Cyber Security Senior Technician
Purpose of the Job:
- Execute and manage cyber security tasks and projects within critical operational sites.
- Implement, maintain, and enhance cybersecurity measures to protect key assets and sensitive information.
- Collaborate with the OMS(R) section on all cybersecurity-related tasks for projects and routine maintenance.
Duties and Responsibilities:
- Cybersecurity System Management:
- Conduct maintenance activities for deployed cybersecurity solutions, including corrective and preventive maintenance.
- Manage patch updates, antivirus software, application whitelisting, and network monitoring.
- Ensure proper backup methods (online/offline/offsite) and manage firewall rules (add/modify/review/cleanup).
- System Hardening and User Management:
- Oversee domain users’ management and domain policy management.
- Perform system hardening to enhance security.
- Incident Response and Monitoring:
- Provide local incident response in case of a cybersecurity breach.
- Investigate alerts from the Security Operations Center (SOC), ensuring quick resolution and containment.
- Cybersecurity Tools and Systems:
- Install, configure, and maintain critical security tools, including firewalls, IDS/IPS, and endpoint protection systems.
- Conduct forensic analysis of security breaches and implement remediation actions.
- Collaboration and Security Controls Implementation:
- Work with internal teams and external vendors to ensure the implementation of robust security controls.
- Align security measures with industry standards and best practices.
- Documentation and Procedures:
- Develop and update documentation, including SOPs, technical manuals, and incident response plans.
- Provide guidance and support to junior technicians on cybersecurity tasks and procedures.
- Emerging Threats and Trends:
- Stay updated on emerging cyber threats and new technologies to continuously improve security defenses.
- Participate in incident response drills to validate and test cybersecurity response plans.
- Compliance and Audits:
- Assist with cybersecurity assessments and compliance audits, working with regulatory authorities and auditors.
Collaboration with OMS:
- Work closely with OMS, providing first-level assurance through system hygiene checks and configuration reviews.
- Support routine cybersecurity maintenance activities for QatarEnergy’s assets.
- Participate in cybersecurity solution deployments and centralized industrial cybersecurity services within the OT Common DMZ infrastructure.
Key Areas of Focus:
- Cybersecurity System Maintenance:
- Conduct regular maintenance of cybersecurity systems, including patch management and system hardening.
- Incident Response:
- Investigate and resolve security incidents, leveraging SOC alerts and conducting forensic analysis when necessary.
- Security Technology Management:
- Install and maintain firewalls, IDS/IPS systems, antivirus software, and endpoint detection solutions.
- Compliance and Documentation:
- Create and maintain accurate documentation for security configurations and incident response processes.
- Continuous Improvement:
- Research and implement new technologies to bolster cybersecurity defenses.
Qualifications:
- Diploma or degree in Computer Science, Information Security, or related field.
- Certifications like CompTIA Security+, CEH, or GIAC are preferred.
- Proven experience in cybersecurity roles, with a focus on security control implementation and maintenance.
- Strong technical expertise in cybersecurity tools and technologies (firewalls, IDS/IPS, antivirus, EDR).
- Familiarity with cybersecurity standards and frameworks like NIST Cybersecurity Framework, ISO 27001, and CIS Controls.
- Excellent analytical, communication, and problem-solving skills.
Experience:
- Minimum of 5 years of experience in cybersecurity technician roles with progression to senior-level responsibilities.
- Experience in industrial or plant environments is an advantage.
Additional Requirements:
- Valid driver's license.
- Willingness to work in dynamic environments with the ability to work flexible hours and respond to incidents as needed.
With over 90 years' combined experience, NES Fircroft (NES) is proud to be the world's leading engineering staffing provider spanning the Oil & Gas, Power & Renewables, Chemicals, Construction & Infrastructure, Life Sciences, Mining and Manufacturing sectors worldwide. With more than 80 offices in 45 countries, we are able to provide our clients with the engineering and technical expertise they need, wherever and whenever it is needed. We offer contractors far more than a traditional recruitment service, supporting with everything from securing visas and work permits, to providing market-leading benefits packages and accommodation, ensuring they are safely and compliantly able to support our clients.