Cybersecurity Analyst (OT)

Main Responsibilities:

• Provide the required support for Operational Technology (OT) cybersecurity systems, Process Control Systems, Electrical Automation Systems, network, and its operation.
• Install, configure, maintain, troubleshoot, and administer YASREF's cybersecurity solution for the automation systems.
• Perform Periodic review of network security procedure.
• Determine who requires access to which information, and then plan, coordinate and implement information security programs.
• Monitor and advice on information security issues to ensure the internal Cybersecurity controls for the YASREF is adequately maintained and operating as intended.
• Participate and publish Cybersecurity policies, procedures, standards and guidelines based on knowledge of best practices and compliance requirements.
• Review violations of computer security procedures and discuss procedures with violators to ensure violations are not repeated.
• Coordinate and execute OT Cybersecurity projects for YASREF.
• Alert top management and Information Technology department to response to Cybersecurity incidents.
• Participate in risk assessment process for new projects as well as major changes to existing Infrastructure/Applications.
• Participate in conducting organization wide data classification assessment and security audits.
• Participate in creating cryptographic protocols to encrypt emails, files, and other critical data.
• Participate in development of incident response plans, annual OT risk assessments and associated risk mitigation and avoidance functions.
• Document Cybersecurity incidents and emergency measures taken, procedures and tests conducted.
• Collaborate with government, IT department, legal department to report and comply with safety and security regulations. Implement policies as mandated by law enforcement agencies to manage security vulnerabilities.
• Create, manage and maintain user security awareness among all computer users.
• Participate in YASREF's efforts to comply with ISO 27001 Information security management certification standards.
• Participate in Cybersecurity research and keep abreast of latest security issues. Actively participate in the higher education of Cybersecurity.
• Create and edit cybersecurity-related documentation. Also write technical specification to assess the application of security safeguards against vulnerabilities.
• Perform other job-related duties as assigned by the direct supervisor.

Minimum Requirements:

Education Requirements: Bachelor’s degree in computer science, IT, Computer Engineering or equivalent.

Years of Work experience: Five (05) years of relevant experience.

Certification/License (Optional): Cybersecurity certification