• Perform system administration on specialized cyber defence applications and systems for OT/ICS environment (e.g., antivirus, firewalls, IPS, IDS, Data Diodes, secure remote support access, passive security monitoring) to include installation, configuration, maintenance, backup, and restoration as per operational procedures.
• Plan, implement, configure and execute OT Firewall and Switch solutions, as well as related migration activities, policy/ACL fine tuning, appliance upgrades and support.
• Prepare method statements for any changes within the OT Environment.
• Implement, configure, fine-tune the NMS solution, as well as monitor, troubleshoot and resolve technical issues escalated by NMS.
• Examine network topologies to understand data flows through OT/ICS network and interfaces between OT/ICS networks and systems.
• Participate in designing system and network security controls and measures in accordance with established procedures and standards to ensure safety, integrity, availability, confidentiality, authentication, non-repudiation of OT/ICS systems along with internal and external stakeholders.
• Visiting Sites to perform the related Cybersecurity Activities

• Bachelors degree in information security, Computer Science, Electronics / Instrumentation Engineering or similar discipline/related field.
• More than 10 years of experience in information security and ISMS/CSMS development and implementation with at least 5 years of experience in IT/OT Cybersecurity consultancy/Operation preferably in the oil and gas domain
• Strong analytical and problem-solving skills.
• Has worked on enterprise-wide projects within organizations with similar project scopes.
• Excellent written and verbal communication skills in English
• Ability to work independently and as part of a team.
• Experience with security frameworks and standards (e.g., UAE IAS, ISA 62443, NIST, Shell DEP, ITIL etc.)
• Professional security certifications such as GICSP, CISSP, CISM,CISA, ISA 62443 fundamentals or ISO 27001 Lead Implementer/Lead Auditor.
• Content development and Fine tuning of use cases/correlation rules based on the relevant attacks and threat landscape of the OT network and Organization.

Duncan & Ross