: Full-time

Application Deadline: 19/06/2025
Expected Start Date: 23/06/2025