Cybersecurity Engineer

Reimagine What’s Possible

Experience

• in supporting large scale construction, pre commissioning, commissioning, startup and handover phases, ensuring cybersecurity controls are implemented without impacting schedule critical activities
• The position is based out of Duba, Tabuk Region, Saudi Arabia working on rotation of 8 Weeks ON / 2 Weeks OFF.
• The position will be a site-based role with the below duties:
• Perform the field verification of the design, implementation and testing of the cyber assets to meet the cybersecurity standards, regulatory requirements and technologies, processes/procedures and specifications to transition the project assets to commissioning, start-up and final handover to the client.
• Develop, document, and maintain cybersecurity asset register and other key deliverables as guided by the Site Cybersecurity Lead or Cybersecurity Manager.
• Organize and lead/facilitate the resolution and implementation of the cybersecurity risk assessment exercises and implement risk assessment recommendations for Air Products design and also for vendor/ skid package control system
• Support pre‑commissioning and commissioning teams by validating firewall rules, secure remote access, endpoint hardening, Asset inventory validation, Access control execution, and logging before system energization.
• Lead and oversee architecture, standards and FAT/SAT/CSAT procedures development, execution and performance testing.
• Ensure the verification and approval of the 3rd party device access needs as requested by the subcontractor and vendors as part of the commissioning and start-up requirements on the vendor packages.
• Participate in technical coordination meetings with cross-functional teams as guided by the Site Cybersecurity lead.
• Coordinate with vendors and Air Products engineering team to resolve and liquidate the punch points identified during the field verification of the cyber assets.
• Coordinate and assist the Site Cybersecurity Lead with the change management activities to ensure design, procurement, installation, commissioning, and startup of cybersecurity scope are reviewed for schedule, and budget compliance.
• Prepare weekly updates and dashboard to the Site cybersecurity lead and the Project Cybersecurity Collaboration Lead.
• Identify and escalate risks and opportunities, Collect and report lessons learned during vendor site visits and project execution.
• Support OT cybersecurity handovers to operations, including procedures, asset inventories, access management, and incident response alignment.
• Contribute to OT Cybersecurity Operations Model, including monitoring, patching, backup, disaster recovery, and secure remote support.

Minimum Requirements

• Bachelor’s degree in engineering (electronics & communication, (or) instrumentation / process automation background is preferred) or equivalent.
• Minimum 10 to 15 years’ experience in Operational Technology (OT), or related field with at least 3 years focused on designing (or) building (or) validating the design/implementation of the cybersecurity for industrial control systems and networks.
• Project implementation experience of Saudi cyber standards HCIS, NCA, CRA compliance, ISA 62443 Industry standards, specifications, regulations, best practices.
• Strong knowledge and understanding of controls systems (SCADA/DCS/PLCs, etc.,), relevant protocols (Modbus, PROFINET, DNP3, IEC61850, etc.), key technologies including Firewalls, IDS, Anti-Virus, Vulnerabilities assessments, etc. in the ICS/OT networks
• OT/ICS cybersecurity relevant accreditations such as ISA/IEC62443, SANS or other internationally recognized certifications are preferred.
• Additional cybersecurity certifications such as CISSP, CISM, ISO 27001, etc., will be an added advantage
• Advanced skills in Microsoft Office tools such as Teams, SharePoint, Word, Excel, Power point and Visio etc.,
• Excellent communication skills and the ability to communicate appropriately at all levels of the organization; this includes written and verbal communications