Job Title : SR. INFORMATION SECURITY ANALYST (GOVERNANCE)
Reference Code : OG-7001653
Qatar Petroleum (QP) is a state-owned public corporation established byEmiri Decree No. 10 in 1974. It is responsible for all phases of the oiland gas industry in the State of Qatar.
The principal activities of QP, its subsidiaries and joint ventures arethe exploration, production, local and international sale of crude oil,natural gas and gas liquids, refined products, synthetic fuels,petrochemicals, fuel additives, fertilizers, liquefied natural gas(LNG), steel and aluminium.
QP’s strategy of conducting hydrocarbon exploration and development isthrough Exploration and Production Sharing Agreements (EPSA) andDevelopment and Production Sharing Agreements (DPSA) concluded withmajor international oil and gas companies.
The operations and activities of QP and its affiliates are conducted atvarious onshore locations, including Doha, Dukhan and the Mesaieed andRas Laffan Industrial Cities, as well as offshore areas, including HalulIsland, offshore production stations, drilling platforms and the NorthField.
Thriving on a spirit of enterprise, each of our joint ventures isunderpinned by transparency, innovation and high standards of qualityand service.
At Qatar Petroleum, we are committed to one thing aboveall : Excellence.
INFORMATION & COMMUNICATION TECHNOLOGY
Primary purpose of job
Governance and execution of the Information Security Management System (ISMS) including developing policies, standards and procedures required for the corporate information security in both an information technology (IT) and operational technology (OT) capacity.
Define required information security policies, standards and procedures related to their areas of operation as well as raising awareness of those polices, standards and procedures.
Conduct compliance and operational maturity assessments to ensure optimal operation of the information and operational technology environments under the guidelines of the ISMS.
Experience & Skills
and externally with government bodies as directed.
and experience with control frameworks (e.g., NIST Cybersecurity Control Framework).