Section Head, OT Security Defense National Industrialization Company (TASNEE)

An exciting opportunity is available for Section Head, OT Security Defense Based in Jubail and will report directly to Manager, Digital Security

 Job Summary:

Manages the security of OT systems and functions within TASNEE. Leads an OT cybersecurity team, and oversees planning, design, implementation, testing, and operation of cyber security processes and systems for Operational Technology and Industrial Control Systems (ICS).

          Qualification and Requirements:.

• Degree in a technology-related field, or equivalent work- or education-related experience.

• Professional security management certification is desirable.

• Minimum of 7 to 10 years of experience in a combination of risk management, OT Cybersecurity, and OT.

Position Responsibilities:

• Oversee planning, design, implementation, testing, and operation of cyber security processes and systems for Operational Technology.

• Provide guidance on security architecture for the Operational Technology domain including threat detection and response systems used as a part of the overall security capability for OT environments.

• Provide direction of business process and security architecture design as it relates to security analyst tools for security incident management.

• Effectively communicate cybersecurity risks, posture, and financial aspects of cybersecurity-related activities to senior management.

• Collaborate with stakeholders to ensure business continuity and disaster recovery programs meet organizational requirements.

• Ensure that protection and detection capabilities are aligned with TASNEE cybersecurity strategy, policies, and other related documentation.

• Conducting ICS/OT site assessments to identify business-critical systems and develop effective risk mitigation measures.

• Recognize patterns of non-compliance with cybersecurity policies and related documentation to identify ways to improve the documentation.

• Ensure cybersecurity risks are identified and managed appropriately through the organization's risk governance process.

• Track audit findings and recommendations to ensure that appropriate mitigation actions are taken.

• Effectively manage vulnerability remediation.

• Ensure that security is embedded in the project delivery process by providing the appropriate information security policies, practices, and guidelines.

Skills:

• Excellent written and verbal communication skills, with the ability to communicate information security and risk-related concepts to technical and non-technical audiences

• Strategic leader and builder of both vision and bridges, and able to energize the appropriate teams in the organization

• knowledge of business management and a working knowledge of OT security risk management and cybersecurity technologies

• Up-to-date knowledge of methodologies and trends in both business and OT

• Proven track record and experience in developing information security policies and procedures, as well as successfully executing programs that meet the objectives of excellence in a dynamic business environment

• Poise and ability to act calmly and competently in high-pressure, high-stress situations

• critical thinker, with strong problem-solving skills

• Knowledge and understanding of relevant legal and regulatory requirements

• Project management skills: financial/budget management, scheduling, and resource management

• A master of influencing entities and decisions in situations where no formal reporting structures exist, but achieving the desired outcome is vital.

• Managing People Performance, Budgets and Finances

• Knowledge of common OT security management frameworks.