ICS Cybersecurity Engineer - Renewable Power

Reimagine What’s Possible

Experience

• in supporting large scale construction, pre commissioning, commissioning, startup and handover phases, ensuring cybersecurity controls are implemented without impacting schedule critical activities
• This position based out of Duba, Tabuk Region, Saudi Arabia working on rotation of 8 Weeks ON / 2 Weeks OFF.
• The position will be a site-based role with below duties:
• Perform field verification and validation of cybersecurity design and implementation for renewable power generation and transmission assets, ensuring compliance with Saudi and international standards.
• Assure cybersecurity controls for Solar PV plants, Wind Turbine systems, BESS, HV/MV substations, and grid interconnections, including PPC and EMS interfaces.
• Develop, maintain, and verify OT cybersecurity asset registers, network diagrams, zone‑conduit models, and risk registers for power systems.
• Lead and support cyber risk assessments for power packages and OEM skid systems; track and close mitigation actions with vendors and contractors.
• Support pre‑commissioning and commissioning by validating firewall rules, secure remote access, endpoint hardening, role‑based access control, logging, and monitoring prior to system energization.
• Oversee and participate in FAT, SAT, CSAT, and performance testing for substation automation systems, turbine control systems, and plant SCADA.
• Coordinate closely with subcontractors and OEMs to control third‑party access, remote connectivity, and cybersecurity compliance during construction and startup.
• Act as the technical cybersecurity interface between project execution, commissioning teams, OEMs, grid operators, and client representatives.
• Support change management to ensure cybersecurity impacts of design, procurement, installation, and commissioning changes are reviewed and approved.
• Contribute to OT cybersecurity handover to operations, including procedures, access governance, incident response alignment, backup, recovery, and secure remote support models

Minimum Requirements

• Bachelor’s degree in engineering (electronics & communication, (or) instrumentation / process automation background is preferred) or equivalent.
• Minimum 10 to 15 years’ experience in Operational Technology (OT), or related field with at least 3 years focused on designing (or) building (or) validating the design/implementation of the cybersecurity for industrial control systems and networks.
• Project implementation experience of Saudi cyber standards HCIS, NCA, or ISA 62443 Industry standards, specifications, regulations, best practices.
• Strong knowledge and understanding of controls systems (SAS, SCADA/DCS/PLCs, etc.,) including Wind Turbine systems, relevant protocols (Modbus, PROFINET, DNP3, IEC61850, etc.), key technologies including Firewalls, IDS, Anti-Virus, Vulnerabilities assessments, etc. in the ICS/OT networks
• OT/ICS cybersecurity relevant accreditations such as ISA/IEC62443, SANS or other internationally recognized certifications are preferred.
• Advanced skills in Microsoft Office tools such as Teams, SharePoint, Word, Excel, Power point and Visio etc.,
• Excellent communication skills and the ability to communicate appropriately at all levels of the organization; this includes written and verbal communications