We’re looking for a Senior Security Engineer to strengthen ALEC’s cyber defense capabilities and ensure the resilience of our enterprise IT infrastructure. If you have hands-on expertise in SIEM engineering, cloud security, threat detection, and incident response — this is your opportunity to lead the charge in proactive cyber defence across diverse digital environments.

Who We Are

ALEC Holdings PJSC, part of the Investment Corporation of Dubai (ICD), is a leading GCC construction group with over two decades of success delivering some of the region’s most complex and high-profile projects. As a proudly publicly listed company, ALEC continues to raise the bar for quality, innovation, and excellence in construction, driving iconic developments that shape skylines across the Middle East.

Our IT and cybersecurity division is critical to ensuring the secure and uninterrupted operation of ALEC’s digital infrastructure. From building secure cloud environments to detecting advanced threats, our team delivers enterprise-grade protection aligned with international standards and emerging risks.

Why Join Us?

As Senior Security Engineer, you’ll play a key role in protecting our systems, data, and users through threat detection, incident response, and automation. You will engineer defenses across cloud, network, and endpoint layers while continuously improving security visibility and resilience.

At ALEC, security is a strategic priority. Join a team where your expertise and ideas directly impact the protection of regional megaprojects and core business operations.

About Your Team

You’ll be joining a dedicated cybersecurity team focused on building a modern, threat-informed defence capability. We collaborate closely with infrastructure, application, and compliance teams to ensure comprehensive security coverage across the organization — from SOC to the cloud.

Your Role

As Senior Security Engineer, you will:

SIEM & Detection Engineering

• Configure, tune, and manage SIEM platforms (Elastic preferred) for effective log ingestion, correlation, and alerting
• Develop custom detection rules and integrate threat intelligence feeds
• Automate triage and response workflows to reduce false positives
• Investigate incidents using MITRE ATT&CK-aligned analytics and dashboards

Network Security

• Monitor and analyse network traffic, flow data, and packet captures
• Manage firewalls, IDS/IPS, VPNs, and support zero-trust architectures
• Implement secure segmentation and layered defence strategies

Endpoint & Operating System Security

• Detect privilege escalation and suspicious OS behaviour on Windows and Linux
• Analyse processes, registry, and event logs to identify advanced threats
• Conduct host-based forensics and scripting for evidence collection

Cloud Security

• Implement and monitor security controls across Azure, AWS, and GCP
• Enforce IAM best practices and perform cloud configuration audits
• Secure hybrid workloads (containers, serverless, virtual environments)

Scripting & Automation

• Write scripts in Python, PowerShell, or Bash to automate SOC workflows
• Develop SOAR playbooks for automated incident response
• Enrich and manipulate log data for advanced detection use cases

Threat Intelligence & Hunting

• Analyse threat intelligence aligned with MITRE ATT&CK
• Conduct hypothesis-driven threat hunts to detect hidden threats
• Refine detection logic based on evolving TTPs

Incident Response

• Lead investigations using NIST and ISO 27035 frameworks
• Coordinate containment, eradication, and recovery activities
• Document root causes, lessons learned, and ensure long-term remediation

Malware Analysis

• Identify malware behaviour and persistence mechanisms
• Perform static/dynamic analysis using sandboxes or reverse engineering
• Translate findings into improved detection and prevention strategies

What We’re Looking For

• Bachelor’s degree in Computer Science, Information Security, or equivalent experience
• Minimum 5+ years in Security Engineering, SOC, or Incident Response roles
• Strong experience with SIEM platforms (Elastic preferred)
• Hands-on knowledge of Azure/M365 security; familiarity with Oracle OCI
• Proficient with EDR, firewalls, IDS/IPS, and network analysis tools
• Excellent grasp of incident response, vulnerability management, and log analysis

Soft Skills & Attributes

• Strong analytical thinking and structured problem-solving mindset
• Clear communication and concise technical documentation skills
• Ability to stay calm and focused during high-pressure incident response
• Collaborative, team-oriented approach to cybersecurity operations
• Passion for learning and improving processes continuously

What We Offer

• Opportunity to contribute to the most iconic projects in the region
• A forward-thinking digital team with space for innovation and growth
• Supportive and collaborative project culture
• Full-time on-site position based in the UAE

Ready to help shape the digital future of construction?

If you’re inspired by this opportunity and believe you’re the right fit, we want to hear from you.

Join ALEC Building and be a driving force behind digital excellence on world-class projects.

Apply today and let’s build something exceptional.