Purpose of the Job
Work as a cyber security expert and a single point of contact to support ENGIE entities in KSA. Ensuring compliance to local regulations and Group compliance requirements on cyber security for protection of business and ICS networks.
Reporting line:
• Chief Information Security Officer (CISO) AMEA
• Country Manager - ENGIE KSA
Nationality: Saudi Arabia
Key Accountabilities:
• Work as a single point of contact for cybers security matters within KSA.
• Providing comprehensive cyber security assurance and compliance assessment, on all sites within KSA.
• Implementing necessary controls for ensuring compliance to local and Group ICS cyber security frameworks.
• Assisting and coordinating internal and external audits/reviews on cyber security
• Act as a key role for cyber security incident management process for identification, remediation and response, including coordination with local regulatory bodies and Group.
• Develop and implement program for cybersecurity training and awareness across the organization.
• Engagement in infrastructure and application design processes to ensure solutions are secure and compliant to local and Group requirements
• Leads the coordination and consolidation of IT risk analysis and management
• Advise the business on data protection regulations and its potential impact on the business.
• Develop, implement and maintain IT / ICS disaster recovery plan to ensure business continuity across the perimeter in scope.
Educational / Professional Qualifications:
• Bachelor’s degree, preferably in Computer Science or Information Technology or Cyber Security domain.
• Internationally recognized certification in cyber security, e.g., CISSP, CISM, CISA.
• Good knowledge and understanding of local cyber security regulations of KSA.
Working Experience:
• 5+ years of prior experience of managing cyber security of an organization, preferably in KSA. Prior experience of ICS/OT security will be an advantage.
• Good understanding and experience of cybersecurity regulations (NCA) of Saudi Arabia.
• Working experience in information security governance, IT security and risk management.
• Experience in designing, documenting and implementing cyber security processes / procedures.
• Preferably worked in a matrix organization.
Language
• Conversant with written and oral English & Arabic language.
Specific Knowledge / skills
• Cooperation & cross functionality – team working and building relationships
• Results orientation
• Customer focus
• Acceptance of diversity
• Effective communication skills in English and Arabic.
• Persuading and influencing.
• Pays attention to detail.
• Conducts work while being fully aware of, and complying with, safety and environmental responsibilities.
Location/travel: Frequent travel inside KSA.
Field: Information Technology / Cyber Security
Employee Status: Full time
Primary Location: KSA