Cybersecurity Lead – Renewable Power (Solar, Wind, BESS)

About the role

Air Products is seeking a Cybersecurity Lead to provide technical leadership and assurance for the renewable power generation and transmission systems of the NEOM Green Hydrogen Project. The role is site‑based in Duba, Tabuk Region, Saudi Arabia, operating on an 8‑weeks‑on / 2‑weeks‑off rotation.

Key responsibilities

• Lead a team of cybersecurity engineers and govern cybersecurity assurance for Solar PV, Wind Turbines, BESS, HV/MV substations, PPC, EMS, and grid interfaces throughout the project lifecycle.
• Act as the primary cybersecurity focal point, interfacing with engineering, construction, OEMs, grid operators and client representatives.
• Maintain OT asset registers, network architectures, zone‑conduit models and cyber‑risk registers for power systems.
• Lead and approve cyber‑risk assessments for OEM packages and integrated systems, driving mitigation actions without impacting critical path activities.
• Plan and oversee cybersecurity validation during FAT, SAT, CSAT and performance testing of substation automation, turbine control and plant SCADA systems.
• Govern cybersecurity readiness during commissioning and start‑up, including firewall rules, secure remote access, endpoint hardening, logging and monitoring.
• Control third‑party and remote access, ensuring compliance during construction, start‑up and early operations.
• Provide cybersecurity input to change management and lead hand‑over activities such as access governance, incident response alignment, backup/recovery and secure remote support.
• Mentor and technically guide cybersecurity engineers and contractors.

Required profile

• Proven technical leadership in OT cybersecurity for renewable power or industrial projects.
• Strong knowledge of Saudi Arabian regulations (NCA, HCIS, SAIS) and project‑specific cybersecurity standards.
• Experience with commissioning, start‑up and hand‑over phases of large‑scale energy infrastructure.
• Ability to work on an 8‑weeks‑on / 2‑weeks‑off rotation in a remote site environment.

Required skills

• OT cybersecurity
• Industrial Control Systems (ICS) security
• SCADA security
• Firewall configuration
• Secure remote access
• Endpoint hardening
• Logging and monitoring
• Cyber risk assessment
• FAT/SAT testing
• Zone‑conduit modeling
• Asset register management
• Knowledge of Saudi NCA regulations
• HCIS compliance
• SAIS compliance