Skills: IT - Analysis & Management, IT - Programming & Database, IT - Software Development
Experience: 5 + Years
Education: Bachelors/3-5 yr Degree
INFORMATION & COMMUNICATION TECHNOLOGY
CYBER INCIDENT RESP ENGINEER (HUNTER)
Primary Purpose of Job
Cyber Incident Response Engineer is responsible for supporting security early incident detection and rapid response as well as cyber hunting capabilities for QP in IT and OT / Industrial areas on a 24/7 basis. He/she provides real-time hands-on incident management support throughout all stages of the cyber security NIST framework chain (Identify, Protect, Detect, Respond, and Recover). Works closely with other internal, external teams to provide technical support, oversight as well as emergency response to information security incidents that might impact QP.
Bachelor degree in information security, computer science, or systems engineering
Experience & Skills
• 5+ years' experience working in a large-scale IT environment with focus on Information Security, and knowledge of Operational Technology • 1-3 years previous Security Operations Centre Experience in conducting security investigations • Strong understanding of security incident management, common attacker methodologies and exploit techniques. • Knowledge of security best practices and concepts Incident management as well as Hunting. Understanding of behavioral based threat models like Cyber Kill Chain, etc. • A deep understanding of advanced cyber threats targeting enterprises, along with the tools, tactics, and procedures used by those threats. • Demonstrated ability to analyse, triage and remediate security incidents; • Demonstrated knowledge of security related technologies and their functions (EDR, IDS, IPS, NG-FW, WAF, SIEM, SOAR, Deception technologies) • Possession of Industry Certifications (OSCP, OCSE preferred, GCIH, SANS ICS, GCIA, Certified Incident Handler (GCIH), Certified Intrusion Analyst (GIAC), Certified Ethical Hacker (CEH), (CISSP), CHFI, SANS Cyber Threat Hunting, SANS GREM , SIEM/ security tool equivalent technical certification. • Possession of Industry Certifications (SANS, ISACA, GCIA, ICS2, (CEH), (CISSP), EC Council, ISO27001, ISO27005) (OSCP, OCSE, GPEN, GWAPT, GEVA, GXPN, GAWN, GCIH, (C|EH), CHFI, GREM, GMOB) VM and Pentesting tool equivalent technical certification.
Qatar Petroleum is an integrated national oil company (NOC) responsible for the sustainable development of the oil and gas industry in Qatar and beyond.
Qatar Petroleum’s activities encompass the entire spectrum of the oil and gas value chain locally, regionally, and internationally, and include the exploration, refining, production, marketing and sales of oil and gas, liquefied natural gas (LNG), natural gas liquids (NGL), gas to liquids (GTL) products, refined products, petrochemicals, fertilizers, steel and aluminum.
Qatar Petroleum is committed to contribute to a better future by meeting today’s economic needs, while safeguarding our environment and resources for generations to come. Thriving on innovation and excellence, Qatar Petroleum is bound to the highest levels of sustainable human, socio-economic, and environmental development in Qatar and beyond.
For more information, please visit www.qp.com.qa