2 063 Security Incidents jobs in Bahrain

• Monitoring SIEM systems for security events, anomalies, and potential threats.
• Investigating security alerts and incidents, performing root cause analysis.
• Developing and refining SIEM correlation rules and dashboards to enhance threat detection.
• Leading incident response activities, including containment, eradication, and recovery.
• Conducting forensic analysis of security incidents to determine scope and impact.
• Developing and maintaining incident response playbooks and procedures.
• Providing timely and accurate reports on security incidents and trends.
• Collaborating with IT and other departments to implement security recommendations.
• Staying up-to-date with the latest cybersecurity threats, vulnerabilities, and defense techniques.
• Participating in security awareness training and promoting a security-conscious culture.

• Monitor security alerts and logs from various security tools (SIEM, IDS/IPS, EDR, etc.) to detect and analyze potential security incidents.
• Conduct in-depth investigations into security breaches, malware infections, and other security-related events.
• Develop, refine, and execute incident response plans and procedures.
• Perform threat hunting activities to proactively identify and mitigate potential security risks.
• Analyze threat intelligence feeds and reports to stay informed about emerging threats and vulnerabilities relevant to the organization.
• Conduct vulnerability assessments and penetration testing (or coordinate with external teams).
• Develop and implement security controls and best practices to enhance the organization's security posture.
• Create and deliver security awareness training for employees.
• Document security incidents, findings, and remediation efforts in a clear and concise manner.
• Collaborate with IT and business units to implement security recommendations and ensure compliance with security policies.
• Participate in on-call rotation for security incident response.
• Stay up-to-date with the latest cybersecurity threats, trends, and technologies.

• Bachelor's degree in Computer Science, Information Security, Cybersecurity, or a related field.
• Minimum of 5 years of experience in information security, with a focus on threat intelligence and incident response.
• Hands-on experience with SIEM platforms (e.g., Splunk, QRadar), EDR solutions, and other security tools.
• Strong understanding of network protocols, operating systems (Windows, Linux), and common attack vectors.
• Proven experience in incident response methodologies and forensics.
• Familiarity with threat intelligence platforms and analysis techniques.
• Excellent analytical, problem-solving, and critical-thinking skills.
• Strong communication and reporting skills, with the ability to explain complex security issues to both technical and non-technical audiences.
• Relevant security certifications such as CISSP, GIAC (GSEC, GCIA, GCIH), or Security+ are highly desirable.
• Ability to work effectively under pressure and manage multiple priorities in a fast-paced environment.
• Must be able to work on-site in **Seef, Capital, BH**.

• Monitoring security systems and analyzing security alerts from various sources (SIEM, IDS/IPS, EDR, etc.).
• Investigating and responding to security incidents in a timely and effective manner, including containment, eradication, and recovery.
• Developing and maintaining threat intelligence capabilities, including gathering, analyzing, and disseminating threat information.
• Performing vulnerability assessments and penetration testing to identify weaknesses in the security infrastructure.
• Developing and implementing security policies, procedures, and best practices.
• Creating and delivering security awareness training to employees.
• Collaborating with IT and development teams to ensure security is integrated into all aspects of the technology stack.
• Conducting digital forensics investigations to determine the root cause of security breaches.
• Staying current with the latest security threats, vulnerabilities, and mitigation techniques.
• Contributing to the development and refinement of the incident response plan.

• Monitor security alerts and logs from various security tools (SIEM, IDS/IPS, EDR) to detect potential security incidents.
• Conduct in-depth analysis of security events, identifying the nature, scope, and impact of threats.
• Lead and coordinate incident response efforts, including containment, eradication, and recovery of compromised systems.
• Develop and maintain threat intelligence feeds, analyzing adversary tactics, techniques, and procedures (TTPs).
• Perform vulnerability assessments and penetration testing, reporting findings and recommending remediation actions.
• Develop and implement security policies, procedures, and best practices.
• Create detailed incident reports and post-incident reviews, providing actionable insights.
• Collaborate with IT and business units to ensure security controls are effectively implemented and maintained.
• Stay current with emerging security threats, vulnerabilities, and technologies.
• Develop and deliver security awareness training to employees.
• Manage security investigations and evidence preservation for legal or compliance purposes.
• Contribute to the continuous improvement of the Security Operations Center (SOC) capabilities.

• Bachelor's degree in Computer Science, Information Security, or a related field. Master's degree or relevant certifications (CISSP, CISM, GIAC) are highly desirable.
• 5+ years of experience in information security, with a focus on threat intelligence and incident response.
• Proficiency with SIEM platforms (e.g., Splunk, QRadar), IDS/IPS, EDR solutions, and network security tools.
• Strong understanding of various attack vectors, malware analysis, and digital forensics.
• Experience with vulnerability assessment tools and methodologies.
• Knowledge of cybersecurity frameworks such as NIST, ISO 27001, or COBIT.
• Excellent analytical, problem-solving, and critical thinking skills.
• Strong communication and interpersonal skills, with the ability to articulate complex technical issues clearly.
• Ability to work under pressure during critical security incidents.
• Experience in scripting languages (e.g., Python, PowerShell) is a plus.
• Familiarity with cloud security concepts (AWS, Azure).

Role Description

This is a full-time hybrid role located in Manama, with some work-from-home flexibility, for a Cyber Security Analyst. The Cyber Security Analyst will be responsible for monitoring and analyzing system vulnerabilities, providing technical support, troubleshooting issues, and ensuring the integrity of information technology systems. The role involves conducting threat assessments, developing and implementing security measures, and responding to security incidents.

Company Description

TAM-C Solutions empowers clients with actionable intelligence, enabling them to conduct business in a risk-acceptable environment. We are dedicated to providing top-tier cyber security services that help organizations protect their most valuable assets. Our team of experts collaborates closely with clients to ensure comprehensive security strategies tailored to their specific needs. At TAM-C Solutions, our mission is to enhance the security posture of our clients through innovative solutions and expert guidance.

Role Description

This is a full-time on-site role for a Cyber Security Analyst located in Manama. The Cyber Security Analyst's day-to-day tasks involve monitoring and analyzing security incidents, conducting malware analysis, and ensuring application and network security. The role also entails implementing and maintaining security measures to protect IT systems and infrastructure. The analyst will regularly perform vulnerability assessments and provide recommendations for continuous improvement.

Qualifications

• Application Security and Network Security skills
• Cybersecurity and Malware Analysis experience
• Strong Analytical Skills
• Excellent problem-solving abilities and attention to detail
• Ability to work on-site in Manama
• Relevant certifications such as CISSP, CISM, or CEH are a plus
• Previous experience in a similar role is beneficial
• Bachelor's degree in Computer Science, Information Technology, or a related field

• Monitoring security alerts and events to detect and respond to potential threats.
• Analyzing security vulnerabilities and recommending remediation strategies.
• Implementing and managing security tools and technologies, such as firewalls, intrusion detection systems, and SIEM solutions.
• Conducting regular security assessments and penetration testing.
• Developing and updating security policies, procedures, and guidelines.
• Investigating security incidents and providing detailed post-incident reports.
• Collaborating with IT teams to ensure secure system configurations and deployment.
• Educating users on security best practices and raising awareness of potential risks.
• Staying informed about the latest cybersecurity threats, trends, and technologies.
• Contributing to the development and maintenance of the organization's security architecture.
• Ensuring compliance with relevant data protection regulations and standards.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Minimum of 3 years of experience in information security roles.
• Proven experience with security monitoring tools and incident response.
• Strong understanding of network security, cloud security, and endpoint security.
• Knowledge of common security frameworks (e.g., NIST, ISO 27001).
• Excellent analytical, problem-solving, and critical thinking skills.
• Strong communication and interpersonal skills, with the ability to explain technical concepts clearly.
• Relevant security certifications (e.g., CISSP, CompTIA Security+) are highly desirable.
• Ability to work independently and as part of a distributed team in a remote environment.