Location: Riyadh, KSA
Notice Period :Only Immediate joiners OR not longer than 30 days’ Notice Period.
Experience: Relevant
Skills: Endpoint, SIEM, Splunk , Log Management & XDR Specialist: Palo Alto Cortex XDR, Kaspersky EPP
Job Description:
We are seeking a skilled Cybersecurity Engineer with strong expertise in Endpoint Security, SIEM, Splunk, Log Management, and XDR technologies. The role involves designing, implementing, and managing enterprise security monitoring and endpoint protection solutions to ensure proactive threat detection, rapid incident response, and regulatory compliance. The position is onsite in Riyadh and supports critical security operations across enterprise environments.
Key Responsibilities:
- Deploy, manage, and maintain XDR and EPP agents across all endpoints and servers.
- Investigate and respond to malware, exploits, and fileless attack incidents.
- Optimize detection by tuning security policies and reducing false positives.
- Integrate endpoint telemetry with SIEM/XDR platforms for unified visibility.
- Prepare and deliver monthly endpoint risk and compliance reports.
- Design, deploy, and manage Splunk SIEM architecture including indexers, forwarders, and syslog collectors.
- Integrate logs from firewalls, endpoints, NDR, DLP, WAF, SOAR, cloud, and SaaS platforms into a unified SIEM.
- Develop custom detection rules, dashboards, and correlation searches to identify threats.
- Tune and optimize syslog parsing, field extractions, and indexing to ensure performance and cost efficiency.
- Collaborate with Threat Intelligence & SOAR (Engineer 8) to automate response workflows.
- Manage log retention policies to ensure compliance with frameworks like NCA, PCI DSS, and GDPR.
- Deliver weekly security dashboards and monthly SIEM health and detection performance reports.
If you are interested in this opportunity, please send your resume to Career@flint-international.me ensure the position name is included in the subject line.