Skills: IT - Analysis & Management, Risk Management
Experience: 10 + Years
Education: Bachelors/3-5 yr Degree
INFORMATION & COMMUNICATION TECHNOLOGY
LEAD CYBER SECURITY RESPONSE
Primary Purpose of Job
Responsible for identifying, managing and mitigating QP's IT and OT cyber security threats, intrusions by leading Incident Response, Vulnerability management and Threat Intelligence domains. Provides oversight and technology guidance as well as managerial support as required. Oversee the execution of incident management program and supervises and coordinates engineers and external consultants to design, build and manage QP SOC platforms and ultimately support QP's IT and OT cyber security 7x24 mission critical operational expansion.
Bachelor's degree in information security, computer science, or systems engineering. 10+ years of technical experience in Information Security, System Administration, or Network Engineering with at least 5 years of experience in Information Security
Experience & Skills
Strong understanding of cyber incident management, malware management and vulnerability management processes. Solid knowledge on Malware analysis, Vulnerability assessment & Forensic & memory analysis, and data analytics • Experience with large ICS & ICT environments in the Energy sector is a big plus. • Advanced knowledge of networking fundamentals (TCP/IP, network layers, Ethernet, etc) Advanced knowledge of current threat landscape (threat actors, APT, cyber-crime, etc) Advanced knowledge of penetration techniques and forensic techniques. Protocol analysis knowledge and experience (Wireshark, Netwitness, etc.) Solid knowledge of client-server applications, multi-tier web applications, relational databases. • Solid knowledge and experience with Cloud technologies (Amazon, Azure, Google Cloud, IaaS, SaaS etc.) • Good knowledge of IT including multiple operating systems and system administration skills (Windows, Unix) • Solid understanding of IT governance and processes, such as ITIL, COBIT. • Possession of Industry Certifications ISACA, GCIA, SANS, ICS2, EC-Council, other relevant cyber security certifications. (such as CISSP, CISM, (GCIH), (GIAC), (CEH), (CEPT), OSCE, CHFI, GREM or equivalent security technologies technical certification (Advanced Level) • Must maintain professional demeanor in stressful situations.
Qatar Petroleum is an integrated national oil company (NOC) responsible for the sustainable development of the oil and gas industry in Qatar and beyond.
Qatar Petroleum’s activities encompass the entire spectrum of the oil and gas value chain locally, regionally, and internationally, and include the exploration, refining, production, marketing and sales of oil and gas, liquefied natural gas (LNG), natural gas liquids (NGL), gas to liquids (GTL) products, refined products, petrochemicals, fertilizers, steel and aluminum.
Qatar Petroleum is committed to contribute to a better future by meeting today’s economic needs, while safeguarding our environment and resources for generations to come. Thriving on innovation and excellence, Qatar Petroleum is bound to the highest levels of sustainable human, socio-economic, and environmental development in Qatar and beyond.
For more information, please visit www.qp.com.qa