Job title | Cybersecurity Business Alignment Specialist | Grade | IC |
Stream | PT&C | Function | IDS |
Location | Oman | Budget control | *OPEX and/or CAPEX and/or Revenue amount as relevant* |
Reporting to | Governance Risk & Compliance (GRC) Management | Direct reports | 0 |
Job purpose Manage the integration of OQ’s cyber security strategy within the business strategy and align execution under delegated authority from (GRC) Management N-4 Acting as a liaison between the cyber security function and all other lines of business. The candidate is expected to build partnership with, and manage the relationship between Cyber Security team and the other business lines/functions, by playing a role in shaping and providing guidance to business partners on cyber security outcomes as a business enabler, and represents the business and end user interests when developing cyber security solutions. The incumbent will specialize in cyber security and IT risk management and work directly with the head of CS GRC and head of Cyber Security to assist in the execution and implementation of the business alignment The position will act in accordance with the Group’s Mission, Vision, Values & Strategies, as well as, policies, guidelines and international standards, supported by an IT Technology platform, HSE standards, Omani’s government & other legal justification’s, and best international practices in consonance with national objectives. |
Main tasks and responsibilities - Ensures business requirements are served and aligned with the cybersecurity strategy.
- Establish strong lines of communication with strategic functions, PMO, business functions, business partners, Enterprise Architecture, and be familiar with upcoming direction, projects and deliverables.
- Ensures optimal communication between cybersecurity and IDS functions
- Translate business requirements into the tangible actionable scope of activities for sharing with IDS function towards cyber security process and control requirements.
- Ability to prioritize, classify and group disparate requirements into shared opportunities
- Employ customer focused best practices to communicate with stakeholders, record and document interactions
- Work in close cooperation with business partners to understand and formulate cyber security, risk and business continuity requirements definitions and solutions development.
- Ensuring that cyber security requirements, risk management, business continuity and best practices are represented within the IDS organization and business lines with support or the respective resources.
- Provides advisory support to stakeholders and point of communication.
- Championing enablement and facilitation of digitalisation projects and company IT project deliverables whilst ensuring cyber security requirements and concerns are taken into account and risks mitigated.
|
Key interactions Internal: Assurance, F&S, Commercial, Downstream, Upstream, Projects. External: Staffing specialized Contractors, Vendors & Suppliers |
Notable Working Conditions. Office environment, intensive computer screen use, sporadic visits to operation site. |
Education requirements | Minimum Qualifications for this position is a Bachelor’s degree in information systems, computer science or related disciplines. |
Language | Excellent knowledge of written, read, and spoken English (required) Arabic - Native (desirable) |
Background and experience | Competencies and skills |
- Minimum 5 years of relevant experience in a similar role, in large oil industry.
- Strong IT skills including knowledge on hardware, software, networks, and data centres
- Thorough work ethic, attention to detail
- Skills of perception and QA, ability to identify vulnerabilities and overall issues
- Critical thinking skills, problem solving aptitude
- Familiar with IT Service Management (ITIL or similar)
- Strong business acumen with the ability to translate business requirements into technical requirements and solutions.
- Experience in information security, specifically with risk management, risk assurance, policy compliance, technical and process risks.
- Solid experience with project management
- Solid analytical and planning skills, ability to use tools to document processes and concepts.
- Exceptional communication and negotiation skills
- Experience coordinating complex response activities with the rest of IDS function
- Familiar with IT Service Management and security standards (ITIL, ISO 27001/2)
- Familiar with business continuity
| - People Skills, diplomacy
- Ability to communicate ideas, negotiate, coordinate with multiple stakeholders
- Understanding relevant processes, ability to document and illustrate requirements
- Innovation and trends
- Excellent business and technical report writing skills
- Conceptual and Planning skills
-
|