2 344 Incident Response jobs in Bahrain

• Lead and manage the full lifecycle of cybersecurity incidents, from detection to resolution.
• Perform real-time threat hunting and analysis of security alerts and logs.
• Conduct in-depth digital forensics investigations to determine the root cause and scope of breaches.
• Analyze malware and develop remediation strategies.
• Develop, update, and execute incident response plans and playbooks.
• Coordinate response efforts with internal teams, external stakeholders, and law enforcement.
• Perform post-incident reviews and generate comprehensive reports with actionable recommendations.
• Identify vulnerabilities and recommend security controls to prevent future incidents.
• Stay current with emerging threats, vulnerabilities, and cybersecurity trends.
• Mentor and guide junior cybersecurity analysts.
• Contribute to security awareness training and education programs.

• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
• Minimum of 6 years of experience in cybersecurity, with a strong focus on incident response and forensics.
• Deep understanding of cybersecurity principles, threats, and attack vectors.
• Hands-on experience with SIEM tools (e.g., Splunk, QRadar), EDR solutions, and forensic tools (e.g., EnCase, FTK).
• Proficiency in scripting languages (e.g., Python, PowerShell) for automation.
• Strong analytical and problem-solving skills, with the ability to think critically under pressure.
• Excellent written and verbal communication skills, essential for remote collaboration.
• Relevant certifications such as CISSP, GIAC (GCIH, GCFA), or CEH are highly desirable.
• Experience working in a remote security operations center (SOC) environment is a plus.

• Monitor security alerts and events from various sources, including SIEM, IDS/IPS, firewalls, and endpoints.
• Analyze security incidents, perform forensic investigations, and develop containment and eradication strategies.
• Develop, tune, and maintain SIEM correlation rules, dashboards, and reports to optimize threat detection.
• Respond to security incidents, coordinate incident response activities, and lead post-incident reviews.
• Conduct threat hunting activities to proactively identify advanced persistent threats (APTs) and malicious activities.
• Develop and maintain incident response playbooks and procedures.
• Collaborate with IT and other departments to implement security controls and best practices.
• Stay up-to-date with the latest cybersecurity threats, vulnerabilities, and technologies.
• Contribute to the development and improvement of the organization's security operations capabilities.
• Provide technical guidance and mentorship to junior security analysts.

• Bachelor's degree in Computer Science, Information Security, Cybersecurity, or a related field. Relevant certifications such as CISSP, GIAC, GCIH, GCFA are highly valued.
• Minimum of 5-7 years of experience in information security, with a strong focus on SIEM, incident response, and threat detection.
• Hands-on experience with leading SIEM platforms (e.g., Splunk, QRadar, LogRhythm) and SOAR solutions.
• Proficiency in network security concepts, common attack vectors, and malware analysis.
• Experience with endpoint detection and response (EDR) tools.
• Strong analytical and problem-solving skills, with the ability to analyze large datasets of security logs.
• Excellent written and verbal communication skills, with the ability to articulate complex security issues clearly.
• Ability to work independently, manage time effectively, and thrive in a high-pressure, remote environment.
• Familiarity with cloud security concepts is a plus.

• Monitor security alerts and logs from various security tools (SIEM, IDS/IPS, EDR, etc.) to detect and analyze potential security incidents.
• Conduct in-depth investigations into security breaches, malware infections, and other security-related events.
• Develop, refine, and execute incident response plans and procedures.
• Perform threat hunting activities to proactively identify and mitigate potential security risks.
• Analyze threat intelligence feeds and reports to stay informed about emerging threats and vulnerabilities relevant to the organization.
• Conduct vulnerability assessments and penetration testing (or coordinate with external teams).
• Develop and implement security controls and best practices to enhance the organization's security posture.
• Create and deliver security awareness training for employees.
• Document security incidents, findings, and remediation efforts in a clear and concise manner.
• Collaborate with IT and business units to implement security recommendations and ensure compliance with security policies.
• Participate in on-call rotation for security incident response.
• Stay up-to-date with the latest cybersecurity threats, trends, and technologies.

• Bachelor's degree in Computer Science, Information Security, Cybersecurity, or a related field.
• Minimum of 5 years of experience in information security, with a focus on threat intelligence and incident response.
• Hands-on experience with SIEM platforms (e.g., Splunk, QRadar), EDR solutions, and other security tools.
• Strong understanding of network protocols, operating systems (Windows, Linux), and common attack vectors.
• Proven experience in incident response methodologies and forensics.
• Familiarity with threat intelligence platforms and analysis techniques.
• Excellent analytical, problem-solving, and critical-thinking skills.
• Strong communication and reporting skills, with the ability to explain complex security issues to both technical and non-technical audiences.
• Relevant security certifications such as CISSP, GIAC (GSEC, GCIA, GCIH), or Security+ are highly desirable.
• Ability to work effectively under pressure and manage multiple priorities in a fast-paced environment.
• Must be able to work on-site in **Seef, Capital, BH**.

• Monitoring security systems and analyzing security alerts from various sources (SIEM, IDS/IPS, EDR, etc.).
• Investigating and responding to security incidents in a timely and effective manner, including containment, eradication, and recovery.
• Developing and maintaining threat intelligence capabilities, including gathering, analyzing, and disseminating threat information.
• Performing vulnerability assessments and penetration testing to identify weaknesses in the security infrastructure.
• Developing and implementing security policies, procedures, and best practices.
• Creating and delivering security awareness training to employees.
• Collaborating with IT and development teams to ensure security is integrated into all aspects of the technology stack.
• Conducting digital forensics investigations to determine the root cause of security breaches.
• Staying current with the latest security threats, vulnerabilities, and mitigation techniques.
• Contributing to the development and refinement of the incident response plan.

• Monitoring security alerts and logs from various sources (SIEM, IDS/IPS, EDR) to detect and analyze potential security incidents.
• Performing in-depth investigations of security breaches, malware infections, and other cyber threats.
• Developing and maintaining threat intelligence feeds and reports to inform proactive security measures.
• Leading and coordinating incident response activities, including containment, eradication, and recovery.
• Conducting vulnerability assessments and penetration testing to identify and remediate security weaknesses.
• Developing and implementing security policies, procedures, and best practices.
• Staying current with the latest cybersecurity threats, vulnerabilities, and mitigation techniques.
• Contributing to the development and maintenance of security awareness training programs.
• Collaborating with IT and other departments to ensure a comprehensive security posture.
• Mentoring junior security analysts and providing technical guidance.
• Documenting security incidents, findings, and remediation actions thoroughly.
• Participating in red team and blue team exercises.

Role Description

This is a full-time hybrid role located in Manama, with some work-from-home flexibility, for a Cyber Security Analyst. The Cyber Security Analyst will be responsible for monitoring and analyzing system vulnerabilities, providing technical support, troubleshooting issues, and ensuring the integrity of information technology systems. The role involves conducting threat assessments, developing and implementing security measures, and responding to security incidents.

Company Description

TAM-C Solutions empowers clients with actionable intelligence, enabling them to conduct business in a risk-acceptable environment. We are dedicated to providing top-tier cyber security services that help organizations protect their most valuable assets. Our team of experts collaborates closely with clients to ensure comprehensive security strategies tailored to their specific needs. At TAM-C Solutions, our mission is to enhance the security posture of our clients through innovative solutions and expert guidance.

Role Description

This is a full-time on-site role for a Cyber Security Analyst located in Manama. The Cyber Security Analyst's day-to-day tasks involve monitoring and analyzing security incidents, conducting malware analysis, and ensuring application and network security. The role also entails implementing and maintaining security measures to protect IT systems and infrastructure. The analyst will regularly perform vulnerability assessments and provide recommendations for continuous improvement.

Qualifications

• Application Security and Network Security skills
• Cybersecurity and Malware Analysis experience
• Strong Analytical Skills
• Excellent problem-solving abilities and attention to detail
• Ability to work on-site in Manama
• Relevant certifications such as CISSP, CISM, or CEH are a plus
• Previous experience in a similar role is beneficial
• Bachelor's degree in Computer Science, Information Technology, or a related field

• Conduct comprehensive security audits and vulnerability assessments of blockchain protocols, smart contracts, and decentralized applications (dApps).
• Identify and analyze potential security risks, threats, and attack vectors specific to blockchain technology.
• Develop and implement security best practices, policies, and procedures for the organization.
• Monitor blockchain networks for suspicious activities and security incidents.
• Respond to and investigate security breaches, performing root cause analysis and recommending remediation steps.
• Stay current with emerging security threats, vulnerabilities, and mitigation strategies in the cryptocurrency and blockchain space.
• Collaborate with development teams to ensure security is integrated into the design and development lifecycle of new products and features.
• Perform penetration testing and security code reviews.
• Develop and maintain security documentation, including incident response plans and technical guides.
• Educate internal teams on blockchain security best practices and emerging threats.
• Contribute to the overall security posture and resilience of the company's digital assets.
• Evaluate and recommend security tools and technologies.

• Bachelor's or Master's degree in Computer Science, Cybersecurity, or a related field.
• Minimum of 4 years of experience in cybersecurity, with at least 2 years focused on blockchain security.
• In-depth knowledge of blockchain technologies (e.g., Ethereum, Bitcoin), consensus mechanisms, and smart contract languages (e.g., Solidity).
• Strong understanding of cryptographic principles and their application in blockchain.
• Experience with security auditing tools and methodologies.
• Proven ability to identify and exploit common smart contract vulnerabilities (e.g., reentrancy, integer overflow).
• Excellent analytical, problem-solving, and critical thinking skills.
• Strong communication and reporting skills, capable of articulating complex security issues to technical and non-technical audiences.
• Experience with secure coding practices and secure development lifecycle (SDL).
• Relevant certifications such as Certified Blockchain Security Professional (CBSP) or Certified Information Systems Security Professional (CISSP) are a plus.