ICS Cybersecurity Engineer

Job description

Position Overview ICS Cyber Security Engineer – responsible for field verification of cyber assets, coordinating with engineering, pre‑commissioning, commissioning and client operations teams, and acting as the technical interface between Air Products project execution, commissioning teams and vendors during the verification process. Location & Schedule Based in Duba, Tabuk Region, Saudi Arabia. Rotation: 8 Weeks ON / 2 Weeks OFF. Responsibilities Perform field verification of the design, implementation, and testing of cyber assets to meet cybersecurity standards, regulatory requirements, and project specifications. Develop, document, and maintain the cybersecurity asset register and other key deliverables as guided by the Site Cybersecurity Lead or Cybersecurity Manager. Organize and lead the resolution and implementation of cybersecurity risk assessment exercises, implementing recommendations for Air Products design and vendor/skid package control systems. Support pre‑commissioning and commissioning teams by validating firewall rules, secure remote access, endpoint hardening, asset inventory validation, access control execution, and logging before system energization. Lead and oversee architecture, standards, and FAT/SAT/CSAT procedures development, execution, and performance testing. Ensure verification and approval of third‑party device access needs as requested by subcontractors and vendors during commissioning and start‑up requirements on vendor packages. Participate in technical coordination meetings with cross‑functional teams as guided by the Site Cybersecurity Lead. Coordinate with vendors and Air Products engineering team to resolve and liquidate punch points identified during field verification of cyber assets. Coordinate and assist the Site Cybersecurity Lead with change management activities to ensure design, procurement, installation, commissioning, and startup of cybersecurity scope comply with schedule and budget. Prepare weekly updates and dashboards for the Site Cybersecurity Lead and the Project Cybersecurity Collaboration Lead. Identify and elevate risks and opportunities, collect and report lessons learned during vendor site visits and project execution. Support OT cybersecurity handovers to operations, including procedures, asset inventories, access management, and incident response alignment. Contribute to the OT Cybersecurity Operations Model, including monitoring, patching, backup, disaster recovery, and secure remote support. Qualifications Bachelor’s degree in engineering (electronics & communication, instrumentation or process automation background preferred) or equivalent. 10 to 15 years of experience in Operational Technology (OT) or related field, with at least 3 years focused on designing, building, or validating cybersecurity for industrial control systems and networks. Project implementation experience with Saudi cyber standards HCIS, NCA, CRA compliance, ISA62443, and related industry specifications, regulations, and best practices. Strong knowledge and understanding of control systems (SCADA, DCS, PLCs, etc.) and relevant protocols (Modbus, PROFINET, DNP3, IEC61850, etc.), key technologies such as firewalls, IDS, anti‑virus, vulnerability assessments, and OT/ICS network security. OT/ICS cybersecurity accreditations such as ISA/IEC62443, SANS, or other internationally recognized certifications are preferred. Additional certifications such as CISSP, CISM, ISO27001, etc. will be an added advantage. Advanced skills in Microsoft Office tools (Teams, SharePoint, Word, Excel, PowerPoint, Visio, etc.). Excellent communication skills with the ability to communicate appropriately at all levels of the organization, both written and verbal. #J-18808-Ljbffr