Cyber Security Operations Lead
BH-329107
Posted: 03/03/2026
- Good
- Iraq Basra
- Contract
-
Oil & Gas
Cyber Security Operations Lead - 12 Months Contract - Iraq
Based on a 28 x 28 rotational
12 Hour days
Must be able to speak fluent English, Arabic would be a bonus
All flights, accommodations, food, healthcare, will be paid for
Operational Site in the Middle East
A Leading oil & gas company in the Middle East region is seeking a highly skilled and experienced Cyber Security Operations Lead to oversee and enhance our security posture within a predominantly Windows-based environment. The ideal candidate will lead threat detection, incident response, vulnerability management, and security operations, ensuring the protection of enterprise assets and data.
• Lead Security Operations:
o Oversee daily security monitoring, log analysis, and incident response activities as part of the Security Operations Center (SOC).
o Manage a small team of Digital Security Analysts (2-4 people).
o Coordinate with the various digital teams to ensure secure configurations across Windows systems.
o Threat Hunt constantly across the environment for anomalies.
• Threat Detection & Response:
o Develop and maintain SIEM rules in Sentinel and use cases tailored to Windows environments.
o Investigate and respond to security incidents, including malware infections, unauthorized access, and data exfiltration.
o Introduce new hardening technologies into the environment.
• Vulnerability Management:
o Conduct regular vulnerability assessments and penetration tests on Windows servers, endpoints, and Active Directory.
o Prioritize and remediate findings in collaboration with system administrators.
• Policy & Compliance:
o Ensure compliance with internal security policies and external regulations (e.g., ISO 27001, NIST, GDPR).
o Develop and enforce Windows-specific hardening guidelines and security baselines.
• Security Architecture & Tools:
o Recommend and implement security tools (e.g., EDR, DLP, Vault technologies) optimized for Windows environments.
o Support integration of Windows systems with identity and access management solutions.
• Reporting & Documentation:
o Prepare detailed reports on security incidents, risk assessments, and mitigation strategies.
o Maintain documentation for security policies, configurations, and incident response playbooks.
o Maintain and manage KPI’s for Digital Security operations.
Essential
• Bachelor’s degree in Engineering, Computer Science, or related field.
• Scripting skills in Python/other languages and Unix tools skills (sed, awk etc.)
• 20+ years’ experience in IT.
• 7-10+ years’ experience in digital security in an engineering and/or operations role.
• Ability to work within a multicultural environment.
Desirable
• Experience in a similar role in Oil & Gas or a similar industrial/asset-intensive sector.
• Certifications such as OWSP, CISSP, GCWN or Microsoft related security certificates.
• CCNP/CCIE Security certification or equivalent preferred.
• Previous role as Windows System Administrator preferred.
• Experience in designing and deploying security solutions.
• Strong expertise in Windows Server, Active Directory, Group Policy, Entra ID and PowerShell scripting, with deep understanding of the Windows operating systems.
• Experience with security tools such as Microsoft Defender, Sentinel, Splunk, or similar.
• Must have Azure hands on knowledge.
• Threat hunting and Red-Team/Pen Testing knowledge and skills.
• Excellent communication skills (verbal and written).
• Strong analytical and interpersonal skills, and ability to work with staff at all levels.
• Proactive thinking, and problem-solving skills to come up with options and solutions to complex technical issues.
• Delivery focused with good attention to details.
• Willing to challenge and be challenged.
• Self-motivated, positive attitude, energetic, collaborative, and leads by example.
• Demonstrates strong customer empathy and business understanding.
With over 90 years' combined experience, NES Fircroft (NES) is proud to be the world's leading engineering staffing provider spanning the Oil & Gas, Power & Renewables, Chemicals, Construction & Infrastructure, Life Sciences, Mining and Manufacturing sectors worldwide. With more than 80 offices in 45 countries, we are able to provide our clients with the engineering and technical expertise they need, wherever and whenever it is needed. We offer contractors far more than a traditional recruitment service, supporting with everything from securing visas and work permits, to providing market-leading benefits packages and accommodation, ensuring they are safely and compliantly able to support our clients.
Based on a 28 x 28 rotational
12 Hour days
Must be able to speak fluent English, Arabic would be a bonus
All flights, accommodations, food, healthcare, will be paid for
Operational Site in the Middle East
A Leading oil & gas company in the Middle East region is seeking a highly skilled and experienced Cyber Security Operations Lead to oversee and enhance our security posture within a predominantly Windows-based environment. The ideal candidate will lead threat detection, incident response, vulnerability management, and security operations, ensuring the protection of enterprise assets and data.
• Lead Security Operations:
o Oversee daily security monitoring, log analysis, and incident response activities as part of the Security Operations Center (SOC).
o Manage a small team of Digital Security Analysts (2-4 people).
o Coordinate with the various digital teams to ensure secure configurations across Windows systems.
o Threat Hunt constantly across the environment for anomalies.
• Threat Detection & Response:
o Develop and maintain SIEM rules in Sentinel and use cases tailored to Windows environments.
o Investigate and respond to security incidents, including malware infections, unauthorized access, and data exfiltration.
o Introduce new hardening technologies into the environment.
• Vulnerability Management:
o Conduct regular vulnerability assessments and penetration tests on Windows servers, endpoints, and Active Directory.
o Prioritize and remediate findings in collaboration with system administrators.
• Policy & Compliance:
o Ensure compliance with internal security policies and external regulations (e.g., ISO 27001, NIST, GDPR).
o Develop and enforce Windows-specific hardening guidelines and security baselines.
• Security Architecture & Tools:
o Recommend and implement security tools (e.g., EDR, DLP, Vault technologies) optimized for Windows environments.
o Support integration of Windows systems with identity and access management solutions.
• Reporting & Documentation:
o Prepare detailed reports on security incidents, risk assessments, and mitigation strategies.
o Maintain documentation for security policies, configurations, and incident response playbooks.
o Maintain and manage KPI’s for Digital Security operations.
Essential
• Bachelor’s degree in Engineering, Computer Science, or related field.
• Scripting skills in Python/other languages and Unix tools skills (sed, awk etc.)
• 20+ years’ experience in IT.
• 7-10+ years’ experience in digital security in an engineering and/or operations role.
• Ability to work within a multicultural environment.
Desirable
• Experience in a similar role in Oil & Gas or a similar industrial/asset-intensive sector.
• Certifications such as OWSP, CISSP, GCWN or Microsoft related security certificates.
• CCNP/CCIE Security certification or equivalent preferred.
• Previous role as Windows System Administrator preferred.
• Experience in designing and deploying security solutions.
• Strong expertise in Windows Server, Active Directory, Group Policy, Entra ID and PowerShell scripting, with deep understanding of the Windows operating systems.
• Experience with security tools such as Microsoft Defender, Sentinel, Splunk, or similar.
• Must have Azure hands on knowledge.
• Threat hunting and Red-Team/Pen Testing knowledge and skills.
• Excellent communication skills (verbal and written).
• Strong analytical and interpersonal skills, and ability to work with staff at all levels.
• Proactive thinking, and problem-solving skills to come up with options and solutions to complex technical issues.
• Delivery focused with good attention to details.
• Willing to challenge and be challenged.
• Self-motivated, positive attitude, energetic, collaborative, and leads by example.
• Demonstrates strong customer empathy and business understanding.
With over 90 years' combined experience, NES Fircroft (NES) is proud to be the world's leading engineering staffing provider spanning the Oil & Gas, Power & Renewables, Chemicals, Construction & Infrastructure, Life Sciences, Mining and Manufacturing sectors worldwide. With more than 80 offices in 45 countries, we are able to provide our clients with the engineering and technical expertise they need, wherever and whenever it is needed. We offer contractors far more than a traditional recruitment service, supporting with everything from securing visas and work permits, to providing market-leading benefits packages and accommodation, ensuring they are safely and compliantly able to support our clients.