Talent.com
PENETRATION TEST ANALYST

PENETRATION TEST ANALYST

QatarEnergyDoha, Ad-Dawhah, Qatar
30+ days ago
Job description

Join to apply for the PENETRATION TEST ANALYST role at QatarEnergy

Overview

Primary Purpose Of The Job : Responsible for leading the Offensive red teaming activities on QatarEnergy’s IT / OT environments, by conducting threat hunting, penetration testing, vulnerability scanning and security assurance activities. Provides oversight and technology guidance as well as managerial support as required. Oversee the execution of incident management program and supervises and coordinates engineers and external consultants to design, build and manage QatarEnergy SOC Red team functions on QatarEnergy’s IT and OT cyber security mission critical operational expansion.

Responsibilities

  • Lead offensive red team activities on IT / OT environments.
  • Conduct threat hunting, penetration testing, vulnerability scanning and security assurance activities.
  • Provide oversight and technology guidance, plus managerial support as required.
  • Oversee incident management program and coordinate engineers and external consultants to design, build, and manage SOC Red team functions for QatarEnergy’s cyber security operations.

Qualifications

  • Strong understanding of cyber incident management, malware management and vulnerability management processes.
  • Solid knowledge on malware analysis, vulnerability assessment & forensic & memory analysis, and data analytics.
  • Experience with large ICS & ICT environments in the Energy sector is a big plus.
  • Advanced knowledge of networking fundamentals (TCP / IP, network layers, Ethernet, etc), current threat landscape (threat actors, APT, cyber-crime), penetration techniques and forensic techniques; protocol analysis experience (Wireshark, NetWitness, etc.).
  • Solid knowledge of client-server applications, multi-tier web applications, relational databases.
  • Solid knowledge and experience with Cloud technologies (AWS, Azure, Google Cloud, IaaS, SaaS, etc.).
  • Good knowledge of IT including multiple operating systems and system administration skills (Windows, Unix).
  • Understanding of IT governance and processes (ITIL, COBIT).
  • Industry Certifications (ISACA, GCIA, SANS, ICS2, EC-Council) or other relevant cyber security certifications (e.g., CISSP, CISM, GCIH, GIAC, CEH, OSCE, CHFI, GREM) or equivalent.
  • Ability to maintain professional demeanor in stressful situations.

    • Educational Qualifications

  • Bachelor’s degree in information security, computer science, or systems engineering.
  • 10+ years of technical experience in Information Security, System Administration, or Network Engineering with at least 5 years in Information Security.

    • Seniority level

  • Not Applicable

    • Employment type

  • Full-time

    • Job function

  • Information Technology

    • Industries

  • Oil and Gas

    • #J-18808-Ljbffr

    Create a job alert for this search

    Analyst • Doha, Ad-Dawhah, Qatar