Job Description

This role required candidate to permanently relocate at Dhahran, Saudi Arabia.

About the Company

This company engages in the exploration, production, transportation, and sale of crude oil and natural gas. It operates through the following segments: Upstream, Downstream, and Corporate. The Upstream segment includes crude oil, natural gas and natural gas liquids exploration, field development, and production. The Downstream segment focuses on refining, logistics, power generation, and the marketing of crude oil, petroleum and petrochemical products, and related services to international and domestic customers. The Corporate segment offers supporting services including human resources, finance, and information technology. The company was founded on May 29, 1933 and is headquartered in Dhahran, Saudi Arabia.

Job Summary

We are seeking a Process Automation Network Cybersecurity Engineer to join Ju\'aymah NGL Fractionation Department within our Automation and Control Engineering Team. Automation and Control Engineering Team is a multi-disciplinary organization with interface to technical, business administration, and support requirements for our plant OT network. Your primary role will be to handle plant cybersecurity engineering aspects. This will include providing technical support for establishing and maintaining cybersecurity compliance and risk program. You will also be responsible for providing to provide SME guidance and support for any cybersecurity controls, risk remediation, compliance issues and cybersecurity technology deployments.

Responsibilities:

• Provide technical guidance, support, training, and expertise for OT (Operational Technology) cybersecurity compliance, controls, and risks.
• Conduct various cybersecurity compliance assessments, risk assessments, business impact analyses, and other cybersecurity reviews.
• Analyze technical controls to ensure that specific security and compliance requirements are met by verifying documented processes, procedures, and standards to validate the maintenance of secure configurations.
• Act as a subject matter expert for information security principles and practices, fostering a culture of security throughout the organization.
• Offer support for threat intelligence and vulnerability management programs across the organization.
• Conduct risk assessments to identify cybersecurity risks and provide recommendations for risk mitigation.
• Support the incident response and reporting program by providing expert guidance in collaboration with corporate teams.
• Assist in the development of security policies and procedures for various security domains.
• Collaborate closely with corporate experts to enhance the cybersecurity maturity of plants as per defined models.
• Provide subject matter expert (SME) support for critical cybersecurity-related projects to ensure implementation in accordance with applicable standards.
• Develop and manage key performance metrics to track and ensure compliance with established policies and standards.
• Participate in the development of security awareness programs for all relevant support teams.

• This role required candidate to permanently relocate at Dhahran, Saudi Arabia.
• Hold a Bachelor\'s degree in Computer Engineering, Network Engineering, Computer Science, Information Security, MIS, or an equivalent field.
• Possess a minimum of 12 years of experience in OT (Operational Technology) cybersecurity, with a focus on cybersecurity compliance, controls implementation, and risk management.
• Experience in the Oil and Gas industry is preferred.
• Hold at least one industry certification (e.g., CISA, CISM, CRISC, CISSP, ISAAP), which is highly desired.
• Demonstrate strong analytical and troubleshooting skills in the field of cybersecurity.
• Have experience in securing Windows and Linux Operating Systems.
• Understand and have experience with network security tools and controls, including Network Switches and Routers, Firewalls, Intrusion Detection Systems, Data Diodes, Security Monitoring, Network Vulnerability Assessment, and Threat Intelligence.
• Be familiar with implementing cybersecurity international standards such as ISO 27001/27005, NIST, IEC 62443, ISA, etc.
• Have experience in LAN/WAN architectures and related diagnostic tools.
• Possess experience and knowledge in designing and optimizing complex LAN environments, including LAN/WAN and wireless networking principles and protocols (Ethernet, TCP/IP, VLAN, WLAN, Frame Relay, Firewall, DMZ, VPN, IDS, switches, routers, firewalls, TCP/IP protocols \xe2\x80\x93 SMTP, SNMP, FTP, HTTP, SSH, SSL).
• Be experienced in Network Security, including Firewall, ACL, IDS, IPS, SIEM.
• Have specific experience with Routers, Switches, or Firewalls.
• Possess Microsoft-related expertise in Active Directory, DNS, WSUS, Terminal Server, and experience with anti-virus systems, backup & restore solutions, and system management.

MatchaTalent