CYBER ATTACK MONITORING ANALYST (IT SECURITY)
Qatar Petroleum
Doha
منذ 3 يوم
source : Oil & Gas Job Search

Job Title : CYBER ATTACK MONITORING ANALYST (IT SECURITY)

Reference Code : OG-7001664

Company

Qatar Petroleum (QP) is a state-owned public corporation established byEmiri Decree No. 10 in 1974. It is responsible for all phases of the oiland gas industry in the State of Qatar.

The principal activities of QP, its subsidiaries and joint ventures arethe exploration, production, local and international sale of crude oil,natural gas and gas liquids, refined products, synthetic fuels,petrochemicals, fuel additives, fertilizers, liquefied natural gas(LNG), steel and aluminium.

QP’s strategy of conducting hydrocarbon exploration and development isthrough Exploration and Production Sharing Agreements (EPSA) andDevelopment and Production Sharing Agreements (DPSA) concluded withmajor international oil and gas companies.

The operations and activities of QP and its affiliates are conducted atvarious onshore locations, including Doha, Dukhan and the Mesaieed andRas Laffan Industrial Cities, as well as offshore areas, including HalulIsland, offshore production stations, drilling platforms and the NorthField.

Thriving on a spirit of enterprise, each of our joint ventures isunderpinned by transparency, innovation and high standards of qualityand service.

At Qatar Petroleum, we are committed to one thing aboveall : Excellence.

Department

INFORMATION & COMMUNICATION TECHNOLOGY

Primary purpose of job

Responsible for monitoring, analysing and responding to information and operational security alerts triggered by QP Cyber Defence Platforms and Threat intelligence feeds.

  • Primary responsibilities detect anomaly and potential security threats, filtering false positive alerts, determine if a critical system or data set has been impacted;
  • provides technical analysis; provides recommendations on contamination and remediation; and escalates incidents when deep technical analyses required.

    Will use variety of tools to analyse and investigate incidents and take immediate action or recommend a course of action to safeguard QP.

    Experience & Skills

    5+ years of experience working in a large-scale IT environment with focus on Information Security, and knowledge of Operational Technology.

  • 1-3 years previous Security Operations Centre Experience in conducting security monitoring or investigations.
  • Demonstrated ability to analyse, triage and remediate security incidents and strong understanding of security incident management, malware management processes.
  • Good knowledge of IT including multiple operating systems and system administration skills (Windows, Unix)
  • Good knowledge SIEM, SOAR, FW, Sandboxing, VPNs, and enterprise level cyber security products.
  • Understanding on the latest current cyber security intrusions, attacks, hacking techniques, vulnerability disclosures, data breach incidents and security analysis techniques is a big plus.
  • Good understanding on cloud, client-server applications, multi-tier web applications, relational databases.
  • Good awareness of IT Support processes, such as COBIT, ITIL.
  • Strong understanding of networking principles including TCP / IP, WANs, LANs, and commonly used Internet protocols.
  • Knowledge on security best practices and concepts Vulnerability Assessment & Penetration Testing, and OT security best practices is a plus.
  • Possession of Industry Certifications (GCIA, SANS, ICS2, EC-Council, other relevant cyber security technical certifications).
  • Good understanding of Security frameworks and techniques.
  • Education

    Bachelor degree in information security, computer science, or systems engineering.

    Recommended Skills

    Information SecurityVulnerabilityPenetration TestingCyber SecurityVulnerability AssessmentSecurity Information And Event Management

    بلغ عن هذه الوظيفة
    checkmark

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    قدِّم طلب ترشيحك
    بريدي الالكتروني
    بالضغط على "واصل" ، أعطي موافقة neuvoo على معالجة بياناتي وإرسال تنبيهات إلي بالبريد الإلكتروني ، على النحو المفصل في سياسة خصوصية لـneuvoo . يجوز لي سحب موافقتي أو إلغاء الاشتراك في أي وقت.
    واصل
    استمارة الطلب