Skills: IT - Analysis & Management, Security
Experience: 1 + Years
Education: Bachelors/3-5 yr Degree
INFORMATION & COMMUNICATION TECHNOLOGY
SR. INFORMATION SECURITY ANALYST (SOC)
Primary Purpose of Job
Sr. Information Security Analyst (SOC) will manage the SOC (24x7) team and schedule. He/she will perform responsibilities as technical lead and incident responder for QP Security Operations Centre (SOC), leading technical investigations for security incidents, overseeing process improvements, and driving implementation of new capabilities. He/she will serve as a technical escalation resource for other SOC Analysts and provide mentoring for skill development. Partner with Information Security (SOC) Lead to implement and improve technology and process to enhance SOC monitoring, detection, investigation, and response. Furthermore, oversee the execution of vulnerability management processes and penetration testing activities (internally and externally)
1. Bachelor degree in information security, computer science, or systems engineering
Experience & Skills
1. ( 10 ) years of technical experience in Information Security, System Administration, or Network Engineering with at least 5 years of experience in Information Security2. Preferably experience with large ICS & ICT environments in the Energy sector3. Malware analysis, Vulnerability assessment & Penetration testing, Forensic & memory analysis, and Data analytics4. Excellent written and verbal business communication skills5. Possession of Industry Certifications (Certified Incident Handler (GCIH), Certified Intrusion Analyst (GIAC), Certified Ethical Hacker (CEH), Certified Expert Penetration Tester (CEPT), OSCE/ CHFI/ SANS Cyber Threat Hunting/ SANS GREM or equivalent SIEM/ security technologies technical certification (Advanced Level)6. Advanced knowledge of networking fundamentals (TCP/IP, network layers, Ethernet, ARP, etc)7. Advanced knowledge of current threat landscape (threat actors, APT, cyber-crime, etc)8. Advanced knowledge of penetration techniques and forensic techniques9. Moderate knowledge and experience with Cloud technologies (Amazon, Azure, Google Cloud)10. Moderate protocol analysis experience (Wireshark, Gigastor, Netwitness, etc.)11. Good knowledge of IT including multiple operating systems and system administration skills (Windows, Solaris, Unix)12. Basic knowledge of client-server applications, multi-tier web applications, relational databases, firewalls, VPNs, and enterprise Anti-Virus products13. Strong understanding of security incident management, malware management and vulnerability management processes14. Experience with web content filtering technology - policy engineering and troubleshooting
Qatar Petroleum is an integrated national oil company (NOC) responsible for the sustainable development of the oil and gas industry in Qatar and beyond.
Qatar Petroleum’s activities encompass the entire spectrum of the oil and gas value chain locally, regionally, and internationally, and include the exploration, refining, production, marketing and sales of oil and gas, liquefied natural gas (LNG), natural gas liquids (NGL), gas to liquids (GTL) products, refined products, petrochemicals, fertilizers, steel and aluminum.
Qatar Petroleum is committed to contribute to a better future by meeting today’s economic needs, while safeguarding our environment and resources for generations to come. Thriving on innovation and excellence, Qatar Petroleum is bound to the highest levels of sustainable human, socio-economic, and environmental development in Qatar and beyond.
For more information, please visit www.qp.com.qa