Leadership and Strategy:

• Define and drive the vision and roadmap for the Security Research and Engineering function aligned with business goals and cybersecurity strategy.
• Lead, mentor, and grow a high-performing team of security researchers and security engineers.
• Foster collaboration between research and engineering teams to ensure research-driven engineering outcomes.
• Collaborate closely with SOC and IS leaders to ensure boundaries and responsibilities are clearly respected while enabling cross-departmental synergy.

Security and Research:

• Oversee the identification and continuous updating of security standards and architectural best practices across critical technology domains including:
• Industrial Control Systems
• Web, system, and network infrastructure
• Application development and DevOps
• Virtualization and cloud platforms
• Database and data platforms
• Guide the technical feasibility assessment of new cybersecurity technologies, solutions, and methodologies.
• Provide thought leadership and stay ahead of evolving threats, regulatory changes, and innovations in cybersecurity relevant to the oil and gas industry.

Security Engineering:

• Ensure robust, scalable, and maintainable deployment and operation of cybersecurity solutions such as:
• Antivirus and endpoint protection
• EDR platforms
• Web Application Firewalls (WAF)
• Secure Email Gateways
• Security Information and Event Management (SIEM) systems
• Deception technologies
• Vulnerability Scanners
• Static Application Security Testing platforms
• Oversee integration of cybersecurity tools into broader IT and OT environments, working closely with IT, OT and DevOps teams.
• Establish and monitor KPIs and service levels for security tools and platforms.

Governance and Architecture:

• Contribute to enterprise architecture reviews from a security lens.
• Define secure design patterns and ensure consistency across technical implementations.
• Work with procurement and vendor management teams on evaluating and selecting technical security solutions.

• Bachelor’s or Master’s degree in Computer Science, Engineering, Cybersecurity, or a related field.
• 10+ years of experience in cybersecurity, with at least 5 years in leadership roles.
• Deep technical knowledge of cybersecurity architecture, frameworks (NIST, ISO, MITRE ATT&CK), and secure engineering practices.
• Proven experience leading both research and engineering functions.
• Solid understanding of OT/ICS security challenges and enterprise IT environments.
• Experience deploying and managing enterprise-grade cybersecurity tools.
• Strong stakeholder management, communication, and cross-functional leadership skills.