SPECIALIST II, INFORMATION SECURITY

Aro Drilling

Deploy and maintain Information Security solutions at ARO with proper planning, KPIs formulation and SLAs effective management with third party vendors.

Evaluate and ensure security robustness to IT and security systems in specific.

Manage and implement Infrastructure security and maintain proper reports for each IT domain respectively.

Documents information security systems configuration and operational procedures, policy, and processes in line with GRC guidance, ARAMCO security standard, ISO 27001 and NCA recommendations.

Investigate security breach following Incident management practices and internal procedures to guide IT management on restoration, recovery, and security requirements.

Manage the periodic maintenance of security systems and applications to ensure new threats are identified and managed and the security of the organization s assets are maintained and secured to the latest standards.

Manage and continuously promote new ways to enhance the security, processes and procedures of end point security, AD, Network security, DLP, Security Operations Center, IT Asset Management security, Applications security, IT Incident Management, Penetration Testing, and all security solutions.

Manage Security Operations Center process, handles alerts effectively in timely manner according to criticality, maintains KPIs, operationalize and maintains vulnerability management.

Maintain security solutions contracts, license forecast for proper planning and budgeting, and technical healthiness and capacity.

Coordinate security threat analysis and testing.

Review threats and vulnerabilities periodically and document actions made.

Management of DNS enhancement, emails security, firewall, and development of firewall.

Maintained the security regarding logical and physical access to the system.

Ensure all IT systems and process are complied with IT Policy/Procedures and well documented.