Cyber Security Specialist

Roles and responsibilities

The Senior Specialist – Information & Cyber Security will play a key role in protecting GCCIA information and technology assets against cyber threats. This position involves Implementing, monitoring, analyzing, and managing cybersecurity controls to ensure assets availability, integrity, and confidentiality. The ideal candidate will have a strong background in cybersecurity, networking, systems and industrial systems, with hands-on experience in threat detection, incident response, information protection and risk management.

Key responsibilities

Policy and Compliance:

• Develop and implement security policies, procedures, and best practices tailored to information, IT and OT systems. Ensure compliance with relevant industry standards and regulations.

Risk Management:

• Assess and manage risks associated with GCCIA systems. Provide recommendations for enhancing security posture and reducing vulnerabilities.

Security Assessments and Compliance checks:

• Conduct regular security assessments, compliance checks and vulnerability scans on GCCIA systems.

Incident Response:

• Develop and execute incident response plans for information and system-related security breaches. Coordinate with internal teams and external stakeholders to manage and mitigate incidents effectively.

Threat Monitoring and Analysis:

• manage the monitoring of IT and OT environments for security threats and vulnerabilities.

Change Management:

• Review changes and new system designs from a cybersecurity perspective and providing recommendations on the most secure way of delivery.

Training and Awareness:

• Conduct training sessions and workshops in collaboration with HR – Training section to raise awareness about cybersecurity threats and best practices among GCCIA personnel.

Documentation and Reporting:

• Maintain detailed records of information and cybersecurity incidents, assessments, and changes. Prepare and present reports to management on security status and improvements.

Collaboration:

• Work closely with All GCCIA departments and teams to integrate information and cybersecurity measures into GCCIA systems. Provide guidance and support on security-related issues.

Desired candidate profile

Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, Engineering, or a related field.

Skills
Strong understanding of IT and OT protocols and systems (e.g., SCADA, DCS, PLCs). Familiarity with security tools and technologies used in IT and OT environments. Knowledge of network security, threat intelligence, and incident response.
Excellent problem-solving skills with the ability to analyze complex security issues and develop effective solutions.
Strong verbal and written communication skills. Ability to convey technical information to non-technical stakeholders clearly and effectively.
High level of attention to detail with a commitment to accuracy and thoroughness in all tasks.
Cybersecurity Strategy and Implementation
Develop Security Policies: Design, implement, and enforce security policies, protocols, and best practices to ensure the organization's systems and data are protected.
Security Frameworks: Implement industry standards and frameworks (e.g., NIST, ISO/IEC 27001, CIS Controls) to ensure a structured approach to cybersecurity across the organization.
Risk Assessment and Management: Conduct regular risk assessments to identify potential threats and vulnerabilities in the organization's infrastructure and data. Develop strategies to mitigate risks and improve the security posture.
Incident Response Planning: Develop and maintain an incident response plan to address and resolve security breaches quickly. Coordinate with internal teams to ensure timely responses to cyber incidents.