Sr. Security Application Engineer

We currently have an opening for the position of Sr. Security Application Engineer with one of our prestigious client (through Secondment Mekdam)

Main Responsibilities:

Be a member of the ICS Security Enhancement Project (ICSSEP) management team as a focal point for engineering design of Cybersecurity infrastructure for Industrial Control Systems. Apply best practices of Cybersecurity Applications, in engineering and design, and monitor engineering activities for the Project. Ensure the engineering design of Security Applications and functions meets system safety, reliability, availability and in compliance with company policies and procedures. Ensure that EPC contractor complies with all requirements of the EPC contract with respect to engineering, procurement, testing and commissioning. Review and implement all the Cyber security Applications scope of work for the ICS. Review all the system architects, EPC proposals, Method statements, JSA, procedures, etc., with the project Engineers and contracts team ensuring these conform to all applicable Project scope. Liaise with Project Engineering support team, ICS Security Engineering team and Asset Technical support team to obtain necessary approval of engineering documents and interface agreements. Meets all requirements of the Qatargas Policy and Procedures related to the ICSSEP project activities.

Primary Accountabilities:

Approve Project Specifications and Design Basis documents that are prepared by Contractor for the Project. Approve engineering documents developed by Contractor ensuring that the design meet Qatargas specifications, International standards and OEM requirement. Approve system architecture/design of software, applications, and licensing requirements of the project. Approve engineering of Interfaces and Tie-ins of software applications to ensure the design and methodology ensures safe interfaces with no impact on operation of existing systems. Ensure the progress and quality of engineering development by closely following up with the contractor and supporting him in providing engineering solutions. Support the Contractor in obtaining existing documents from Qatargas to develop the detailed engineering deliverables of the project. Review of Software, Applications and licenses for its capability to select appropriate software suitable for the required functions.. Review of proposal documents from subcontractors / vendors to ensure the design and engineering of software applications meets Project specifications and requirement. Provide engineering input and guidance for system software installation and configuration including third party applications tie-in. Review detailed project execution plan, method statements and other documents to ensure they meet the engineering design standards. Attend Project meetings and Engineering meetings and actively participate on engineering related discussions. Participate and Contribute in Design Reviews, Risk Assessments, and Constructability workshops to support the project efforts. Review & Participate in system test plan and execute internal and customer testing (FAT) in on-site testing/SAT and commissioning activities as required

Experience and Qualifications:

Bachelor of Science in Engineering (Electrical / Electronics / Instrumentation/Computer Science) or equivalent 10 or more years of experience on IT/OT Networked Systems. 5 years experience in Cybersecurity implementation including SIEM, Vulnerability management Tools, programming languages and applications like html, java, SQL, Security APIs and tools.

Preferred Skills:

Strong interpersonal skills, able to work independently with minimum supervision. Expert knowledge of Control System Cybersecurity Design & Maintenance, processes, tools used in

1. Log Collection and Full Packet Capture

2. Common Data Repository for Security Analytics (Data Lake)

3. SOC/NOC Operations 4. SIEM and Cyber Security Use cases, Dashboards & Reports

5. Patch Management & Anti-virus definition updates

6. End-Point Security Management

7. Privilege ID/Access Management / Radius / DFA

8. Centralized Windows Group Policy Management

9. Network Performance Monitoring, Asset and Configuration Management

10. Backup & Data Archive Management 11. Centralized Firewall Policy Management & Monitoring

12. Network Time Synchronization

3. Firewalls & IDS/IPS 14. Active Directory Infrastructure 15. Switching Infrastructure

16. Data Storage Infrastructure

17. Server Farm Infrastructure - Physical & Virtual Servers

Understanding of malwares (viruses, worms, Trojans), intrusions, threats. Experience in designing, constructing and integrating the software applications and networking systems. Knowledge & Experience on Servers, Switches, Firewalls, for IT/OT networks.

A passion for learning and working with new technologies. Project wide internal and external, interface management and coordination experience, across all project phases. Personal Attributes: Excellent organization, communication, co-ordination, planning and reporting skills