The Director of Cybersecurity Resilience is responsible for leading ACWA Power's enterprise-wide cybersecurity resilience function to detect, monitor, and respond to cyber threats effectively. This role ensures the timely handling of cybersecurity incidents, continuous threat detection, proactive vulnerability management, and overall preparedness to reduce risk exposure and maintain operational resilience across the company.
KEY ACCOUNTABILITIES
- Lead the Cybersecurity Resilience function, covering incident response, threat detection, vulnerability management, and crisis readiness.
- Oversee the establishment and maintenance of cybersecurity monitoring capabilities aligned with ACWA Power's risk appetite and NCA compliance requirements.
- Oversee the design and operation of continuous monitoring systems (e.g., SOC, SIEM, EDR, and threat intelligence platforms).
- Manage the incident response lifecycle, including detection, containment, eradication, recovery, and lessons learned.
- Direct the vulnerability management program to identify, assess, and remediate security weaknesses across digital and operational assets.
- Ensure effective coordination with other teams for proactive defense and rapid response to cyber incidents.
- Oversee the development of the playbooks, runbooks, and escalation processes for critical incident handling.
- Measure and report on resilience KPIs, incident response effectiveness, and vulnerability remediation trends.
- Oversee the tabletop exercises implementation, red/blue team drills, and crisis simulations to validate organizational readiness.
- Provide strategic input to the CISO and leadership on emerging threats, security posture, and resilience improvements.
Minimum Qualifications:
- Bachelor's degree in Computer Science, Information Security, or a related field.
- Master's degree is preferred.
- CISSP, CISM, CRISC, or GIAC Incident Handler (GCIH).
Experience:
- Minimum 15+ years of experience in cybersecurity, including 5 years in a similar leadership role.
- Strong industry knowledge of cybersecurity practices within the energy, utilities, or critical infrastructure sectors.
Skills:
- Proven expertise in incident response, threat detection, and vulnerability management. Strong understanding of cybersecurity frameworks (NCA, NIST, ISO 27001). Proficiency in using SOC, SIEM, EDR, and threat intelligence platforms.
- Excellent analytical, communication, and problemsolving skills.
- Ability to manage teams and coordinate effectively across multiple functions.
- Cyber Risk Management, Analytical Thinking, Collaboration, Communication, and Results Orientation.
