Cyber Security Manager

TitleCyber Security ManagerPosition: Cyber Security ManagerProject: IFMS ProjectLocation: Basra, IraqRotation 28/28 rotationNationality: Open"Belong, Connect, Grow, with KBR!The KBR team of teams delivers future-forward science, technology and engineering solutions and mission-critical services that help governments and companies around the world accomplish their most important objectives, while also helping achieve their sustainability goals.KBR Sustainable Technology Solutions provides holistic and value-added solutions across the entire asset life cycle. These include world-class licensed process technologies, differentiated advisory services, deep technical domain expertise, energy transition solutions, high-end design and engineering capabilities, and smart solutions to optimize planned and operating assets."Professional SummaryExperienced Cyber Security Manager with over [10] years of expertise in the oil and gas industry, including hands-on oil field operations and deployment of Chinese technology solutions. Proven track record of securing complex industrial environments, leading cross-functional teams, and ensuring regulatory compliance. Adept at risk assessment, incident response, and implementation of robust security protocols in challenging operational settings.Key SkillsCyber Security Strategy & ManagementOil & Gas Industry OperationsOil Field Security SolutionsChinese Technology Integration & ComplianceIndustrial Control Systems (ICS) SecuritySCADA Systems ProtectionRisk Assessment & MitigationIncident Response & ForensicsRegulatory Compliance (NIST, ISO, IEC)Team Leadership & TrainingVendor Management and LiaisonNetwork & Endpoint SecurityCloud Security (if applicable)ResponsibilitiesLead cyber security operations for oil and gas facilities, including remote oil fields and refineries.Develop and implement security policies tailored to industrial environments and field operations.Oversee the integration and secure deployment of Chinese technology solutions (e.g., Huawei, Hikvision) within operational networks.Conduct risk assessments for both IT and OT environments, identifying vulnerabilities specific to oil field equipment and Chinese tech interfaces.Coordinate incident response plans and forensic investigations for security breaches in field sites.Manage compliance with international standards (NIST, ISO, IEC) and local regulatory requirements.Train and mentor cross-functional teams on cyber security awareness and best practices.Collaborate with vendors and technology partners, including Chinese tech providers, to ensure secure implementation and ongoing maintenance.Awareness ‘We Chat” – Chines WhatsAppCyber-attack methodology – Key Logging, Back door, Trojan attacks etc. including mitigation planningData Loss Prevention (DLP)Application attack and defenseGeneral Risk planning and mitigationCyber review planning and mitigationBusiness continuity protection and modelingLiaise with Consultant Cyber Security teamEducationDegree in Cyber Security / Information Technology / Computer ScienceCertifications: CISSP, CISM, GICSP, CEH, or relevant oil & gas and Chinese technology certificationsProfessional DevelopmentAdvanced Training in Oil & Gas Cyber SecurityWorkshops on Chinese Technology Integration & SecurityContinuous Education in Industrial Control Systems ProtectionLanguagesEnglish (Fluent)Arabic (Ideal)R2115701