Jr SOC Engineer

JOB PURPOSE:

The Jr SOC Engineer plays a key role in supporting the day-to-day cybersecurity monitoring and incident response activities within the organization. This position is responsible for operating and maintaining security systems, responding to threats, and ensuring timely investigation and remediation of incidents. The role partners closely with the Head of Cyber Security and OT Systems Managers to support the advancement of the company’s cybersecurity maturity, contributing to proactive defense and continuous improvement of the organization's security posture.

RESPONSIBILITIES/DUTIES

Threat Monitoring & Incident Response:

• Monitor and analyze security alerts from multiple sources, including SIEM, firewalls, IDS/IPS, and antivirus tools.
• Investigate and respond to security incidents, such as malware infections, phishing attacks, and unauthorized access.
• Escalate high-priority incidents to the Cybersecurity Engineer based on severity and defined playbooks.
• Assist in containment, eradication, and recovery efforts during active incidents.

Log Analysis & SIEM Tuning

• Analyzing event logs from endpoints, servers, applications, and network devices to identify anomalies and indicators of compromise (IOCs).
• Tune SIEM use cases and correlation rules to reduce false positives and improve detection accuracy.
• Maintain and enrich threat detection content with relevant threat intel and attack patterns (e.g., MITRE ATT&CK framework).

Access Control & Policy Enforcement:

• Assist in enforcing access controls and security policies.
• Work alongside IT teams to uphold system and network security standards.

Compliance & Risk Management:

• Support compliance with relevant cybersecurity frameworks (e.g., ISO 27001, NIST, GDPR).
• Assist in audits, documentation, and risk assessments.

Collaboration & Reporting:

• Liaise with IT, security, and business teams to apply effective security controls.
• Contribute to the preparation of reports on incidents of the cybersecurity system status.

Continuous Improvement & Research:

• Stay informed on evolving cybersecurity threats and industry developments.
• Recommend and assist in implementing security improvements and best practices.

Safety Responsibilities:

• Promote a positive safety culture within the workplace and attend any safety-related meetings or briefings as required within the job role.
• Comply with the requirements of RDMC RQHSE Policy and Safety Management System.
• Be mindful that Safety, Security, and Environmental protection are everyone’s responsibility.
• All staff members are accountable for reporting and intervening in any Safety, Security, or Environmental violations.

Additional Responsibilities:

• Perform other related duties as assigned in support of overall cybersecurity operations.

ESSENTIAL QUALIFICATIONS, KNOWLEDGE & EXPERIENCE

Qualifications:

• Bachelor’s degree in Cybersecurity, Computer Science, IT, Engineering, or a related field.
• Industry certifications (CompTIA Security+, CEH, eJPT, ECIR, or GMON) are preferred.
• Fluency in English and Arabic; French is a plus.

Knowledge:

• Strong foundation in cybersecurity principles and threat landscapes.
• Understanding of security tools: SIEM, antivirus, IDS/IPS, endpoint protection.
• Knowledge of networking protocols (TCP/IP, DNS, SSL/TLS) and basic system hardening.
• Exposure to Windows/Linux operating systems; scripting (e.g., Python, PowerShell) is a plus.

Experience:

• 0–3 years of relevant experience in cybersecurity or IT/network security.
• Internship or academic project experience in incident response or monitoring is desirable.
• Exposure to security tools or platforms is advantageous.

DESIRED BEHAVIORS & EXPERIENCES

• Curiosity and Continuous Learning: Eager to develop cybersecurity knowledge and stay current with trends and technologies.
• Analytical Thinking: Strong problem-solving skills and attention to detail in identifying and investigating threats.
• Responsibility and Integrity: Demonstrates a strong ethical foundation, particularly around handling sensitive information.
• Adaptability: Works well under pressure, with the ability to prioritize and multitask effectively in dynamic environments.
• Collaboration: Team-oriented mindset with a willingness to share knowledge and support peers.
• Initiative: Proactive in identifying issues, suggesting improvements, and seeking solutions independently.
• Communication: Communicates clearly and effectively with both technical and non-technical stakeholders.