Saudi Aramco Total Refining and Petrochemical Company (SATORP)
Lead Cybersecurity Analyst
About the job
Ensure the performance, security, and reliability of SATORP’s Cybersecurity systems and applications.
Ensure the prevention of Cybersecurity incidents and events and take immediate steps to remediate them if they occur.
Identify Cybersecurity related Threats, Vulnerabilities and Risks and work with the relevant Stakeholders to implement appropriate Cybersecurity controls for their mitigation.
Report on the Compliance of SATORP’s Cybersecurity policies, procedures, applicable regulations and standards as well as Audit reports.
Control the execution and implementation of Cybersecurity related projects.
Guarantee Quality of Work and deliverables. Ensure the performance, security, and reliability of SATORP’s Cybersecurity systems and applications.
Ensure the prevention of Cybersecurity incidents and events and take immediate steps to remediate them if they occur.
Identify Cybersecurity related Threats, Vulnerabilities and Risks and work with the relevant Stakeholders to implement appropriate Cybersecurity controls for their mitigation.
Report on the Compliance of SATORP’s Cybersecurity policies, procedures, applicable regulations and standards as well as Audit reports.
Control the execution and implementation of Cybersecurity related projects.
Guarantee Quality of Work and deliverables.
Duties, Responsibility & Accountabilities
- Manage ongoing Cybersecurity operational activities and objectives, including the management of SATORP’s Cybersecurity infrastructure (including security systems / devices as well as security applications / software).
- Ensure SATORP’s data, systems and networks are protected by appropriate Cybersecurity controls and provide security related support to users as and when required.
- Manage and monitor SATORP’s Security Operations Centre (SOC) and immediately respond to, manage and report on any intrusion attempts, Cyber Incidents or Cyberattacks on SATORP’s data, systems or networks.
- Oversee and manage any outsourced Cybersecurity services (including SLAs and OLAs) and their related Third-Party Suppliers / Vendors / Contractors.
- Interact with Consultants and ensure Cybersecurity projects are completed on time and within budget and desired quality.
- Resolve Cybersecurity problems, determining their Root Cause and suggest measures to improve Cybersecurity within SATORP.
- Prepare and provide regular Cybersecurity Reports (Weekly, Monthly, Quarterly, Yearly, Ad Hoc, etc.) for CISO and Management.
- Apply security policies to meet system security objectives.
- Collaborate with stakeholders to ensure Business Continuity and Disaster Recovery programs meet organizational requirements.
- Contribute towards Cybersecurity Processes, Policies and Procedures improvements.
- Ensure distribution of knowledge within the Cybersecurity team through coaching and training, contributing to the technical robustness of the team.
- Initiate new ideas to improve Cybersecurity controls.
- Participate in major Cybersecurity projects and initiatives.
- Manage any projects related to Cybersecurity operation activities.
- Perform any other duties assigned by the Cybersecurity Operations Manager or the CISO.
Requirements
Minimum Qualifications:
Degree:
Bachelor’s Degree in Cybersecurity, Information Security, Computer Science or equivalent.
Minimum Experience (Technical, functional, and/or leadership experience required)
Seven to eight (7 – 8) years of Cybersecurity Operations / Information Security / IT Security related work experience.
Certifications:
Cybersecurity related certifications (e.g. CISSP, CISA, CRISC, CISM, CEH, GIAC, SSCP, etc.) preferred.
Training and other requirements:
Robust knowledge of Cybersecurity regulations, standards and controls.
Fluent in Cyber Incident Detection, Response and Management
Strong understanding of ICT, including Hardware, Software and Networks.
Expertise in preparing and analyzing Cybersecurity reports.
Experience in ICT / Cybersecurity Audit / Compliance / Regulatory discussions.
Job Specific Skills
Awareness of latest Cybersecurity trends and hacking techniques.
Ability to identify Cybersecurity related Threats, Vulnerabilities and Risks.
Ability to work under pressure in a fast-paced environment and meet tight deadlines.
Ability to work successfully in both individual and team settings.
Strong critical thinking, problem-solving, logic, and forensics skills.
Demonstrated capacity to learn, intellectual honesty and independent thinking.
Strong interpersonal communication skills.
Strong verbal and written communication skills in English.
more skills:
- Cybersecurity Knowledge: Strong understanding of cybersecurity principles, including threat detection, incident response, and risk management.
- Technical Proficiency: Proficiency in security systems, applications, and infrastructure management, including hardware, software, and networks.
- Incident Response: Expertise in detecting, responding to, and managing cybersecurity incidents and attacks.
- Risk Assessment: Ability to identify threats, vulnerabilities, and risks, and implement appropriate controls to mitigate them.
- Regulatory Compliance: Knowledge of cybersecurity regulations, standards, and compliance requirements relevant to the organization.
- Project Management: Skills in managing cybersecurity projects, ensuring they are completed on time, within budget, and meet quality standards.
- Analytical Skills: Strong capability to prepare and analyze cybersecurity reports and audits, as well as conduct root cause analysis for issues.
- Communication Skills: Excellent verbal and written communication skills for reporting to management and collaborating with stakeholders.
- Interpersonal Skills: Strong relationship-building skills to interact effectively with team members, vendors, and consultants.
- Continuous Learning: Ability to stay updated on the latest cybersecurity trends, threats, and technologies.
Government Affairs Supervisor
About the job
Scope:
Work and liaise with public and private partners of SATORP, such as Police, Customs, Immigration, Ministry of Labor, the Royal Commission, Jubail Port Authority, Jubail Municipality, Saudi Aramco, and other organizations. Manage a team bearing in mind that ethics shall govern the attitude of the Company.
Job Description:
1.Serve as an official external liaison of SATORP.
2. Oversee the implementation of operational policies, procedures and controls in all areas of Government Affairs activities to ensure that all SATORP’s procedural and legislative requirements are fulfilled in an effective manner.
3. Develop instruction manuals and guidelines on the governmental procedures, correspondence and formalities to ensure clarity and easy reference by the Company’s personnel.
4. Focus on promoting the Company’s image, protecting its assets and interests, and strengthening its relations with the Government.
5. Build strong relationships for the Company amid the relevant Government organizations and departments.
6. Monitor Government policies and decisions to protect SATORP interests.
Boost networking through gatherings, invitations and visits involving Government officials.
8. Facilitate project coordination efforts and services that have impact on the Company’s construction projects. Work closely with concerned Company’s organizations and respond to their requirements regarding projects review and coordination services.
9. Review and initial the agreements with third-parties in coordination with SATORP’s legal team before obtaining the final signature by the authorized signatory.
10. Assist respective SATORP’s organizations in obtaining all necessary permits and authorizations such as contractor site camps, pipeline ROW, and Jubail Port.
11. Consider the case for, and administer outsourcing of some of the functions as appropriate on case-by-case basis under the administration of the Government Affairs and Corporate Communication Manager.
12. Coordinate internally with the Human Resources Department to prepare all the needs required from the relevant authorities before submitting the same as a comprehensive file to the Contractor.
13. Monitor and analyze Saudi Arabian legislations and regulations which may impact the Company’s operations and Submit regular reports with recommendations to the Government Affairs & Corporate Communication Manager and the Management.
14. Provide professional advice concerning any changes or developments of Passports, Labor Office or any Government regulations affecting SATORP’s personnel.
15. Develop and establish special projects and reports on an as-needed basis to support the Company’s government and industry relations and networks.
16. Forecast the annual operation budget for the Government Affairs Section.
17. Perform other related duties as assigned by the Government Affairs & Corporate Communication Manager.
Requirements:
Degree :
Bachelor’s Degree in Business Administration, Communication, Economics, Political Science or equivalent.
Skills:
- Communication Skills: Excellent verbal and written communication skills to effectively liaise with government officials and internal stakeholders.
- Interpersonal Skills: Strong relationship-building abilities to cultivate and maintain connections with public and private partners.
- Regulatory Knowledge: Understanding of Saudi Arabian laws, regulations, and policies that affect business operations, particularly in the energy and industrial sectors.
- Negotiation Skills: Ability to negotiate agreements and contracts with third parties, ensuring SATORP’s interests are protected.
- Project Management: Skills in coordinating projects, facilitating communication between departments, and managing timelines and deliverables.