Key Responsibilities:
- As Cyber Security Engineer you will ensure that the assigned project tasks are well managed in accordance with the project execution plan and contractual requirements that includes but not limited to:
- Implementation of cybersecurity requirements as per Company standards.
- Thorough, efficient, and timely review of the relevant project documents, realization of potential derogations to the standards, and challenge the design to achieve an optimized outcome.
- Support project audits, studies, tests, and meetings related to the Cybersecurity as per project approved gate levels and design maturity.
- The Cyber Security Engineer shall ensure coordination with the DBS Information Security focal point /ICS Security Specialist to ensure Company standards and policies are strictly applied.
- You will be based in Company premises (Doha) during CFT stages and then will be relocated to ICSS OEM Vendor/Contractor location and/or EPCIC CTR premises during the execution stage of the project.
- You will be the focal point for all cybersecurity subjects for RUYA CPP, WHP and Pipeline Packages.
- Ensure and coordinate the proper realization of the cybersecurity design in compliance with Company Standards, project specifications and time schedule.
- Monitor, audit and guide all Cybersecurity related activities performed by ICSS OEM/Contractor/Integrator to deliver a reliable and maintainable plant meeting the required availability.
- Act as the Cybersecurity representative on cybersecurity audits done for ICSS OEM/Contractor/Integrator and all the technical matters related to Cybersecurity for Telecom, Electrical, MMS and ICSS Systems for the Project
- Identify cybersecurity engineering technical decisions to be made in consultation with the DBS cybersecurity team.
- Monitor the design and provision of equipment supplied as part of vendor packages to ensure that it is in accordance with Project requirements and cybersecurity rules.
- Participate in equipment and other inspections at site/vendor premises as required.
- Follow-up with relevant EPC Contractors/OEMs to ensure closure of identified cybersecurity punches and keep track of their status.
- Assist in planning and preparation of cybersecurity discipline kick-off meeting with EPC Contractors.
- Provide technical advice and input to other disciplines including Instrumentation, ICSS, Electrical, Telecom, Construction, Commissioning, Operations, Procurement and Commercial.
- Identify potential engineering scope change related to cybersecurity discipline, carry out initial technical assessment to provide accurate information.
Education Qualification & Experience:
- Engineering degree in Electrical and Electronic /Instrument and control engineering or similar.
- Experience: 10-15 years’ experience as ICSS and Packages cybersecurity engineer in Offshore Oil and Gas industry.
- Experience in conducting cybersecurity risk assessment, identify acceptable levels of risk, analyse proposed controls and mitigations for identified risks and follow the implementation of risk plans.
- Detailed knowledge of key models, industry standards, frameworks and best practices including ISA99/IEC 62443, ISA/IEC 61511, NIST and Qatar ICS security.
- Holding of active Industry certifications in ICS Security is plus such as ISA99/IEC 62443, GICSP or CISSP.
- Holding or willing to acquire offshore certification i.e. OPITO T-BOSEIT and OPITO H2S certification and medical fitness.
- Strong engineering knowledge of project design and execution, package interfaces.
- Computer literate, especially in cybersecurity design related software.
- Strong leadership skills and excellent communication skills.
- Ability to travel and work on projects in a complex and multicultural environment.