OT Cybersecurity Technologist
Job Description & How to Apply Below
Responsibilities
- To execute the day‑to‑day ICT activities related to the operational technology security at plants by managing the design and overseeing the implementation of all security measures linked to IC applications and systems, conducting risk assessments and developing contingency plans to mitigate foreseeable threats and protect the confidentiality and integrity of employee, customer, and business information in compliance with ICT cybersecurity policies, instructions, manuals, and standards.
- Commission the preparation and the implementation of necessary operational security software updates, firewall installation, hardware additions, and any authorized technical changes related to the security functions to ensure compliance both with internal security policies and applicable laws and regulations.
- Design and manage processes for detection, investigation, correction, and/or prosecution of operational security breaches, violations, and incidents.
- Benchmark, analyze reports on, and make recommendations for the improvement of the OT security infrastructure.
- Work with management to ensure that OT security issues are addressed as new equipment, facilities, services, and systems are installed.
- Background in technical OT roles such as architecture, security program development or operations, with a clear interest in operational security.
- Liaise with and offer technical direction to related operational security governance functions (Physical Security/Facilities, Risk Management, Legal and Compliance) plus senior and middle managers throughout the organization on information security matters such as routine security activities, emerging security risks and control technologies.
- Plan, implement and upgrade security measures and controls.
- Protect digital files and operational security systems against unauthorized access, modification, or destruction.
- Maintain data and monitor/review security access authorizations.
- Manage network, intrusion detection and prevention systems.
- Work on the security tools such as security asset inventory management and risk management reporting to SIEM.
- Define, implement, and maintain corporate security manuals, policies, procedures & instructions.
- Coordinate further security plans, awareness received from vendors and take required actions.
- Conduct security assessments of network infrastructure, hosts and applications.
- Work on IC security‑related audit findings and maintain corrective actions.
- Download, validate and apply the latest Antivirus DAT file to AV server and ensure it is published to all IC machines continuously monitoring the AV server dashboard.
- Identify, monitor and analyze assets using supportive tools (IPS, firewall log, system events and antivirus reports).
- Analyze ICs firewall events log, DNS, router, and switches events log.
- Validate and deploy firmware and software updates and deactivate unnecessary software or access.
- Define and implement backup schedule for all IC assets, system configuration backups, machine image backups, router and switches backups, firewall backups.
- Manage user accounts of ICs, network, and security equipment.
- Support project execution team to integrate new OT systems into the plant security framework.
- Address audit findings and observations.
- Work with IC modifications as requested.
- Collect and archive system logs, events, change logs, failure events, etc. to support audit and forensic analysis.
- Ensure all implementation activities comply with published IC policies, instructions, and procedures.
- Bachelor's Degree in Information Security Technology, Computer Science or Electrical/Electronic Engineering.
- Must be IC certified from SANS; following certificates will be a great additional advantage: GIAC GICSP, ISA CAP, Cybersecurity for Automation, Control, and SCADA Systems (ISA‑99/IEC‑62443), Advanced SCADA Security – Red Tiger or any other vendor, Industrial Cybersecurity for OPC (Matrikon or any other vendor), OPC‑UA Hands‑on Training Level‑3 (OPCTI).
- 3‑5 years field experience in the OT cybersecurity domain in oil & gas & petrochemical industry.
- Excellent knowledge of common IT/OT ICT specialization areas related to PLC’s, DCS’s, PDCS, firewalls, networks, and switches.
- Exposure to implementing IT/OT security policies and regulations.
- Knowledge of international & national standards frameworks such as ISA
99, IEC
62433, IEC
61511, IEC
62351, IEC
62591, ISO
27001, ISO
27002, ISO
27005 compliance regulations. - Extensive knowledge of several ICT DCS/PDCS/PLC/ESD/Servers, routers, switches & firewall technologies within several OEM technologies such as Siemens, HIMA, TRICONEX, HONEYWELL, GE, Allan Bradley, CISCO, Mac Afee.
- Salary: Monthly rate in QAR plus allowance
- Work Schedule: 8 Hours / 5 Days
- Duration: 2 years with possible extension
- Location: Qatar
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×