Overview:

About Us
Core42, a leader in AI-powered cloud and digital infrastructure, is driving transformative technology solutions globally. Leveraging advanced resources and partnerships, Core42 empowers clients to harness sovereign AI infrastructure, especially in sectors with stringent regulatory needs. With a mission to redefine digital transformation, we combine sovereign capabilities with scalable, high-performance compute infrastructure, positioning itself at the forefront of AI innovation in the Middle East and beyond.

The opportunity
Play a pivotal role in advancing Core42’s SOC capabilities by leading complex threat investigations, enhancing detection logic, and strengthening incident response processes. As a Senior Specialist, you will serve as a subject matter expert across security monitoring technologies, threat analysis, and detection engineering, helping shape the technical maturity of SOC operations. Working closely with analysts, architects, and cross-functional teams, you will drive improvements in threat visibility, refine SOC use cases, and ensure high-quality operational performance. This role is well-suited for a highly skilled cybersecurity professional with strong analytical capabilities and deep hands-on experience in enterprise SOC operations.

Responsibilities:

• Lead advanced investigations of complex security incidents, conducting deep-dive analysis across logs, hosts, network data, and cloud platforms to determine root causes and potential business impact.
• Develop, enhance, and optimize SIEM detection rules, correlation logic, and SOAR playbooks to strengthen SOC detection capability and reduce mean time to detect (MTTD).
• Oversee the tuning, configuration, and performance of SIEM, EDR, VA, SOAR, and threat intelligence tools, ensuring operational reliability and data quality.
• Provide technical guidance to SOC analysts, reviewing escalations, validating findings, and supporting continuous improvement of investigation quality and analytical depth.
• Create and maintain advanced SOC documentation such as incident response playbooks, detection engineering guidelines, and technical runbooks.
• Perform regular assessments of SOC operational readiness, identifying gaps in detection coverage, log ingestion, use case completeness, and incident workflows.
• Deliver technical reports and threat insights to leadership, highlighting emerging risks, key findings, and recommendations for security enhancements.
• Collaborate with cloud, engineering, GRC, and IT teams to support investigations, improve logging strategies, and strengthen cross-domain visibility.
• Lead threat-hunting initiatives by proactively identifying anomalous patterns, attacker behaviors, and high-risk activities across the environment.

Qualifications:

 • Bachelor’s degree in Cybersecurity, Computer Science, or a related field, with advanced security certifications such as SANS, GCIA, GCIH, or similar considered an asset.
• 3–5 years of hands-on experience in SOC operations, security monitoring, incident response, or detection engineering roles.
• Deep technical knowledge of SIEM platforms, SOAR orchestration, EDR technologies, log analysis, cloud security monitoring, and vulnerability management.
• Strong understanding of cybersecurity frameworks including MITRE ATT&CK, ISO 27001, NIST CSF, and CIS Controls.
• Proven ability to independently investigate complex security incidents and provide well-documented findings and recommendations.
• Experience developing SIEM use cases, enhancing correlation logic, and designing automated SOAR workflows to improve SOC maturity.
• Excellent communication and documentation skills, enabling clear articulation of technical insights to both technical and non-technical stakeholders.
• Ability to work under pressure, manage multiple priorities, and lead initiatives that drive measurable improvements in detection and response capabilities.
• Strong analytical, problem-solving, and research skills with an ability to stay current on emerging threats and adversary techniques.
• Demonstrated ability to mentor junior analysts, share knowledge, and elevate the overall performance and skill level of the SOC team. 

With a diverse team of 1,100+ employees from 68 nationalities, we foster an inclusive, innovative and collaborative environment. At Core42, we foster a culture grounded in trust, accountability and high performance. We are united by our values: Grit, where we overcome challenges with resilience and determination; Passion, which drives us to pursue excellence in everything we do; and Impact, as we aim to inspire progress and create meaningful change. Our team members thrive in an environment where each person’s contributions propel us forward, and together, we commit to achieving extraordinary results.

Competitive Salary: We offer an attractive salary package based on your skills and experience.
Yearly Bonus: In recognition of your contributions, you will receive a performance-based annual bonus.
Exclusive Discount Cards: Access special benefits with Esaad and Fazaa cards, offering discounts across a wide range of services.
Premium Family Insurance: We provide comprehensive health coverage, including dental, vision and life insurance.
Learning & Development: We offer access to top-tier learning platforms to help you grow in your career.