1- Role Purpose:The role holder will be responsible for the program’s compliance with OSP cybersecurity regulations, ensure risk prevention processes, promoting a culture of cybersecurity awareness, and assessing the cybersecurity posture of stakeholders and system service providers.
2- Responsibilities:Ensure OSP's cybersecurity program adheres to applicable laws, regulations, industry standards, and internal policies. Provide support for incident response efforts, coordinating with internal teams and external stakeholders as necessary. Oversee regular audits and evaluations to identify compliance gaps and develop remediation plans. Ensure the necessary controls and measures are implemented to achieve and maintain compliance. Review policies and develop cybersecurity standards, procedures and guidelines in line with OSP best practices. Review comprehensive cybersecurity reporting for the Cybersecurity Steering Committee, highlighting key metrics, risks and achievements. Develop incident response plans to effectively address and mitigate cybersecurity incidents. Develops a culture of cybersecurity awareness and accountability throughout the organization. Assess the cybersecurity posture of external stakeholders and service providers. Mitigate risks, ensuring timely and effective implementation. Conduct regular risk assessments to identify and prioritize cybersecurity risks. Review and update internal policies to address emerging cybersecurity threats and trends. Perform any other relevant duties determined by the line manager and Oil Sustainability Program’s Top Management.
3- Education:Bachelor’s degree in Cybersecurity or similar. MBA, master's degree in similar is highly preferred.
4- Experience:Minimum 2 to 6 years’ experience in Cybersecurity, at least 1 years of which should be in GRC Cybersecurity.