Cyber Security Specialist

Leos International is a leading real estate developer with a strong presence in Dubai. We are committed to delivering high quality developments and exceptional living experiences. As part of our ongoing growth, we are looking to hire an IT: Cyber Security Specialist to join our multidisciplinary design team in the United Arab Emirates.

Key Responsibilities:

• Vulnerability Assessment & Penetration Testing (VAPT)

1. Perform regular vulnerability scans and penetration testing for applications, servers, and networks.
2. Identify and prioritize vulnerabilities, create detailed reports, and coordinate remediation with IT teams.
3. Maintain and update VAPT tools and documentation.

• Endpoint Detection & Response (EDR)

1. Deploy and manage EDR solutions (Microsoft Defender, CrowdStrike, Sentinel One, etc.).
2. Monitor and analyze endpoint alerts and take proactive response actions.
3. Develop EDR policies for detection, isolation, and remediation.

• Email & Data Security

1. Implement and manage email protection systems (Defender for O365, Proofpoint, Mimecast).
2. Configure and maintain Data Loss Prevention (DLP) policies to prevent data leakage.
3. Conduct phishing simulations and employee awareness campaigns.

• Threat Intelligence & Incident Response

1. Collect and analyze cyber threat intelligence to anticipate and prevent attacks.
2. Investigate and respond to incidents — perform root-cause analysis and reporting.
3. Develop incident response plans and maintain playbooks.

• Network & Infrastructure Security

1. Configure and monitor firewalls, IDS/IPS, VPNs, and network segmentation.
2. Conduct security reviews of network architecture and cloud environments.
3. Ensure logging, monitoring, and alerting through SIEM tools (e.g., Azure Sentinel, Splunk).

• Application & Cloud Security

1. Conduct application security assessments and review code for OWASP vulnerabilities.
2. Implement secure SDLC practices in coordination with development teams.
3. Manage cloud security posture across Azure / AWS (IAM, WAF, encryption, MFA).

• Governance, Risk & Compliance (GRC)

1. Implement and maintain compliance with ISO 27001, NIST, and internal policies.
2. Maintain risk registers and conduct regular risk assessments.
3. Support audits, policy creation, and cybersecurity awareness training.

Requirements:

1. SIEM Tools: Microsoft Sentinel, Splunk, QRadar
2. EDR: Microsoft Defender, CrowdStrike, Carbon Black
3. VAPT Tools: Nessus, Burp Suite, Nmap, Metasploit
4. Firewalls: Fortinet, Cisco
5. DLP & Email Security: Microsoft DLP, Proofpoint, Mimecast
6. Cloud Security: Azure Security Center, AWS Security Hub
7. Frameworks: NIST, ISO 27001, MITRE ATT&CK

Key Competencies:

• Strong interpersonal and relationship-building skills.
• Results-driven with a proactive attitude.
• High sense of ownership and accountability.
• Ability to manage multiple priorities under tight deadlines.