{bc}
indeed

SR. INFORMATION SECURITY ANALYST

QatarEnergy
Doha, QAT
Senior
1 months ago
Information Security ManagementISMSGovernance, Risk, and Compliance (GRC)NIST Cybersecurity FrameworkCISSPCISM
Free

Job Fit Check

Base Career helps you apply smarter for this job.

?%
Ready to Scan

Key skills for this role

Information Security ManagementISMSGovernance, Risk, and Compliance (GRC)
Smart Apply

Full Job Posting

Primary Purpose of the Job

  • Governance and execution of the Information Security Management System (ISMS) including developing policies, standards and procedures for corporate information security in both IT and OT capacity.
  • Define required information security policies, standards and procedures related to their areas of operation and raise awareness of those policies, standards and procedures.

Key Responsibilities

  • Ensure adequate and effective IT controls exist to meet applicable current and future security compliance requirements.
  • Conduct compliance and operational maturity assessments to ensure optimal operation of the information and operational technology environments under ISMS guidelines.
  • Develop reporting metrics, dashboards and evidences of compliance activities.
  • Coordinate with IT stakeholders, project managers, and business owners to facilitate vendor risk assessments, due diligence review and security requirements definition.
  • Maintain third party assessment documentation.
  • Stay updated on the latest security trends, emerging threats and best practices to continuously improve the overall security posture.
  • Collaborate with cross functional teams, including AI and digital functions, to ensure alignment of security governance with emerging technologies and applied intelligence initiatives.
  • Carry out other Security related activities as assigned by team Lead.

Required Experience and Skills

  • Bachelor degree in information security, computer science, or engineering.
  • Professional certifications in information security management and standards compliance (e.g., CISSP, CISM, CRISC, GIAC, ISO27001, etc.) and experience with control frameworks (e.g., NIST Cybersecurity Control Framework).
  • 10+ years of relevant professional experience.
  • Experience with large ICS & ICT environments in the Energy sector, preferably in Oil & Gas.
  • Experience with and understanding of customized information security management systems.
  • Experience in defining Governance, Risk, and Compliance (GRC) processes and leveraging industry standard GRC tools and products.
  • Knowledge of information security capabilities and requirements analysis.
  • Knowledge of relevant state laws, industry regulations, and security standards.
  • Excellent written, verbal and presentation communication skills.

Apply for this job in 1 click

Skip the repetitive application forms

Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.

Sarah M.James T.Maya R.

Trusted by over 500,000 job seekers on Base Career

Start Free Today

More from this employer

More jobs at QatarEnergy