NGHP Cybersecurity Manager

At Air Products, we reimagine what’s possible. By tapping into the motivation of our people and our collective experience, we create the ideas and innovations that drive us forward. When we come together – where every voice is heard and everyone knows they belong and matter – we create solutions that launch people into space, support lifesaving care in hospitals, and enable the construction of groundbreaking, world scale production facilities.

Reimagine What’s Possible 

The Cybersecurity Manager (NGHP) is the program’s overall technical authority for OT/ICS cybersecurity across all the elements (Power Generation, Power Transmission and Green Hydrogen Production) of the flagship NEOM Green Hydrogen project in the Kingdom of Saudi Arabia. The is a key role, accountable for OT/ICS cybersecurity compliance strategy, execution, integrated testing and oversight of the team to deliver the cybersecurity scope to obtain the final compliance from permitting authorities in KSA.

The Cybersecurity Manager leads a functional team of cybersecurity engineers and professionals and also expected to manage and deliver the end-to-end scope of cybersecurity of the project with focus on proof-of-compliance, closure of design gaps, and implementing the cyber-risk assessment recommendations. The role provides cross-functional leadership and interfaces among Project Management, Process Controls, Digital Technology, Vendors, Sub-Contractors, consultants and end-Customer / Facility Operator (NEOM Green Hydrogen Company).

This role is based out of Duba, Tabuk Region, Saudi Arabia working on rotation of 8 Weeks ON / 2 Weeks OFF.

This position will be a site-based role with the below duties:

• Revisit and strategize the implementation of the project cyber compliance roadmap at the current stage of the project; align to NCA ECC/OTCC and HCIS Sec-12 and Facility Owner’s policies.

• Chair the cyber oversight committee meetings; drive decisions on technology adoption and ensure the cybersecurity scope is implemented to the project needs and successful delivery for operations.

• Identify the scope matrix, test plan and procedures for the project scope and maintain the delivery and Stage-4 submission readiness.

• Ensure comprehensive oversight and execution of the cybersecurity scope for all DT (Digital Technology) and Plant Computing systems, coordinating with relevant teams to validate that security controls, compliance measures, and risk mitigation strategies are effectively implemented and maintained across these domains.

• Review and approval of Proof of Compliance (PoC) documents from vendors, sub-contractors and EPC team prior to submission to the Facility Operator (FO) and the Consultant for review.

• Lead the closure of Cyber Risk Assessment recommendations and ensure the design/contract gaps are also closed.

• Oversight on the implementation of DMZ engineering, cyber services integration, and hardening procedures at all network layers required for compliance submittals.

• Integrate cyber work packages and prerequisites into project schedule and ensure the readiness of HCIS Stage-4 milestone is in line with the project commissioning and start-up milestones.

• Accountability in definition and maintaining the deliverable list and proof of compliance, and their verification before transmittal to Facility Operator/Customer.

• Publish and maintain all required OT/ICS cybersecurity related plans, procedures that are required to be issued in the capacity of the EPC Contractor and Integrator.

• Lead vendor and sub-contractor coordination for their delivery of respective OT/ICS cybersecurity scope, their validation, punch closure and turnover for commissioning and start-up.

• Actively pursue technical rigor to bring consistency in technical solutions wherever possible to create uniformity in order will facilitate ease of maintenance of the project asset when handed over to Facility Operator (NGHC).

• Ensuring a proper handover and handoff to the facility operator including necessary training as identified and aligned in the cyber oversight committee liaise with the Air Products Subject Matter Experts (SME) as required to resolve the technical issues

• Maintain the alignment on the cross functional team and advise on schedule, budget impacts and change orders.

• Primary office base is project site office in Duba, KSA, with frequent travel to PWE sites (Solar/Wind/Transmission) and vendor locations as required. Site engagement is essential during pre-commissioning, commissioning, and CSAT phase of the project.

Minimum Requirements:

• Bachelor’s degree in engineering (Electronics/Instrumentation/Automation preferred) or equivalent; advanced ICS/OT cybersecurity qualifications (ISA/IEC 62443, NIST CSF).
• 15+ years leadership in ICS/OT cybersecurity on CNI-class facilities (KSA preferred); proven delivery through HCIS Stage-4.
• Deep understanding of ICS architectures (BPCS/SIS/SCADA), DMZ (L3.5/L3.7), segmentation/firewalls/Panorama, SIEM/Splunk, USB gateway, Nozomi, MFA/jump-host, RBAC.
• Strong cross-functional interface background with Process Controls (PCE) and DT/Plant Computing.
• Working Experience in KSA regulations such as NCA ECC-1:2018, OTCC-1:2022 and cybersecurity aspects outlined by SAIS (Supreme Authority of Industrial Security).
• Technical fluency: DMZ design, firewall management (Panorama), SIEM/logging, anomaly detection, endpoint controls, and evidence workflows.
• Documentation: CSAT/POC packs, Aconex/OT workflows, checklists, inventories, submission quality.
• Preferred to have certifications such as ISA/IEC 62443 Cybersecurity Expert; CISSP/CCSP; GIAC ICS or any vendor-specific security (Palo Alto, Splunk).
• Evidence of delivering KSA ICS / OT Cybersecurity regulatory compliance projects is a strong plus.

#LI-LG1

Founded in 1940, Air Products is a world-leading industrial gases company and has a proud history of innovation, operational excellence, with an unwavering commitment to safety and environmental stewardship. Working together, we are taking our passion and diverse backgrounds forward to reimagine what’s possible and generate a cleaner future for our customers, our communities, and the world.