Job Title : THREAT INTELLIGENCE ENGINEER
Reference Code : OG-7001875
Qatar Petroleum (QP) is a state-owned public corporation established byEmiri Decree No. 10 in 1974. It is responsible for all phases of the oiland gas industry in the State of Qatar.
The principal activities of QP, its subsidiaries and joint ventures arethe exploration, production, local and international sale of crude oil,natural gas and gas liquids, refined products, synthetic fuels,petrochemicals, fuel additives, fertilizers, liquefied natural gas(LNG), steel and aluminium.
QP’s strategy of conducting hydrocarbon exploration and development isthrough Exploration and Production Sharing Agreements (EPSA) andDevelopment and Production Sharing Agreements (DPSA) concluded withmajor international oil and gas companies.
The operations and activities of QP and its affiliates are conducted atvarious onshore locations, including Doha, Dukhan and the Mesaieed andRas Laffan Industrial Cities, as well as offshore areas, including HalulIsland, offshore production stations, drilling platforms and the NorthField.
Thriving on a spirit of enterprise, each of our joint ventures isunderpinned by transparency, innovation and high standards of qualityand service.
At Qatar Petroleum, we are committed to one thing aboveall : Excellence.
INFORMATION & COMMUNICATION TECHNOLOGY
Primary purpose of job
Conducts research and develops protective and predictive cyber intelligence threat assessments to evaluate cyber security threats.
Maintain QP’s overall cyber threat landscape (cyber, malware, botnets, phishing, DDoS, physical) and collect, analyse, investigate, store, and disseminate indicators of compromise (IOCs), threat intelligence.
Use variety of tools to analyse and investigate incidents and take immediate action or recommend a course of action to safeguard QP.
Experience & Skills
5+ years’ experience working in a large-scale IT environment with focus on Information Security, and knowledge of Operational Technology 4+ years previous Security Operations Centre Experience in conducting security investigations Good knowledge of IT including multiple operating systems and system administration skills (Windows, Unix) Proven record of deep reverse engineering skills, Proven track record and demonstrated relevant experience as a key member of a threat intel, incident response, malware analysis, or similar role.
Strong understanding of security incident management, malware management processes Experience with web content filtering technology - policy engineering and troubleshooting Strong understanding of networking principles including TCP / IP, WANs, LANs, and commonly used Internet protocols such as SMTP, HTTP, FTP, POP, LDAP Knowledge of security best practices and concepts Vulnerability Assessment & Penetration Testing Demonstrated ability to analyse, triage and remediate security incidents.
Demonstrated knowledge of security related technologies and their functions (IDS, IPS, FW, WAF, SIEM and the like); Possession of Industry Certifications (OSCP, OCSE preferred, GCIH, SANS ICS, GCIA, Certified Incident Handler (GCIH), Certified Intrusion Analyst (GIAC), Certified Ethical Hacker (CEH), (CISSP), CHFI, SANS Cyber Threat Hunting, SANS GREM , SIEM / security tool equivalent technical certification.
Bachelor degree in information security, computer science, or systems engineering