Title:  Application Security and Vulnerability Analyst

Job Req ID:  13183

Aramco energizes the world economy.

Aramco occupies a unique position in the global energy industry. We are the world's largest producer of hydrocarbons (oil and gas), with the lowest upstream carbon intensity of any major producer. 

With our significant investment in technology and infrastructure, we strive to maximize the value of the energy we produce for the world along with a commitment to enhance Aramco’s value to society.

Headquartered in the Kingdom of Saudi Arabia, and with offices around the world, we combine market discipline with a generations’ spanning view of the future, born of our nine decades experience as responsible stewards of the Kingdom’s vast hydrocarbon resources. This responsibility has driven us to deliver significant societal and economic benefits to not just the Kingdom, but also to a vast number of communities, economies, and countries that rely on the vital and reliable energy that we supply.

We are one of the most profitable companies in the world, as well as amongst the top five global companies by market capitalization.

Job Overview

We are seeking a Lead Operating System Analyst to join the Application Security and Vulnerability Management Division of Information Protection Department.

The Application Security and Vulnerability Management Division is responsible for providing assurance to Saudi Aramco about the security of its applications, systems and information by managing vulnerabilities and application security processes and related technologies.

The Lead Operating System Analyst’s primary role is to secure Saudi Aramco Public Cloud Infrastructure related to network, systems and applications.

Duties and Responsibilities

• Assess Public Cloud Posture and perform compliance assessments of Public Cloud deployments
• Develop, plan and develop plans to implement security controls and monitoring of security controls
• Perform vulnerability assessment scans for cloud native application deployments
• Manage vulnerabilities lifecycle from discovery to remediation 
• Support remediation of vulnerabilities and compliance assessment findings
• Ensure workloads deployed in Cloud adhere to internal and industry cybersecurity standards
• Develop strategy for cloud security monitoring and ingestion and monitoring of logs
• Review and propose changes to Network Communication architecture in Cloud and on-premise applications
• Assist in the review and update of cyber security policies, architectures and standards
• Provide subject matter expertise for Public Cloud Architecture and Cybersecurity matters
• Provide technical guidance and mentorship to team members and various stakeholders

Minimum Requirements

A. Bachelor’s degree in Computer Science, Computer Engineering or Cybersecurity
B. 10 years Of Experience and Relevant Cybersecurity Certifications


Working environment

Our high-performing employees are drawn by the challenging and rewarding professional, technical and industrial opportunities we offer, and are remunerated accordingly.

At Aramco, our people work on truly world-scale projects, supported by investment in capital and technology that is second to none. And because, as a global energy company, we are faced with addressing some of the world’s biggest technical, logistical and environmental challenges, we invest heavily in talent development.

We have a proud history of educating and training our workforce over many decades. Employees at all levels are encouraged to improve their sector-specific knowledge and competencies through our workforce development programs – one of the largest in the world.


Country/Region:  SA