Raytheon Technologies Cybersecurity Assessment Lead in Dhahran, Saudi Arabia
Cybersecurity Assessment Lead
Support an international engagement to enable mission accomplishment by analyzing all relevant cyber security event data and other information sources for suspicious network traffic, attack indicators and potential security breaches; produce reports, assist in coordination during incidents. In support of the customer’s strategic direction, key individuals support the Cyber Security Operations Center (CSOC) employing innovative technologies and techniques.
Location: Dhahran, Saudi Arabia
Looking for a qualified individual who will be responsible for developing, leading, and providing a Governance, Risk and Compliance capability to be leveraged internally and for our customers. Candidate will be responsible for leading and performing Vulnerability Assessment offerings and Information Assurance monitoring internally and to our customers as Vulnerability & Assessment Analyst. The candidate will actively test, analyze, and report on potential security findings by utilizing approved security monitoring & assessment tools. The candidate will lead and work as part of a technical support team delivering the Information Assurance and Security services using a variety of in-house and commercial tools to evaluate the security posture of the information systems.
The qualified candidate will work in and/or understand a multi-level security networked environment.
The candidate will analyze, assess, and report on the findings, impact and risk of detected potential threats on production systems by reviewing ongoing tools output
Work effectively and collaboratively with functional groups to investigate fix actions associated to security findings. Also have the ability to create, update, and maintain documentation, diagrams, and security documentation. (i.e. Concept of Operations, Standard Operating Procedures)
Integrate and deliver compliant solutions adhering to mandate NCA controls, frameworks and guidelines, and relevant NIST 800 series guidelines.
Work with a dynamic team and customer environment, effectively communication with both internal and external groups.
Willing to work rotating shifts with moderate overtime
10+ years of experience in systems cyber security analysis
Working knowledge of network security management and operations in a classified environment
Hands-on experience with vulnerability assessment tools, analysis, and reporting.
Hands-on experience with linux and windows from a networking perspective.
Working knowledge and Understanding of network protocols and common services such as DNS, FTP, email, TCP/ICMP/UDP.
Experienced applying NCA Controls, Frameworks and Standards, and Guidelines
Experienced performing Assessment and Authorization process as defined in NIST 800 series documents
Experienced with IA policy, procedures, and requirements to ensure secure solution implementation and adherence
Ability to speak and read Arabic
Security Controls Testing / Vulnerability Assessment
Experience with CA Services Desk Manager
Experience establishing and maintaining good working relationships in all levels of the organization, including customers, organizations, internal management, and support organizations
Prior experience working in one of the following is highly desired: Security Operations Center (SOC)/Network Operations Center (NOC). Computer Emergency/Incident Response Team (CERT/CIRT).
GIAC Security Essentials Certification (GSEC) or
Systems Security Certified Practitioner (SSCP) or
- Certified Information Systems Security Professional (CISSP)
GIAC Certified Incident Handler (GCIH)
GIAC Certified Enterprise Defender (GCED)
GIAC Security Expert (GSE)
Required Education (including Major):
Bachelor of Science Degree with a major in Computer Science/Computer Engineering, Engineering, Science or a related field.
10+ years of experience or equivalent education with experience.
Candidates will be subject to skillset evaluation in interview process to validate technical capability.
This position requires either a U.S. Person or a Non-U.S. Person who is eligible to obtain any required Export Authorization.
Raytheon is currently looking for talent to fill roles located in Riyadh, Saudi Arabia or Eastern Province, Saudi Arabia. It is contemplated that the employer in this case would be a planned Joint Venture between Raytheon and Saudi Aramco affiliated companies that has not yet been formed and is subject to pre-formation regulatory clearances. Employment is contingent on formation of the Joint Venture and offers of employment will not be made by the Joint Venture until the formation is complete.