LEAD, ACTIVE DEFENSE

OverviewPrimary Purpose Of The Job Responsible for leading the Offensive red teaming activities on QatarEnergy’s IT/OT environments, by conducting threat hunting, penetration testing, vulnerability scanning and security assurance activities. Provides oversight and technology guidance as well as managerial support as required. Oversee the execution of incident management program and supervise and coordinate engineers and external consultants to design, build and manage QatarEnergy SOC Red team functions on QatarEnergy’s IT and OT cyber security mission critical operational expansion.ResponsibilitiesThe role involves leading offensive red teaming activities across IT/OT environments, conducting threat hunting, penetration testing, vulnerability scanning and security assurance activities. Provide oversight, technology guidance and managerial support as required. Oversee the incident management program and supervise/co‑ordinate engineers and external consultants to design, build and manage QatarEnergy SOC Red team functions to support the organization’s cyber security mission critical operational expansion.Required Experience And SkillsStrong understanding of cyber incident management, malware management and vulnerability management processes.Solid knowledge on malware analysis, vulnerability assessment & forensic & memory analysis, and data analyticsExperience with large ICS & ICT environments in the Energy sector is a big plus.Advanced knowledge of networking fundamentals (TCP/IP, network layers, Ethernet, etc); current threat landscape (threat actors, APT, cyber-crime, etc); penetration techniques and forensic techniques; protocol analysis knowledge and experience (Wireshark, NetWitness, etc.); solid knowledge of client-server applications, multi-tier web applications, relational databases.Solid knowledge and experience with Cloud technologies (Amazon, Azure, Google Cloud, IaaS, SaaS, etc.).Good knowledge of IT including multiple operating systems and system administration skills (Windows, Unix).Solid understanding of IT governance and processes, such as ITIL, COBIT.Possession of Industry Certifications ISACA, GCIA, SANS, ICS2, EC-Council, other relevant cyber security certifications (such as CISSP, CISM, GCIH, GIAC, CEH, CEPT, OSCE, CHFI, GREM or equivalent).Maintains professional demeanor in stressful situations.Educational QualificationsBachelor’s degree in information security, computer science, or systems engineering. 10+ years of technical experience in Information Security, System Administration, or Network Engineering with at least 5 years of experience in Information Security.#J-18808-Ljbffr