Search by job, company or skills

ASMO

Cybersecurity Architect

ASMO
Early Applicant
  • 3 months ago
  • Be among the first 50 applicants
Exp: 3-9 Years
Saudi Arabia, Khobar, Al Khobar
Login to check your skill match score

Job Description

ASMO is a groundbreaking joint venture between DHL and Saudi Aramco. Inheriting DHL's logistics excellence and Saudi Aramco's extensive supply chain ecosystem, we are here to set a new benchmark and redefine the procurement and supply chain landscape, enabling growth.

ASMO aims to be operational in 2025 and provide reliable end-to-end integrated procurement and supply chain services for companies across the industrial, energy, chemical, and petrochemical sectors. Our focus customers in the short term will be Saudi Aramco and its Affiliates. In the long term, all the industrial sectors within Saudi Arabia aim to reach the MENA region.

Objective:

The role holder is responsible for defining and implementing a comprehensive security architecture framework to protect the organization systems, networks and data. It encompasses the identification of required cybersecurity controls and governing documents to ensure the confidentially, integrity and availability of technology and data assets.

General Responsibilities:

  • Contribute to the development and execution of the Information Security department's short to mid-term strategic plan to ensure alignment with the Information Security department's strategic priorities, and the corporate goals by leading the Cybersecurity Architecture area.
  • Contribute to the development of annual business plans for the assigned areas of responsibility in the Cybersecurity Architecture area to support the achievement of financial and strategic objectives.
  • Monitor, control and report key performance indicators related to the Information Security department to track performance and recommend corrective actions through the perspective of the Cybersecurity Architecture area.
  • Review as-is and to-be security architect and develop security roadmaps.
  • Assess current technology environment, including applications, cloud, database and network, to identify deficiencies and recommend solutions.
  • Stay up to date with emerging security technologies and trends and apply them where appropriate.
  • Build cybersecurity architecture for ASMO in alignment to SABSA standards, local regulations, and best practises.
  • Build hybrid cloud security architecture in alignment to ASMO business requirements.
  • Develop security architecture design patterns to ensure consistency of security architecture throughout the environment.
  • Define new security architecture patterns for advanced technologies.
  • Assess the maturity of Cybersecurity capabilities against industry standards such as NIST Cybersecurity Framework (NIST CSF), ISO, 800-53/171, etc.
  • Assess the security architect of technology projects, identify security requirements and ensures alignment with corporate security policies and best practices.
  • Provide project consultation and evaluate security architecture and risks of proposed solutions, including vendor products & services, and recommend alternative solutions or compensating controls.
  • Identify gaps in the current project's security design, cybersecurity reference architecture, architecture design patterns and recommend security enhancements.
  • Liaise with key stakeholders from the technology function to gather inputs on the various applications to develop the required security controls.
  • Ensure systems are build according to cybersecurity standards and security architecture patterns.
  • Manage the activities of direct reports to ensure that all work is carried out in an efficient manner, in line with the annual business plans, policies and procedures.
  • Manage the performance management process by setting annual objectives, and developing staff through mentoring, coaching and constructive feedback.
  • Identify employees training and developmental needs and in conjunction with Human Capital Department bridge the knowledge gaps to ensure continuous progression, and high-level of competence within the team.
  • Contribute to defining an optimum structure for the Information Security department via the Cybersecurity Architecture unit, to ensure smooth workflow of operational processes and optimal utilisation of resources.
  • Provide input into the preparation and consolidation of the Information Security department's budget with regards to the Cybersecurity Architecture unit, monitor financial performance during the year and identify areas of unsatisfactory performance (if any), and recommend mitigating actions.
  • Identify and manage implementation of change initiatives on systems, processes and practices considering international leading practices, and/or other changes in the business environment.
  • Recommend improvements to departmental procedures, and ensure implementation of policies, procedures, systems and controls covering the Cybersecurity Architecture unit so that all activities meet ASMO's standards, compliance, and regulatory requirements, align to business requirements, and increase operational efficiency.
  • Identify opportunities for the continuous improvement of systems, processes and practices considering international leading practices, in order to increase operational effectiveness within the unit.
  • Ensure that all relative reports are prepared timely and accurately, and meet the Infrastructure & Service Operations department's requirements, policies and standards.
  • Ensure compliance with regulatory requirements and relevant quality, health, safety, security and environmental procedures and controls across the Information Security department to guarantee employee safety and delivery of high-quality services.

Core Competencies:

  • Proven experience as an Enterprise Security Architect.
  • Excellent working knowledge of how to model threats & risks as well as the controls necessary to mitigate them, on both an organizational and technical level.
  • A background in at least two general security practices: cloud security in AWS/Azure/OCI, application/API security, firewalls, IDS/IPS, sandboxing, threat intelligence, vulnerability assessment and mitigation, SIEM, auditing, encryption, data loss prevention, threat intelligence, SASE, Zero-trust network access solutions, mobile application/system security.

Qualifications:

  • Bachelor's degree in computer science, cybersecurity, computer engineering, or information technology preferred, or other related fields from a recognized and accredited university.
  • 9 years experience in a similar role or in cybersecurity function, out of which 3 years at a supervisory position or similar level
  • SABSA Certification, Certified Info Sys Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Security Auditor (CISA) are preferred.

More Info

Industry:Other

Function:Logistics

Job Type:Permanent Job

Skills Required

auditing
IDS/IPS
mitigation
cloud security
vulnerability assessment
Firewalls
Encryption
Siem
Threat Intelligence
Data Loss Prevention

Login to check your skill match score

Login

Date Posted: 30/07/2024

Job ID: 86918329

Report Job

About Company

ASMO
Follow

Hi , want to stand out? Get your resume crafted by experts.

Last Updated: 21-11-2024 06:20:27 PM
Home Jobs in Saudi Arabia Cybersecurity Architect
Jobs by Skill - IT
Jobs by Skill - Non IT
International Jobs