https://bayt.page.link/Qu35y193panLKMZu7
Create a job alert for similar positions

Job Description

1. JOB DETAILS:


Position Title: Specialist Engineer: Cyber Security Operation Center


Broad Band: M09 - Professional


Department & Function: Ma’aden Cyber Security


Talent Pipeline Layer: Manage Self: Expert/Consultant (MS)


2. OVERALL JOB PURPOSE:


Specialist Engineer: Cyber Security Operation Center is responsible for monitoring the overall technology traffic and behavior across Ma'aden IT/OT environment in Saudi Arabia, India, Malawi, Zimbabwe, Mozambique, South Africa and Mauritius. This position will further perform security threat intelligence activities to understand the threat landscape and take precaution measures to protect Ma'aden against Cyber attacks. In times of crisis, the incumbent of this position will act as crisis command center at the time of successful attacks and disasters by leading the Security Emergency Response Team (SERT), coordinating the emergency response activities across the seven countries to respond to Cyber attempts or attacks and coordinating with the relevant functions to alert them about the threats and corrective actions.


3. QUALIFICATIONS, EXPERIENCE & SKILLS:


Qualification:


1. Bachelor degree in Computer Science or Computer Engineering Or equivalent 


Experience:


1. At least 2-4 Years' relevant experience


Skills:


1. Very Good Knowledge in IT Security. 
2. Strong TCP/IP networking skills. 
3. Technical knowledge in security products (i.e. Firewalls, IPS, EDR, Email Security ...etc.) 
4. Skills in operation of SIEM (Security Incident and Event Monitoring) systems (i.e. Archsight, Splunk, QRadar). 
5. Customer service background. 
6. Communication skills 
7. Good understanding of cyber security standards (ISO27001, NIST, IEC 62443). 
5. Good understanding of IT service management practices


4. KEY ACCOUNTABILITIES:


Focus Area


Get results through individual expert contributions, influence & efforts


Operational / Functional


1. Response Management: 
- Act as the crisis command center during Cyber events 
- Coordinate with relevant functions to alert them of Cyber events across Ma'aden in Saudi Arabia, India, Malawi, Zimbabwe, Mozambique, South Africa and Mauritius 
- Coordinate the appropriate response and corrective actions following the Cyber event 
- Provide Quality Assurance for Tier I (Service Desk) support (Ticket building, Process adherence, Sensor Management / Monitoring, and SLA). 
- Provide Technical escalation point for Tier I (Security Incidents, Security Alerts, and response to General Enquiries that require Security input). 
- Takes an active part in the resolution of problems, even after they are escalated. 
2. Business Continuity and Disaster Recovery Plan Management: 
- Execute Business Continuity and Disaster Recovery plans and procedures at the time of crisis and successful Cyber breaches 
- Primary liaison between operations stakeholders of MA’ADEN’s BCP e.g. Senior Management, Directors and Managers, Staff, Consultants, vendors and auditors 
3. Cyber Security Compliance: 
- Monitor the execution of Cyber Security policies and controls in the manufacturing environment 
- Provide input on the Cyber Security threats and risks in terms of IT and OT in cooperation with Enterprise Cyber Security team, ICT functions and Process controls owners in Ma’aden Corporate and affiliates. 
- Comply with auditing activities to ensure security policies, requirements and best practices are effectively applied


1. Consistently deliver solutions which contribute to business results and improved competitiveness (consulting advice, business options) 
2. Deliver quality solutions/ service cost effectively on time and within risk parameters 
3. Provide advice that are generally accepted and implemented on programs and systems, creating a competitive advantage for organization, leading to quality results 
4. Continuously develop extensive knowledge relating to the field of work and personal mastery in technical skills application 
5. Deliver Cost effective results 
6. Risk results 
7. HSE targets 
8. Conduct Research & Development that leads to new solutions being implemented in the organization


Leadership


1. Performance Management 
- Execute and monitor the Cyber landscape and infrastructure performance according to the identified KPI's and measures.


1. Understand, support and live the Ma'aden vision, values and goals 
2. Expert utilization & direction through selling and obtaining support for value adding ideas leading to business improvement 
3. Takes accountability for personal improvement, personal development, skills development and effectiveness 
4. Expertise transfer, sharing and development 
5. Plan and project management 
6. Establish Policies, practices, standards, procedures and methods; application, review and development 
7. Deliver expert solutions as a thought leader, to meet changing business & work requirements through Trends, analysis, problem solving and quality decision making 
8. Process and risk impact, reporting and corrective action 
9. Extract, capture and disseminate Knowledge within knowledge management standards


Relationships


1. ICT-SS 
Work with ICT functions to alert them about any potential and critical threats and ensure proper mitigation plans and actions executed to close any reported vulnerability. Run applicable Cyber drills and simulations to test the capabilities of ICT readiness against any Cyber threat. 
2. Cyber Security 
Collaborate with the other cybersecurity functions to ensure on-time reporting and updates against latest Cyber threats and consider any actions or changes need to be executed. 
3. Internal / External Audit 
Support the audit activities by providing required information and systems logs to confirm the level of compliance to the Cybersecurity controls. 
4. Ma’aden affiliates 
Support Ma'aden affiliates by providing 24/7 monitoring capability and making sure on-time alerting mechanism and mitigation actions are implemented. 
5. Operational Technology (OT) and Industrial Control Systems (ICS) Stakeholders in Ma'aden 
Act as a global Security monitoring functions to support and provide the OT and ICS functions across Ma'aden with required threat intelligence information and suspicious activities in their environment in the seven countries. 
6. Security Service providers 
Select and work with the potential security vendors that can provide required operational services. Support and maintain strong relationship with the vendors to ensure sustainable and efficient support level. 
7. Business Continuity and Crisis Management 
Primary liaison between key stakeholders of MA’ADEN’s BC plan e.g. Senior Management, Directors and Managers, Staff, Consultants, vendors and auditors in the seven countries


1. Creating effective stakeholder and expert networking relationships (e.g. customers, suppliers, universities and specialist bodies) 
2. Demonstrate influential relationships with manager peers and company business leaders 
3. Contractor/consultant relations & management 
4. Communication of expertise (best practices, technical reports, position statement) in a collaborative and consultative approach which consistently meet business needs 
5. Develop and facilitate the implementation of New solutions in area of expertise 
6. Participate in and maintained expert networks


5. COMPETENCIES:


Technical/Functional


1. Cyber Security Risk Management 
2. IT / OT Service Management and technology
3. Preferred to have knowledge about ISO's stander - (Security Governance / Audit, Information Security Controls and Risk Management)
4. Network Security and IT/Solution Architecture 
5. Security Architecture Controls Implementation 
6. Cloud Security 
7. Strong TCP/IP networking skills 
8. Firewalls 
9. IDS / IPS Devices 
10. Routers and Access Control Devices 
11. Windows operating systems 
12. SIEM (Security Incident and Event Monitoring) system 
13. Diagnostic and Problem Solving 


Leadership


1. Leadership 
2. Teamwork 
3. Integrity 
4. Care 
5. Ownership 
6. Accountability 
7. Communication 
8. Time Management, Planning and Organization


Safety


• Safety advocate - anywhere and everywhere 
• Advanced awareness and understanding of HSE rules and procedures 
•  Ability to pro-actively identifying safety hazards and act accordingly



You have reached your limit of 15 Job Alerts. To create a new Job Alert, delete one of your existing Job Alerts first.
Similar jobs alert created successfully. You can manage alerts in settings.
Similar jobs alert disabled successfully. You can manage alerts in settings.