Senior Cyber Security Engineer

Our client, an oil and gas operator is currently recruiting for a Senior Cyber Security Engineer. Based in Aberdeen, the role is on a long-term contract basis and offers hybrid working.  

RESPONSIBILITIES:

Implement Critical Requirements: Ensure compliance with CR GR SSI 001, CR GR SSI 023, GS EP INS 135, and L2-OPS-17-001 across all assets. Incident Management: Review, investigate, mitigate, and resolve cybersecurity incidents, anomalies, and threats promptly. Cyber Security Road Map: Assist in delivering key activities and act as a delegate for the Lead Cyber Security Engineer during absences. Risk Analysis: Participate in asset cyber risk analysis and develop procedures and documentation for cybersecurity management. Compliance: Ensure stakeholders comply with cybersecurity requirements and carry out UK government cybersecurity self-assessment reports. Solution Support: Roll out HQ security solutions, including administration and troubleshooting. Audits: Conduct site audits, recommend improvements, and track actions to completion. Vulnerability Management: Manage the industrial cybersecurity vulnerability process and ensure timely patching. Training: Develop and maintain industrial cybersecurity training materials and competence procedures. Emergency Response: Create and maintain cyber emergency and incident response plans. Project Involvement: Ensure cybersecurity requirements are captured in new projects and modifications. Culture Promotion: Promote a positive cybersecurity culture and participate in annual events and presentations. Innovation: Support the design and rollout of safer architecture solutions and stay updated on emerging technologies. Reporting: Produce reports to monitor cybersecurity progress and communicate findings to stakeholders. Vendor Coordination: Coordinate with third parties and vendors during cybersecurity incidents and carry out post-incident investigations. REQUIREMENTS:

Education: Relevant degree in Instrumentation and Controls, Computer Science, or Cyber Security. Experience: Prior relevant industry experience. Knowledge: Understanding of offshore operations, project management, and UK industry regulations. Expertise: In-depth understanding of IEC/ISA 62443 and OG-86. Management Skills: Experience managing contractors, vendors, and service providers. Communication: Effective communicator, both written and verbal. Relationship Building: Strong relationship-building skills at all levels - internally and externally