298 Lead Aviation Security Specialist jobs in Bahrain

• Deploy, configure, and maintain security tools and technologies, including firewalls, IDS/IPS, VPNs, and endpoint security solutions.
• Monitor security alerts and logs from various sources for potential threats and anomalies.
• Conduct initial triage and investigation of security incidents, escalating as necessary.
• Assist in the development and implementation of security policies and procedures.
• Participate in vulnerability assessments and penetration testing activities.
• Support the incident response team during security breaches.
• Automate security tasks and processes where possible using scripting languages.
• Stay up-to-date with the latest cybersecurity threats, trends, and technologies.
• Collaborate with IT and development teams to ensure security is integrated into system design and implementation.
• Develop and maintain documentation related to security systems and procedures.
• Contribute to security awareness training for employees.
• Perform regular security audits and compliance checks.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Minimum of 4 years of experience in a Security Operations Center (SOC) or similar security engineering role.
• Hands-on experience with security monitoring tools (e.g., SIEM, EDR, network monitoring).
• Strong understanding of networking protocols, operating systems (Windows/Linux), and common security vulnerabilities.
• Experience with firewall management, intrusion detection/prevention systems, and VPN technologies.
• Knowledge of cloud security concepts (AWS, Azure, GCP) is a plus.
• Proficiency in at least one scripting language (e.g., Python, Bash, PowerShell).
• Excellent analytical and problem-solving skills.
• Ability to work effectively in a team environment and communicate technical information clearly.
• Relevant security certifications such as CompTIA Security+, CySA+, or CCNA Security are advantageous.
• Willingness to work in a hybrid model, balancing remote responsibilities with necessary on-site activities.

Join to apply for the Head of Security Operations role at Canonical

Join to apply for the Head of Security Operations role at Canonical

Get AI-powered advice on this job and more exclusive features.

This global leadership role in cyber security is to manage the Security Operations (SecOps) team responsible for design, implementation and evolution of Canonical security practices, techniques, tools, systems and policies. The team is the primary owner of strategy and practices that determine how Canonical secures its data, internal infrastructure and build processes. They are responsible for assuring the security and integrity of our own infrastructure and product deployments. They design and implement technical security controls that ensure security threats are automatically identified, contained and remediated. The team will also contribute ideas and requirements for Canonical product security, improving the resilience and robustness of all Ubuntu customers and users subject to cyber attack.

As a leader on cyber security in the company, the SecOps team manager will collaborate with our Organisational Learning and Development team to develop playbooks and facilitate SecOps training across Canonical. They will operate in a wider security organisation, run a high performing security team and improve Canonical's security posture. They will lead initiatives to integrate the team's insights into Canonical's broader software development process.

While this is a management position, we expect managers to be expert practitioners, able to lead by example, contribute at the highest level, and assess work based on their own professional experience and skill. Candidates should have deep, hands-on expertise with a range of open source and proprietary security tooling and practices, which they can integrate into a holistic next generation security solution across the breadth of Canonical's interests.

The SecOps team's mission is not only to secure Canonical, but also to contribute to the security of the wider open source ecosystem. They might share knowledge through public presentations and industry events, and share threat intelligence with the wider community or represent Canonical in sector-specific governance bodies.

This role reports to the CISO.

What you will do in this role:

• Hire and mentor a team of outstanding technical security professionals
• Define Canonical's SecOps security standards and playbooks
• Own and drive the architecture and design of the SOC
• Analyse and improve Canonical's security architecture
• Evaluate, select and implement new security tools and practices
• Identify, contain and guide the remediation of security threats and cyber attacks
• Grow the presence and thought leadership of Canonical SecOps practice
• Contribute to open source threat intelligence initiatives
• Drive threat modelling, table top exercises and other SecOps practices across Engineering, IS and Canonical
• Develop Canonical SecOps learning and development materials
• Publish blog posts, whitepapers and conference presentations
• Identify, implement and track SecOps KPIs
• Plan and deliver SecOps work in the framework of Canonical's agile engineering practice
• Work with Security leadership to present information and influence change
  
  

• Proven track record of mitigating with advanced threat actors and nation state threats
• Expert technical understanding of SOCs from the ground up
• In depth knowledge of SOC architecture and design including strategies for logging, firewalls, network segmentation, honeypots etc
• Someone who understands how the SOC works not just how to use it
• Expert in Linux security
• Ability to define, implement, automate and measure effective incident response playbooks
• Knowledge of security architecture and market-leading security tools
• Experience contributing to, and consuming, threat intelligence feeds
• Experience in security risk management frameworks such as NIST CSF
• An exceptional academic track record from both high school and university
• Undergraduate degree in Computer Science or STEM, or a compelling narrative about your alternative path
• Drive and a track record of going above-and-beyond expectations
• Deep personal motivation to be at the forefront of technology security
• Leadership and management ability
• Excellent business English writing and presentation skills
• Confidence to report security performance metrics with accountability for accuracy and completeness
  
  

• Experience in offensive or defensive security teams with hands-on ability
• Experience with open source security tools
• Experience with security standards such as ISO 27001
• Experience with security posture management of corporate endpoitns

• Seniority level Director

• Employment type Full-time

• Job function Other, Information Technology, and Management
• Industries Software Development

Referrals increase your chances of interviewing at Canonical by 2x

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Overview

We have opened several senior/staff Security Operations Engineer (SOC) positions, creating a new team reporting to the CISO. We are looking for a range of experience in these positions – at the high end we are looking for deep experience defending highly contested critical assets and high-value cyber targets against advanced persistent threats and state-level actors. We have more junior roles for exceptional individuals with a proven personal interest and engagement in cyber attack and defence, and outstanding academic and career performance even if experience is limited.

Our goal is to build an entirely new level of assurance and observable rigour into the open source supply chain. We have our own estate to monitor, but more broadly our goal is to raise the robustness of the entire global Ubuntu estate through the work of this team. The Security Operations (SecOps) team is responsible for design, implementation and evolution of Canonical security practices, techniques, tools, systems and policies. The team is the primary owner of strategy and practices that determine how Canonical secures its data, internal infrastructure and build processes. They are responsible for assuring the security and integrity of our own infrastructure and product deployments. They design and implement technical security controls that ensure security threats are automatically identified, contained and remediated. The team will also contribute ideas and requirements for Canonical product security, improving the resilience and robustness of all Ubuntu customers and users subject to cyber attack. The SecOps team's mission is not only to secure Canonical, but also to contribute to the security of the wider open source ecosystem. They might share knowledge through public presentations and industry events, and share threat intelligence with the wider community or represent Canonical in sector-specific governance bodies.

• Implement and evolve Canonical's SecOps security standards and playbooks
• Analyse and improve Canonical's security architecture
• Evaluate, select and implement new security tools and practices
• Identify, contain and guide the remediation of security threats and cyber attacks
• Grow the presence and thought leadership of Canonical SecOps practice
• Contribute to open source threat intelligence initiatives
• Drive threat modelling, table top exercises and other SecOps practices across Engineering, IS and Canonical
• Develop Canonical SecOps learning and development materials
• Publish blog posts, whitepapers and conference presentations
• Identify, implement and track SecOps KPIs
• Plan and deliver SecOps work in the framework of Canonical's agile engineering practice
• Work with Security leadership to present information and influence change

• An exceptional academic track record
• Undergraduate degree in Computer Science or STEM, or a compelling narrative about your alternative path
• Drive and a track record of going above-and-beyond expectations
• Deep personal motivation to be at the forefront of technology security
• Expertise in threat modelling and risk management frameworks
• Knowledge of security architecture and market-leading security tools
• Experience contributing to, and consuming, threat intelligence feeds
• Experience in security risk management frameworks such as NIST CSF
• Experience with security standards such as ISO 27001

• Experience in a security operations team or a security operations centre (SOC)
• Experience in offensive or defensive security teams with hands-on ability
• Experience with state-actor and other advanced persistent threats

We consider geographical location, experience, and performance in shaping compensation worldwide. We revisit compensation annually (and more often for graduates and associates) to ensure we recognise outstanding performance. In addition to base pay, we offer a performance-driven annual bonus. We provide all team members with additional benefits, which reflect our values and ideals. We balance our programs to meet local needs and ensure fairness globally.

• Distributed work environment with twice-yearly team sprints in person
• Personal learning and development budget of USD 2,000 per year
• Annual compensation review
• Recognition rewards
• Annual holiday leave
• Maternity and paternity leave
• Employee Assistance Programme
• Opportunity to travel to new locations to meet colleagues
• Priority Pass, and travel upgrades for long haul company events

Canonical is a pioneering tech firm at the forefront of the global move to open source. As the company that publishes Ubuntu, one of the most important open source projects and the platform for AI, IoT and the cloud, we are changing the world on a daily basis. We recruit on a global basis and set a very high standard for people joining the company. We expect excellence - in order to succeed, we need to be the best at what we do. Canonical has been a remote-first company since its inception in 2004. Working here is a step into the future, and will challenge you to think differently, work smarter, learn new skills, and raise your game.

Canonical is an equal opportunity employer. We are proud to foster a workplace free from discrimination. Diversity of experience, perspectives, and background create a better work environment and better products. Whatever your identity, we will give your application fair consideration.

Join to apply for the Senior Security Operations Engineer role at Canonical

Continue with Google Continue with Google

3 months ago Be among the first 25 applicants

Join to apply for the Senior Security Operations Engineer role at Canonical

We have opened several senior/staff Security Operations Engineer (SOC) positions, creating a new team reporting to the CISO. We are looking for a range of experience in these positions - at the high end we are looking for deep experience defending highly contested critical assets and high-value cyber targets against advanced persistent threats and state-level actors. We have more junior roles for exceptional individuals with a proven personal interest an engagement in cyber attack and defence, and outstanding academic and career performance even if experience is limited.

Our goal is to build an entirely new level of assurance and observable rigour into the open source supply chain. We have our own estate to monitor, but more broadly our goal is to raise the robustness of the entire global Ubuntu estate through the work of this team.

The Security Operations (SecOps) team is responsible for design, implementation and evolution of Canonical security practices, techniques, tools, systems and policies. The team is the primary owner of strategy and practices that determine how Canonical secures its data, internal infrastructure and build processes. They are responsible for assuring the security and integrity of our own infrastructure and product deployments. They design and implement technical security controls that ensure security threats are automatically identified, contained and remediated. The team will also contribute ideas and requirements for Canonical product security, improving the resilience and robustness of all Ubuntu customers and users subject to cyber attack.

The SecOps team's mission is not only to secure Canonical, but also to contribute to the security of the wider open source ecosystem. They might share knowledge through public presentations and industry events, and share threat intelligence with the wider community or represent Canonical in sector-specific governance bodies.

What you will do in this role:

• Implement and evolve Canonical's Security Operation Center
• Analyse and improve Canonical's security architecture
• Evaluate, select and implement new security tools and practices
• Identify, contain and guide the remediation of security threats and cyber attacks
• Grow the presence and thought leadership of Canonical SecOps practice
• Contribute to open source threat intelligence initiatives
• Drive threat modelling, table top exercises and other SecOps practices across Engineering, IS and Canonical
• Develop Canonical SecOps learning and development materials
• Publish blog posts, whitepapers and conference presentations
• Identify, implement and track SecOps KPIs
• Plan and deliver SecOps work in the framework of Canonical's agile engineering practice
• Work with Security leadership to present information and influence change
  
  

• An exceptional academic track record
• Undergraduate degree in Computer Science or STEM, or a compelling narrative about your alternative path
• Previous professional experience working or leading a Security Operation Center
• Deep personal motivation to be at the forefront of technology security
• Expertise in threat modelling and risk management frameworks
• Knowledge of security architecture and market-leading security tools
• Experience contributing to, and consuming, threat intelligence feeds
• Experience in security risk management frameworks such as NIST CSF and ISO27001
  
  

• Experience in a security operations team or a security operations centre (SOC)
• Experience in offensive or defensive security teams with hands-on ability
• Experience with state-actor and other advanced persistent threats
  
  

• Distributed work environment with twice-yearly team sprints in person
• Personal learning and development budget of USD 2,000 per year
• Annual compensation review
• Recognition rewards
• Annual holiday leave
• Maternity and paternity leave
• Employee Assistance Programme
• Opportunity to travel to new locations to meet colleagues
• Priority Pass, and travel upgrades for long haul company events
  
  

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology
• Industries Software Development

Referrals increase your chances of interviewing at Canonical by 2x

Manama, Capital Governorate, Bahrain 3 months ago

Manama, Capital Governorate, Bahrain 4 weeks ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

• Monitor security alerts and events from various security tools (SIEM, IDS/IPS, EDR, etc.) to identify potential threats.
• Analyze security incidents, determine their scope and impact, and execute appropriate response procedures.
• Conduct in-depth forensic analysis of security breaches and malware incidents.
• Develop and refine security monitoring and detection rules to improve threat visibility.
• Proactively hunt for emerging threats within the network and systems.
• Collaborate with incident response teams to contain and eradicate threats.
• Provide detailed reports on security incidents, findings, and remediation recommendations.
• Contribute to the development and maintenance of incident response playbooks.
• Stay abreast of the latest cybersecurity threats, vulnerabilities, and attack vectors.
• Participate in threat intelligence gathering and analysis.
• Evaluate and recommend new security technologies and tools.
• Mentor junior security analysts and share knowledge.
• Assist in security awareness training for employees.
• Ensure compliance with security policies and regulatory requirements.
• Perform vulnerability assessments and penetration testing coordination.
• Contribute to the continuous improvement of security operations processes and procedures.
• Participate in on-call rotation for critical security incidents.
• Maintain accurate and up-to-date documentation of security processes and procedures.
• Support the integration and configuration of new security solutions.
• Communicate effectively with stakeholders regarding security posture and incident status.

• Bachelor's degree in Computer Science, Cybersecurity, or a related field, or equivalent professional experience.
• Minimum of 5 years of experience in Security Operations Center (SOC) analysis, incident response, or threat intelligence.
• Strong understanding of network security principles, common attack vectors, and threat landscapes.
• Proficiency with SIEM tools (e.g., Splunk, QRadar, ArcSight) and IDS/IPS systems.
• Experience with EDR solutions and endpoint security best practices.
• Familiarity with scripting languages (e.g., Python, PowerShell) for automation is a plus.
• Relevant certifications such as CISSP, GIAC, CEH, or Security+ are highly desirable.
• Excellent analytical, problem-solving, and critical thinking skills.
• Ability to work independently and collaboratively in a remote team environment.
• Strong written and verbal communication skills.
• Demonstrated ability to handle high-pressure situations effectively.

• Monitor security alerts and events from various sources, including SIEM, IDS/IPS, firewalls, and endpoint detection systems.
• Perform in-depth analysis of security incidents to determine scope, impact, and root cause.
• Develop and execute incident response playbooks and procedures.
• Conduct threat hunting activities to proactively identify and mitigate potential security risks.
• Analyze malware samples and develop detection signatures.
• Stay informed about the latest cyber threats, vulnerabilities, and attack vectors.
• Utilize forensic tools and techniques to investigate security breaches.
• Collaborate with internal teams (IT, Engineering, Legal) and external partners during incident response.
• Contribute to the continuous improvement of SOC processes, tools, and technologies.
• Develop and maintain documentation related to SOC operations and incident response.
• Mentor and provide guidance to junior SOC analysts.
• Participate in on-call rotations as needed for critical incident response.

• Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field; equivalent experience considered.
• 5+ years of experience in security operations, incident response, or threat analysis.
• Proficiency with Security Information and Event Management (SIEM) systems (e.g., Splunk, QRadar, LogRhythm).
• Experience with intrusion detection/prevention systems (IDS/IPS) and network security monitoring tools.
• Strong understanding of network protocols, operating systems (Windows, Linux), and common attack vectors.
• Familiarity with threat intelligence platforms and methodologies.
• Excellent analytical, problem-solving, and critical thinking skills.
• Strong communication and collaboration skills, essential for a remote team environment.
• Relevant certifications such as GSEC, GCIH, CySA+, or CEH are highly desirable.
• Demonstrated ability to work effectively independently and as part of a distributed team.