Sr. Specialist IDS Risk, DR

4 weeks ago


Muscat, Muscat, Oman OQ Full time
Sr. Specialist IDS Risk, DR & Compliance

Provides end-to-end subject matter expertise and execution capabilities across the domains of technology risk management, disaster recovery, and regulatory compliance. The role supports the development and implementation of frameworks, policies, and practices that protect OQ's digital infrastructure and ensure operational resilience.

The position will act in accordance with the OQ's Mission, Vision, Values & Strategies, as well as, policies, guidelines, and standards, supported by an IT Technology platform, HSE standards, Omani's government & other legal justifications, and best international practices in consonance with national objectives.

Main tasks and responsibilities

  • Identify, assess, and monitor IDS-related risks including, operational, infrastructure, and compliance risks.
  • Conduct periodic risk assessments, internal audits, and gap analyses.
  • Collaborate with IT, Cybersecurity, and Enterprise Architecture teams to define and implement control frameworks aligned to ISO 27005, NIST RMF, and COBIT principles.
  • Maintain a centralized risk register and ensure timely mitigation, acceptance, transfer, or avoidance strategies for each identified risk.
  • Regularly review risk appetite, metrics, and thresholds in collaboration with Governance and Internal Audit functions.

Disaster Recovery (DR) Planning

  • Lead the design, implementation, testing, and continual improvement of IDS DR plans aligned with ISO 22301.
  • Define business impact assessments (BIAs), RTOs (Recovery Time Objectives), and RPOs (Recovery Point Objectives) for critical systems and applications.
  • Coordinate DR simulations, tabletop exercises, and live recovery tests across OQ's digital environments.
  • Ensure DR strategies are aligned with on-premises, private cloud, and hybrid cloud environments.
  • Collaborate with business continuity leads across group entities to ensure interdependency planning and resilience readiness.

Compliance Management

  • Monitor and ensure compliance with internal policies, national regulations (e.g., Omani privacy laws), and global frameworks (e.g., GDPR, ISO 27001).
  • Prepare for internal and external audits by maintaining a compliance evidence repository, ensuring traceability and accountability.
  • Contribute to the development and update of IDS policies, procedures, Process and SOPs.
  • Conduct third-party risk assessments and ensure vendor compliance through contract clauses, periodic reviews, and audits.
  • Liaise with legal, risk, and regulatory teams for evolving requirements.
  • Act as a core member of the Incident Response Team for IDS-related incidents.
  • Help establish and maintain response playbooks for cyberattacks, data breaches, outages, and system compromises.
  • Support forensic investigations and root cause analysis following incidents.
  • Lead post-incident reviews and implement lessons learned into the risk and DR frameworks.

Training and Awareness

  • Design and deliver role-based training programs on risk management, DR awareness, and compliance best practices for IDS teams and business users.
  • Drive a culture of risk ownership, security awareness, and policy compliance.
  • Build and maintain a knowledge hub for best practices and regulatory updates.
  • Monitor global trends in cyber resilience, regulatory technology (RegTech), and digital risk.
  • Propose enhancements to current systems including automation, data analytics, and integrated dashboards for real-time visibility.
  • Lead process maturity assessments using CMMI or similar frameworks and develop improvement roadmaps.

Key interactions

Internal: OQSAOC Streams/AssetsExternal: Technology vendors, auditors, regulators, managed service providers.

Notable Working Conditions. Office-based role with occasional visits to operational and disaster recovery sites. May require availability outside regular hours during DR tests or incidents.

Education requirements

  • Bachelor's degree in computer science, Information Technology, Cybersecurity, or a related field.
  • Master's degree or relevant certifications (e.g., CISSP, CISM, CBCP, ISO 27001 Lead Implementer/Auditor) preferred.

Language

Excellent knowledge of written, read, and spoken English (required) Arabic - Native (desirable)

Background and experience

  • 6–8 years of experience in cybersecurity, risk management, compliance.
  • Strong understanding of data protection laws and DR frameworks.
  • Familiarity with industry standards (e.g., ISO 27001, NIST, CIS Controls).

Competencies and skills

Behavioral:

Strong analytical and communication skills.

  • Leadership mindset with stakeholder engagement capabilities.
  • Ethical, detail-oriented, and adaptable to regulatory changes.
  • Ability to work across functional teams and influence without authority.
  • High integrity, ethical conduct, and a sense of accountability.
  • Problem-solving orientation with the ability to manage ambiguity.
  • Passion for continuous learning and adapting to change.

Technical:

  • Proficiency in risk and compliance tools.
  • Knowledge of IT infrastructure, cloud, and access control mechanisms.
  • Exposure to legal, regulatory, and audit requirements.
  • Understanding of privacy-by-design and privacy-by-default principles.
  • Familiarity with ITSM processes, SIEM/SOC practices, vulnerability management, and asset classification.
  • Deep understanding of risk management, DR/BCM, compliance frameworks, and regulatory obligations.
Seniority level
  • Seniority levelAssociate
Employment type
  • Employment typeFull-time
Job function
  • Job functionInformation Technology
  • IndustriesOil and Gas, IT Services and IT Consulting, and Information Services

Referrals increase your chances of interviewing at OQ by 2x

Technical Lead -Payment Applications(Domestic Card Scheme Program)CRM & Billing Technical Lead - Microsoft DynamicsSenior Dynatrace Technical AdministratorCyber Recovery Solutions Senior Consultant

We're unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

  • Muscat, Muscat, Oman Oman Data Park Full time

    Oman Data Park is seeking a highly skilled and motivated Sr. Specialist Cybersecurity GRC to join our Cyber Security Department. As a Sr. Specialist Cybersecurity GRC you will play a crucial role in ensuring the organization's adherence to industry regulations, compliance frameworks, and best practices, while mitigating potential risks. You will collaborate...


  • Muscat, Muscat, Oman Oman Data Park Full time

    Objective:Oman Data Park is seeking a highly skilled and motivated Sr. Specialist Cybersecurity GRC to join our Cyber Security Department. The successful candidate will play a crucial role in ensuring the organization's adherence to industry regulations, compliance frameworks, and best practices, while mitigating potential risks. They will collaborate with...


  • Muscat, Muscat, Oman Oman Data Park Full time

    Objective:Sr. Network Specialist will play a critical role in ensuring the reliability, performance, and security of ODP network infrastructure. This role will contribute to maintaining seamless operations, rapid incident resolution, and continuous enhancement of ODP services.Responsibility:Install, configure, maintain, and troubleshoot network devices such...


  • Muscat, Muscat, Oman beBeeElectricalMaintenance Full time

    Job Title: Sr. Electrical Maintenance SpecialistThis role involves ensuring the reliable operation of electrical systems, equipment, and facilities in a plant setting. It requires excellent problem-solving skills to diagnose and repair complex electrical issues using specialized tools and equipment.Key Responsibilities:Oversee maintenance activities related...


  • Muscat, Muscat, Oman MOD Full time

    Endocrinologist (Sr Specialist / Specialist)2 months ago Be among the first 25 applicantsDirect message the job poster from The Medical City for Military & Security ServicesRecruiter - The Medical City for Military & Security ServicesThe Medical City for Military and Security ServicesMuscat, Sultanate of OmanThe Medical City for Military and Security...

  • Sr Site Engineer

    4 weeks ago


    Muscat, Muscat, Oman Bahja Real Estate Full time

    Bachelor of Technology/Engineering(Civil)NationalityIndianMaleAnnual Air Ticket, Car, Medical Insurance, Paid Leaves, VisaVacancy1 VacancyJob Description• Manage the overall project execution, ensuring that it meets time, cost, and quality objectives.• Monitor project schedules, budgets, and risk management plans.• Coordinate with stakeholders,...

  • Credit Risk Evaluator

    2 weeks ago


    Muscat, Muscat, Oman beBee Careers Full time

    **Salary:** Competitive salary packageJob Description:We are seeking an experienced Credit Specialist to join our team. As a Credit Specialist, you will be responsible for evaluating clients' credit data and financial statements to determine the degree of risk.Your primary duties will include:Evaluating clients' credit data and financial statements to...


  • Muscat, Muscat, Oman Salim Essa Al Harasi & Co. Full time

    Reports To (Job Title): Project DirectorProject Location: Muscat, OmanJob Summary:We are seeking a highly experienced and skilled Sr. Manager - Fit Outto lead and oversee a prestigious fit-out for a cultural project. The successful candidate will report directly to the Project Director and will be responsible for the overall planning, coordination, and...


  • Muscat, Muscat, Oman Full time

    Bachelor of Technology/Engineering(Electrical)NationalityAny NationalityVacancy1 VacancyJob DescriptionJob purposeExecute the tasks and activities associated with Electrical Engineering in operation, under Manager Operation / Maintenance scope. Apply and expand hands-on experience in Engineering, Procurement, Construction, commissioning, and Operation in Oil...


  • Muscat, Muscat, Oman beBee Careers Full time

    As an Audit Associate, you will play a crucial role in delivering high-quality audits and contributing to our organization's success.About the JobYou will be responsible for demonstrating and developing your capabilities in areas such as audit and risk advisory priorities, relevant accounting standards, and high-quality audits.Expertly address specific audit...