For a well-known client in the United Arab Emirates, we are seeking Five Cyber Security Assessment Specialists for a six month contract role.

Role description

Responsible for the assessments and compliance of Plant Cyber Security efforts towards protecting information and plant systems by directly supporting implementation of the BNPP Cyber Security Program. Track risks and compliance items and perform security planning requirements as directed by the management. Maintain all the relevant governance of cyber security policies and procedures in accordance with the good practice and regulatory requirements and implementation and management of a requirements traceability matrix. Overall responsibility for the management and documentation associated with the assessment and compliance of the Cyber Security Program. Responsible of the day to day operation with a key focus on the protection of BNPP critical digital systems and assets.

Knowledge, Experience and Skills

Risk and Compliance Responsibility:
– Verify and supervise development, implementation, enforcement and reviews of governing information & cyber security policies and procedures and track compliance with the regulatory and other international cyber security standards related to plant cyber security
– Initiate and supervise the risk assessment of cyber security risks related to plant cyber security in accordance with policies and procedures in defined intervals within site
– Review the cyber security risk treatment plan
– Ensure and verify compliance with cyber security requirements related to plant cyber security

Security Planning Responsibility:
– Initiate and supervise the development, review and acceptance of security plans with the stakeholders
– Initiate and supervise the identification, implementation and assessment of the common security controls related to plant cyber security


Support Plant Cyber Security Program Responsibility:
– Define and document the cyber security objectives of the Barakah NPP
– Ensure adequate communication among the nuclear facility program affected by the cyber security program
– Manage and verify the development and implementation of the Barakah NPP Cyber Security Program, policies, and procedures
– Develop and implement cyber security education, awareness, training and evaluation
– Liaising with physical and personnel security leads
– Ensure employees comply with ENEC and Regulatory requirements related to Cyber Security
– Support incident response team and communication with relevant internal and external organizations, as required, during and after cyber security events


Network and System Security assessment Responsibility:
– Initiate and lead cyber security evaluations / assessments of digital systems
– Initiate and lead security self-assessments, vulnerability assessments, network scans, and penetration tests against critical systems and CDAs as necessary
– Initiate and lead periodic cyber security risk assessments


Security Architecture design Responsibility:
– Designing configuration, operations, and maintenance of cyber security equipment


Incident Response and Remediation Responsibilities and Accountables:
– Ensure to communicate and document all the actions agreed to respond to an Incident
– Each incident will differ in terms of the appropriate remediation steps to take on the affected systems, but it may involve one or more of the following steps:
Re-image systems (and restore backups), Patch or update systems (e.g. apps and OS updates), Re-configure system access (e.g. account removals, password resets)


Health and Safety and Security  Responsibilities and Accountables:
– Follow all relevant company’s Health and Safety policies, processes, procedures and instructions to ensure Health and Safety compliance in all aspects of work per sound management practices by applying these Health and Safety policies and procedures to self and others to take reasonable care for the Health and Safety of people, or the environment, who are at the employee’s place of work who may be affected by the employees acts or omissions at work.
– Follow all relevant Security policies, processes, procedures and instructions to ensure security compliance in all aspects of work, by applying them on self, others and Corporate assets.
– Ensure compliance with corporate requirements for adherence to policies, procedures and instructions related to Crisis Management and Business Continuity in order to continue mission-critical activities

People Management Responsibilities and Accountables:
– Contribute to the development of UAE National employees in a manner which supports the objectives of the corporation and its Emiratization strategy.
– Contribute to knowledge dissemination/sharing in a way that assists with building internal capabilities of UAE Nationals where applicable and maximize their effective performance

Excellence and Quality Management Responsibilities and Accountables:
– Ensure commitment to a culture of continuous improvement by eliminating waste, following operations procedures, practicing innovation, problem solving, and teamwork; complying with Quality Management System policies and procedures; providing and receiving constructive feedback, and striving to meet quality standards and stakeholder expectations.
– Ensure Commitment to the Nawah Fundamentals

Essential skills

BA Degree, Information Security plus three years of related experience
English Language Proficiency

Desired skills


As the newest addition to the Thomas Thor North America team, Recruitment Consultant Jaleesa is involved in all steps of the recruitment process including talent mapping, sourcing and developing candidate/client relationships, constructing offer packages and coordinating with clients. She also partners with teammates and customers to obtain clear view on strategic or financial objectives and hiring needs to develop and implement a targeted talent acquisition strategy for their needs. Jaleesa demonstrates strong values in teamwork, drive for results, strategic thinking, accountability, and customer service. Her primary focus is to provide talent acquisition services to the commercial nuclear, NNSA and DOE markets. In addition to her primary role Jaleesa has also contributed to the growth of our team through conducting various recruiting trainings and is a member of the project team for our global ATS integration.

Jaleesa Hendking