HubMub
-
ParamInfo

Information Security Analyst

ParamInfo
United Arab Emirates · Full-time · Mid-Senior
Job Description

Job Title: Information Security Analyst

Job Location: Abu Dhabi

Roles & Responsibilities

Penetration Testing and Red Teaming:

  • Conduct comprehensive penetration testing and red teaming exercises on systems, networks, applications and mobile to identify vulnerabilities and potential entry points for attackers.
  • Develop and execute custom tools and scripts to automate testing and exploitation processes.
  • Analyze and report on findings, providing detailed explanations of vulnerabilities and recommended remediation steps.
  • Simulate advanced persistent threats (APTs) to test the resilience of security controls and incident response capabilities.
  • ASM: Continuously discover and catalog all assets, including hardware, software, and network components.
  • ASM: Monitor the attack surface for changes and potential vulnerabilities, using automated tools and manual assessments.

Vulnerability Assessment

  • Perform thorough vulnerability assessments to identify and prioritize security weaknesses.
  • Utilize industry-standard tools such as Qualys, Nessus or Nexpose and methodologies to uncover vulnerabilities in various environments.
  • Provide actionable recommendations for remediation and mitigation strategies.
  • Patch management

Threat Modeling And Risk Assessment

  • Conduct threat modeling and risk assessments to identify potential attack vectors and vulnerabilities
  • Develop and maintain a comprehensive understanding of our systems, networks, and applications to identify potential vulnerabilities
  • Provide recommendations for remediation and mitigation strategies

Incident Response And Crisis Management

  • Participate in security incident response and crisis management efforts as needed
  • Collaborate with incident response teams to contain and remediate security incidents
  • Provide technical expertise and guidance during incident response efforts

Security Research And Development

  • Stay up-to-date with the latest security threats and trends, and adapt testing methodologies accordingly
  • Develop and maintain a comprehensive knowledge of industry-leading security tools and technologies
  • Participate in security research and development efforts to identify and develop new testing techniques and methodologies

Collaboration And Communication

  • Collaborate with development teams to implement security patches and fixes
  • Provide technical guidance and support to development teams on security-related issues
  • Communicate complex technical information to non-technical stakeholders in a clear and concise manner

Reporting And Documentation

  • Develop and maintain detailed reports on findings, including vulnerability assessments, penetration testing results, and recommendations for remediation
  • Document testing methodologies, tools, and results in a clear and concise manner
  • Maintain accurate and up-to-date records of testing activities and results

Mandatory Requirements

  • Bachelor's degree in Computer Science, Information Assurance, or a related field
  • OSCP, CEH, or other relevant certifications
  • 5+ years of experience in penetration testing, vulnerability assessment, or a related field
  • Strong understanding of networking protocols, operating systems, and applications
  • Proficiency in programming languages such as Python, C++, or Java
  • Experience with penetration testing frameworks and tools such as Nmap, Nessus, Burp Suite, or Metasploit
  • Strong analytical and problem-solving skills
  • Excellent communication and reporting skills
  • Ability to work independently and as part of a team
  • Strong attention to detail and ability to maintain accurate records
  • Ability to work in a fast-paced environment with tight deadlines

Preferred Additional Requirements

  • Experience with cloud-based technologies and cloud security
  • Familiarity with Agile development methodologies
  • Strong understanding of compliance and regulatory requirements (e.g., GDPR, PCI-DSS)
  • Experience with security orchestration, automation, and response (SOAR) tools
  • Familiarity with threat intelligence and threat hunting

Key Skills

Ranked by relevance

nessus cloud ceh python c java nmap metasploit gdpr dss
Login to Apply
🇦🇪

Country Guide

United Arab Emirates

Tax-friendly regional tech hub

Posted
Nov 08, 2024
Type
Full-time
Level
Mid-Senior
Location
Abu Dhabi
Company
ParamInfo

Industries

IT Services IT Consulting

Categories

Information Technology

Related Jobs

3 roles aligned with this opportunity

View all jobs
View Job Details
Khazna Data Centers
Related

Data Engineer

2026-06-17

Full-time
Associate
United Arab Emirates
IT Services
Information Technology
View Job Details
Atain
Related

Data Scientist

2026-06-16

Full-time
Mid-Senior
United Arab Emirates
Transportation
Information Technology
View Job Details
Next Ventures
Related

Senior Python Engineer (NLP) - Munich

2026-06-16

Full-time
Mid-Senior
Germany
IT Services
Engineering