Job Description
Senior Engineer, Cyber Security - Oman, will assist in design review for new projects, installation, operation, and support IT/OT security systems and controls to ensure they operate properly and remain secure from outside intrusion. In addition, enhancing the capabilities, lifecycle / obsolescence management of IT/OT assets from cybersecurity perspective and keep the company secure to stay ahead of the curve in everything.
- Maintain compliance with ACWA policies and local regulatory requirements.
- Assist the project teams during design review of IT/OT architecture to make sure that plant design is as per ACWA Power Cybersecurity guidelines (OTS exhibits normally) + plant is designed as per the local legal cybersecurity directives.
- Ensure the implementation of cybersecurity policies, procedures, and standards.
- Implement ACWA Power IT/OT SOP (Standard Operating Procedures) framework across critical systems in the respective cluster.
- Develop and maintain asset log / register for all cybersecurity components (equipment's) to perform vulnerability assessment and implement risk mitigation actions.
- Develop disaster recovery plans and execute routine disaster recovery drills.
- Develop and implement routine backup (online and offline) management for IT and OT systems.
- Develop obsolescence / life cycle management plan for IT and OT devices with regard to cybersecurity focusing spares availability, patch deployment, etc.
- Lead the IT/OT internal audit for the region and take ownership in closure of all open action items.
- Contribute to Conduct risk assessments and follow up on the status of risks and actions taken in coordination with stakeholders.
- Implementing the cybersecurity awareness and training program and measuring the extent of employees' commitment to cybersecurity awareness.
- Follow up on cyber security monitoring systems to ensure their stability and availability and submit reports to describe their status.
- Ensuring the integration of all critical systems with the corporate (SIEM)
- Collect cybersecurity events in the information and technology assets of the Cybersecurity Event Logs Management and Monitoring (SIEM) system, analyze the logs, and identify cybersecurity risks.
- Handling cyber security incidents and following up on their closure, and escalation of existing events that exceed a defined service level agreement.
- Continuous evaluation of vulnerabilities and follow-up application of security update packages and settings.
- Arrange and Contribute to the periodic penetration tests on all internal and externally provided services and their technical components to assess the level of cybersecurity.
- Managing Logical Access to Information and Technology Assets by defining cybersecurity requirements for managing access identities and permissions, documenting and implementing them.
- Create and install the required endpoint protection such as anti-virus, firewalls, etc. based on the gaps identified in the analysis conducted by ACWA.
- Ensure that endpoint security solution is implemented across the systems (IT and OT) in the plant and identify inconsistencies.
- Maintain up-to-date signatures on the endpoint security agents (IT and OT).
- Conduct periodic scanning and checksum to ensure the security status (i.e. YARA rules, queries).
- Conduct periodic simulated phasing attacks.
- Evaluate the network security controls, protocols, topologies, and device configurations.
- Analyze log files related to network traffic, firewalls, IDS, IPS, and DNS. Identify any suspicious activity and its effect on the plant data and systems.
- Implement and test the firewalls, IDS, and IPS systems.
- Conduct periodic network security audits.
- Participate in incident response and busines
Job Details
- Job Location
- Muscat Oman
- Company Industry
- Utilities
- Company Type
- Employer (Private Sector)
- Job Role
- Other
- Employment Type
- --
- Monthly Salary Range
- Unspecified
- Number of Vacancies
- 1
Preferred Candidate
- Career Level
- Mid Career
- Degree
- Bachelor's degree / higher diploma