Senior OT Pentester - Dukhan, دولة قطر - Thales

وصف

We have been present in Qatar for over 35years and with over 350 employees to date and we are growingrapidly.

Thales in Qatar is part of our Middle East business thathas 1,800 people across Egypt, Iraq, Kuwait, KSA, Lebanon, Oman,Pakistan, Qatar and UAE.

Our people are working on two major urbanrail projects; the Doha Metro and Lusail Tramway and providingsecurity and communications systems for Hamad International Airportand Doha Port as well as delivering world-class In-Flightentertainment and Connectiivity systems.

They will be mobilized at the start of thepentesting activities and working on-site in the customer premisesor in the Thales labs in Doha.

• Application and OT infrastructure security configuration
• Network security & OT architecture
• Penetration testing of applications, OT systems and networks
• Information security organization, standards, and riskmanagement

• Leadaudits, document work performed, draft the audit report and presentof the audit conclusions to the management
• Follow upsecurity audit issues and recommendations to verify the properremediation
• Contribute to the development and themaintenance of our "Cyber Security audit Lab"and tool
• Recommend policies and procedures to ensure thereliability of and accessibility to information systems and toprevent and defend against unauthorized access to systems,networks, and data
• Conduct risk and vulnerabilityassessment to planned and installed information systems to identifyvulnerabilities, risks, and protection needs
• Promoteawareness of security issues among management and ensure soundsecurity principles are reflected in organization vision and goals
• Conduct system security evaluations, audits, andreviews,
• Recommend systems security contingency plansand disaster recovery procedures
• Recommend and implementprograms to ensure that system, network and data users are awareof, understand, and adhere to system security policy and procedure
• Participate in network and systems design to ensureimplementation of appropriate systems security policies
• Facilitate the gathering, analysis, and preservation of evidenceused in the prosecution of computer crimes
• Assesssecurity events to determine impact and implementing correctiveactions
• Ensure the rigorous application of informationsecurity/cybersecurity policies principles, and practices in thedelivery of all IT services

• Support our Business & Development and Salesteam and offer preparation
• Perform trainings andworkshops on cyber security topics
• Support authorizationand accreditation (A&A) efforts, to include assessing andguiding the quality and completeness of A&A activities,task, and resulting artifacts mandated by governing DoD and AirForce policies (i.e., Risk Management Framework (RMF))
• Develop and give presentations to leadership