Manager, Cybersecurity Operations

Position Title: Manager: Cyber Security Operations

Broad Band: M12: Management

Reports to: Director: Cyber Security

Department & Function: Ma’aden Cyber Security

Talent Pipeline Layer: Managing Others (MO)

Manager: Cyber Security Operations is responsible for performing the daily monitoring, maintenance and improvements to the security solutions deployed across Ma’aden on the perimeter, infrastructure, network-level, system-level and database-level to monitor and protect MA’ADEN Corporate and Affiliates IT (Information Technology) and OT (Operational Technology) resources and assets within Saudi Arabia, India, Malawi, Zimbabwe, Mozambique, South Africa and Mauritius. This position works closely with other functions to assist in the security monitoring program, managing the Security Operations Center (SOC) for Ma'aden within the seven countries, maintaining cyber threat situational awareness of internal and external threats and vulnerabilities through enhanced monitoring capabilities and oversight of systems and processes used to assess security. Handle threat intelligence through strong partnerships and communications with regulatory agencies, Cybersecurity providers, national and global peers. This position is also responsible for catering to all access management requests and changes as well as the incident response against in Cyber attack / breach and recovery capability. It is also responsible for handling forensic investigations and Root Cause Analysis (RCA) activities.

• Bachelor degree in Computer Science or Computer Engineering with an advanced degree desirable
• At least 8-10 Years' relevant experience
• Skills:
  • Mixed managerial, analytical and technical skills, and knowledge in all aspects of Cyber security in multi IT / OT domains: database, development, network operations, Data Centers, operating systems, Security Operations Centers (SOC), security technologies, specific applications security, etc.
  • Good knowledge in business continuity planning and disaster recovery management
  • Good understanding of cyber security standards (ISO27001, ISO 22301, ISO 9001, NIST)
  • Certifications in information security field (e.g. CISM / CISSP / ISO 27001 / ISMS Lead Auditor)
  • Good understanding of IT service management practices
  • Certifications in ITIL is a plus

• Cyber Security Operations Management
  • Oversee and direct Cyber security activities to execute the Cyber security program at all MAADEN including Corporate and Affiliates within Saudi Arabia, India, Malawi, Zimbabwe, Mozambique, South Africa and Mauritius
  • Ensure that the rules of use for IT/OT systems and the administrative procedures for IT/OT systems comply with the MA’ADEN’s Cyber security policies
  • Ensure that services provided by business and other enterprises, including outsourced providers are consistent with established Cyber security policies
  • Perform daily monitoring, maintenance and improvements as needed to the security solutions deployed across Ma’aden on the perimeter, infrastructure, network-level, system-level and database-level
  • Maintain cyber threat situational awareness of internal and external threats and vulnerabilities through enhanced monitoring capabilities and oversight of systems and processes used to assess security
  • Monitor users, applications, networks, systems, and access to physical assets
  • Perform periodic review of audits logs (includes review and retention) of applications, networks, systems, and access to physical assets
  • Perform periodic user access review across Ma’aden’s registered users
  • Conduct physical and logical security control assessments (vulnerability assessment), security monitoring, detection, and security status reporting to enable informed decisions
  • Scans, analyzes, and apply countermeasures of vulnerabilities
  • Detects, analyzes, and eliminates viruses and malicious code
• Incident Response Management
  • Establish and manage capability to respond to and recover from disruptive and destructive Cyber systems incidnets
  • Design and implement processes for detecting, identifying and analyzing security related events
  • Develop incident handling recovery plans including organizing, training, and equipping teams
  • Ensure periodic testing of the response scenarios and recovery plans where appropriate
• Business Continuity and Disaster Recovery Plan Management
  • Execute, coordinate, maintain and supervise comprehensive Business Continuity and Disaster Recovery Programs, strategies, plans and procedures within the seven countries
  • Coordinate and manage activities related to the Business Continuity Plan (BCP) including the Disaster Recovery Plan (DRP)
  • Coordinate the maintenance of the BCP/DRP documentation
  • Primary liaison between key stakeholders of MA’ADEN’s BCP e.g. Senior Management, Directors and Managers, Staff, Consultants, vendors and auditors
• Cyber Security Compliance
  • Implement and comply with Cyber Security policies and procedures in the manufacturing environment
  • Participate and contribute in the early stages of design for manufacturing technologies and systems to ensure alignment with Cyber Security requirements and standards
  • Build the Cyber Security standards in terms of manufacturing and operational technologies in cooperation with Enterprise Cyber Security team and Process controls owners in Ma’aden affiliates.
  • Participate in auditing activities to ensure security policies, requirements and best practices are effectively applied

• Technical/Functional
  • Cyber Security Risk Management
  • Enterprise Architecture
  • IT/Solution Architecture
  • Security Architecture Controls Implementation
  • Cloud Security
  • Product / Vendor Security Certifications
  • Security Tecnologies
  • Project Management
  • Presentation Skills
• Leadership
  • Leadership
  • Teamwork
  • Integrity
  • Care
  • Ownership
  • Accountability
  • Communication
  • Time Management, Planning and Organization
• Safety
  • Safety advocate - anywhere and everywhere
  • Expert knowledge and application of HSE rules and procedures
  • Advanced knowledge of applicable HSE legislation and regulations and its practical implications
  • Concern for employees' wellbeing
  • Ability to foster a safety culture
  • Drive and facilitate Ma'aden Safety Culture Transformation Program

• ICT-SS: Align and build the relationship with ICT functions to ensure proper implementation of Cybersecurity technologies and practices within IT environments across Ma'aden covering but not limited to: aligning the Cybersecurity operations plans and objectives, implement Cybersecurity tools and technologies on top of the ICT infrastructure and applications, develop the incident response & recovery capability for ICT, collaborate with IT to support security projects and ensure proper security controls are considered.
• Cyber Security: Collaborate with the other cybersecurity functions to ensure adequate planning and Aligning of Cybersecurity strategy and plans.
• Internal / External Audit: Align with Internal / External Audits on the approved frameworks, policies and procedures implemented in Cybersecurity for IT and OT, support the audit functions in conducting continuous audits on the security controls implemented in IT and OT and manage the closure of the reported audit observations.
• Ma’aden affiliates: Align and build the relationship with the several business functions in Ma'aden to ensure proper implementation of Cybersecurity controls within in the seven countries covering: aligning the Cybersecurity strategy, objectives and business plan with the Affiliates business strategies, ensure Cybersecurity framework and policies embedded part of the Affiliates models, conduct periodical risk assessment on operational processes and OT infrastructure and confirm the level of compliance against the Cybersecurity controls, support OT projects by reviewing security architecture and ensure proper security controls are considered.
• Operational Technology (OT) and Industrial Control Systems (ICS) Stakeholders in Ma'aden: Support and provide the OT and ICf functions in across Ma'aden with required guidelines, policies, procedures, security architecture and controls. conduct periodical risk assessments to confirm the level of maturity and compliance of OT security controls.
• Security Service providers: Select and work with the potential security vendors that can provide required consultancy services. Support and maintain strong relationship with the vendors to ensure sustainable and efficient support level.
• Business Continuity and Crisis Management: Primary liaison between key stakeholders of MA’ADEN’s BC plan e.g. Senior Management, Directors and Managers, Staff, Consultants, vendors and auditors in the seven countries.
• Government Authorities: Align and build strong relationship with relevant Government authorities in Saudi Arabia, India, Malawi, Zimbabwe, Mozambique, South Africa and Mauritius (i.e. National Cybersecurity Authority in Saudi Arabia) to ensure proper adherence and compliance to mandates and regulations as well as report and escalate any Cyber threats targetting Ma'aden Corporate and affilaites where ever applicable and work with the authorities to secure the company and recover the impacts.

• Fully understand customer and supplier needs and ensure Customer/partner service level agreements
• Build effective working relationship with managers, peers, team members, customers and suppliers
• Liaison with service and support functions/upstream – downstream interface management
• Ensure knowledge transfer within own area of responsibility
• Build effective networks (internal and external) to the benefit of the team
• Use opportunities and appropriate communication tools to effectively communicate information to the team