IT Security Specialist

Qualifications

• Bachelor degree level in information security, computer science or engineering. Holds a relevant professional certification in information security management and standards (e.g., CISSP, CISA, GIAC, ISO27001, etc.).

Knowledge and/or Experience

• 15+ years Information Security experience in an Information Security role which gives exposure to the required knowledge of this role.
• Both IT and OT related Engineering experience preferable in Oil and Gas Sector.
• Conversant with relevant Information Security national and international standards.
• Advanced knowledge of security and security protocols.
• Effective communication, analytical, leadership, teamwork and problem-solving skills to provide business units with the right tools.
• Exceptional knowledge and experience of solid design principles and secure architecture standards.
• Expertise in designing secure networks, systems, and architecture.
• Up-to-date knowledge of technological opportunities and trends.

Key Job Accountabilities 

1. Provides authoritative advice and guidance on security requirements to manage identified risks and ensure adoption, and adherence to standards. This includes advice on the application and operation of all types of security controls, including legislative or regulatory requirements such as data protection / GDPR and software copyright law.
2. Align with the requirements of Security Architecture role for the various IT and OT projects including - but not limited to - Security requirements/Blueprints for all assets/services. Also, provides technical and tactical guidance based on the nature of the solution/project.
3. Develops/integrates CyberSecurity design for all Systems/Services with multilevel Security requirements of processing multiple classification of Data in both IT/OT environments.
4. Documents and addresses organizations Information/Cyber Security Architecture requirements throughout Project Life Cycle and in alignment with the Enterprise and Security Architecture processes.
5. Identifies and prioritizes critical Business functions in collaboration with organizational stakeholders to ensure the Security requirements are followed.
6. Performs Security reviews, identifying gaps in MP Solutions portfolio and develops Security risk Management plan in collaboration with other IRM teams.
7. Defines and documents how the implementations of new systems/services interfaces can impact Security Posture of the current environment and propose the mitigations plans or alternative Architectures in both IT and OT environments.
8. Interfaces with all required teams members (Security Architect.etc.) for decisions related to existing changes or new projects ensuring the Security requirements are met in initial phases.
9. Remains up-to-date with all Security technologies/ requirements from both IT and OT perspectives and ensures a continuous Security enhancements in alignment with the market trends and Business initiatives (i.e., Digital Transformation, IoTetc.) and feedback this Information the IRM Security Architect role.