Job Purpose
- This position is looking after Cybersecurity operations in terms of security monitoring, maintenance and improvements against Cybersecurity threats across Ma’aden on the digital perimeters, infrastructure, network-level, system-level and database-level to monitor and protect Ma’aden Corporate and business units digital assets covering (but not limited to) Information Technology (IT) and Operational Technology (OT) within Saudi Arabia, India, Malawi, Zimbabwe, Mozambique, South Africa and Mauritius. This position works closely with other functions to assist in the security monitoring program, managing the Security Operations Center (SOC) for Ma'aden within the seven countries, maintaining cyber threat situational awareness of internal and external threats and vulnerabilities through enhanced monitoring capabilities and oversight of systems and processes used to assess security. Handle threat intelligence through strong partnerships and communications with regulatory agencies, Cybersecurity providers, national and global peers. This position is also responsible for catering to all access management concerns and changes as well as the incident response against Cyber-attack / breach and recovery capability. It is also responsible of handling forensic investigations and Root Cause Analysis (RCA) activities.
Key Accountabilities
• 24/7 security monitoring for all Ma’aden technologies assets and network perimeters (IT/OT)
• Manage and maintain security infrastructure across Ma’aden (IT/OT)
• Handle the emergency response and forensic investigations against Cyber-threats (IT/OT) in line with Ma’aden crisis management model
• Perform threat intelligence activities and Cyber-drills for proactive security (IT/OT)
• Execute vulnerability management and penetration tests programs (IT/OT)
• Plan, initiate and lead the implementation of Cybersecurity operations projects and initiatives
• Ensure that the rules of use for IT/OT systems and the administrative procedures for IT/OT systems comply with the MA’ADEN’s Cyber security policies.
• Plan and maintain relevant business continuity and disaster recovery plans to ensure sustainability and continuity of the business
• Manage and report operational performance measures and KPI’s
minimum Qualification
• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, Management Information System, Computer Engineering, Computer Forensics or any other related field. An advanced degree is desirable.
• Fluency in English. Minimum Experience
• 7 years' related experience in Cybersecurity, IT, and Project Management
