Cybersecurity Expert

About
The company is looking for an exceptionally skilled Cybersecurity Expert to join our team and play a critical role in the successful delivery of a high-profile rail project in the UAE. This transformative infrastructure project will enhance urban connectivity and improve public transportation efficiency across the region. You will be responsible for safeguarding the cybersecurity posture of the railway systems, ensuring that all networked systems, from control centers to trains, are protected from potential cyber threats.

What You'll Be Doing

• Design and implement comprehensive cybersecurity strategies and frameworks tailored to the specific needs of the railway/metro project, ensuring the protection of critical infrastructure, operations, and data.
• Identify, assess, and mitigate potential cyber threats and vulnerabilities within the project’s systems and networks. Lead cyber risk assessments, penetration testing, and vulnerability scanning to proactively address security weaknesses.
• Ensure that all networked systems (e.g., signaling systems, control centers, passenger systems, and communication networks) are properly secured through the application of advanced cybersecurity technologies such as firewalls, encryption, and intrusion detection systems.
• Work closely with engineering, IT, and operations teams to integrate cybersecurity measures throughout the entire railway/metro infrastructure, from initial design to deployment and maintenance.
• Ensure adherence to international cybersecurity standards and regulations (e.g., NIST, IEC 62443, ISO 27001, GDPR) and local regulations to meet compliance and safety requirements.
• Develop and maintain an incident response plan, actively monitor network traffic and security logs, and respond promptly to any detected security breaches or anomalies.
• Conduct cybersecurity training sessions for staff and stakeholders to raise awareness of security best practices and reinforce the importance of safeguarding critical infrastructure.
• Stay current with the latest cybersecurity threats, tools, and best practices, implementing continuous improvements to keep the security systems updated and resilient against emerging threats.
• Maintain detailed documentation of cybersecurity protocols, policies, and incident reports, providing regular updates and comprehensive reports to senior management and stakeholders.
• Ensure that cybersecurity is embedded into all system integration activities, ensuring secure connections across all digital platforms, from rail control systems to passenger information services.

Requirements

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field (Master’s degree preferred).
• Professional certifications such as CISSP (Certified Information Systems Security Professional), CISA (Certified Information Systems Auditor), CEH (Certified Ethical Hacker), or equivalent is highly desirable.
• 15+ years of experience in cybersecurity, particularly in large-scale railway or metro projects.
• Strong knowledge of cybersecurity frameworks and standards, including ISO 27001, NIST, IEC 62443, and GDPR compliance.
• Extensive experience in securing networked systems and operational technology (OT) environments, such as SCADA, signaling systems, and train control systems.
• Expertise in penetration testing, risk assessments, vulnerability scanning, and incident response for critical infrastructure.
• Extensive understanding of UAE data privacy regulations and their implications for transportation and infrastructure projects, including regulatory frameworks, transportation policies, and urban planning guidelines.
• Proficient in network security protocols (e.g., TCP/IP, VPNs, encryption), with experience in securing industrial control systems (ICS) and supervisory control and data acquisition (SCADA) systems.
• Experience in cloud security and protecting digital services deployed in cloud environments is a plus.