OT Security Engineer

The purpose of this role is to design the organisation’s computer and network security infrastructure and protect its systems and sensitive information from cyber threats.

1. Design and develop enterprise cyber security strategy and architecture.
2. Understand security requirements by evaluating business strategies and conducting system security vulnerability and risk analyses.
3. Identify risks associated with business processes, operations, information security programs, and technology projects.
4. Identify and communicate current and emerging security threats and design security architecture elements to mitigate threats.
5. Identify security design gaps in existing and proposed architectures and recommend improvements.
6. Provide product best-fit analysis to ensure end-to-end security covering various facets such as layered security, zoning, integration, API, endpoint security, data security, and compliance.
7. Demonstrate experience in security assessments against frameworks like NIST, SANS, CIS, etc.
8. Support during deployment, configuration, integration, and administration of security technologies.
9. Apply knowledge of ITIL or similar process domains for incident, change, configuration, and problem management.
10. Assist in disaster recovery planning and response to security breaches and attacks.
11. Develop solutions for RFPs and ensure overall design assurance.
12. Manage a portfolio of solutions aligning with business outcomes.
13. Analyze technology environments and client requirements to develop architectural frameworks.
14. Create comprehensive RFPs based on client standards and technology stacks.
15. Provide technical leadership in designing, developing, and implementing custom solutions.
16. Evaluate and recommend solutions for integration with existing ecosystems.
17. Stay updated on industry trends and relate them to current and future IT needs.
18. Coordinate with stakeholders and assist in audits and compliance activities.
19. Maintain security risk registers and support security audits.
20. Promote cybersecurity awareness and training within the organization.

• Internal: Program Manager/Director, CIS team
• External: Customers for breach resolution and security coordination

• Knowledge of current security technologies and compliance requirements (e.g., Firewalls, IPS, DDoS, SIEM, WAF, Endpoint).
• Understanding of systems thinking and complex problem solving.
• Mastery in security ecosystem technology and certifications like CISSP, Cloud Architect (AWS, Azure), ToGAF, SABSA.

• Effective communication, managing complexity, client centricity, technology acumen, innovation, problem solving, collaboration, execution excellence.

• Customer-centric security breach resolution, proposal support, and lead generation.

• Manage operations and quality teams, maintain SLAs, review reports, conduct interviews, and facilitate audits.
• Ensure smooth operations, workforce planning for 24x7 coverage, escalate high-priority issues.

Al Jubail, Saudi Arabia