Qatar onsite OT Security Consultant

Roles & Responsibilities • Provide technical direction and act as a subject matter expert as it relates to cybersecurity in industrial control systems. • Perform SCADA/ICS/OT Security assessments. • Assist Kahramaa Businesses in establishing or extending their SCADA/ICS/OT security program. • Technically evaluate cybersecurity technologies and provide feasibility assessments. • Write clear system requirements and test plans. • Identify security issues and risks and develop mitigation plans. • Architect, design, implement, support, and evaluate security-focused tools and services while acting as the Information Security project lead. • Interpret information security vulnerabilities, risks, policies, and procedures to the Business lines and IT teams. • Perform Security Risk Assessments on large and medium programs and projects. Required Professional Experience • Experience in ICT Security and ICS environments • 10 + Years of IT/OT work experience with at least 6 Years in OT security. • Strong experience and detailed technical knowledge in security engineering, system and network security, authentication and security protocols, cryptography, and application security • The ability to articulate risk modeling and able to communicate technical concepts in simple terms both verbally and in written reports. • Experience with service-oriented architecture and web services security desired • Experience with the application of threat modeling or other risk identification techniques. • Detailed knowledge of system security vulnerabilities and PT with remediation techniques, • Good (technical) writing and presentation skills (Arabic, English). • A result-oriented approach and excellent leadership and teamwork skills. Academic Qualifications & Certifications • MS in Computer Science or equivalent desired. • Knowledge of IEC62443 and knowledge of OT components and protocols is a plus (PLC’s, RTU’s, ModBus, DNP3). • Experience with security frameworks such as NIST 800-53r4, NISTIR 7628. Skills: security,it,application,risk,modeling,skills,cybersecurity,acting,scada,information security