Client: Offshore)
ABB 800xA / DCS / ECS Commissioning & Security
• Executed Pre-NPT commissioning activities for ABB 800xA DCS/ECS/IPCS/Symphony+ systems across
10+ ADNOC onshore and offshore sites, configuring servers, clients, and controllers per ABB best
practices and achieving zero-delay project handovers.
• Conducted structured network health checks, latency analysis, and system diagnostics as part of Pre-NPT
workflow, proactively identifying and resolving 95%+ of faults before site acceptance testing (SAT).
• Applied ABB security hardening guidelines and role-based access controls (RBAC) during node
configuration and domain integration, ensuring IEC 62443 and ADNOC cybersecurity policy compliance
across all commissioned systems.
• Validated communication between ECS and 100+ field devices using IEC 61850, Modbus, and OPC
protocols, confirming seamless data exchange and system integrity before client handover.
• Supported Factory Acceptance Testing (FAT) and Site Acceptance Testing (SAT) activities for multiple ABB
800xA projects, contributing to successful on-time system delivery and client sign-off.
• Performed daily troubleshooting of ABB 800xA nodes and ECS components — investigating system logs,
alarms, and diagnostic tools to proactively resolve controller, server, and IED faults, maintaining 99%+
system uptime.
OT Network Design & Security Implementation
• Architected and implemented IEC 62443-compliant OT network segmentation using zone-and-conduit
models, deploying industrial firewalls (Tofino, Eagle 40, FortiGate, Sophos) to protect critical SCADA/DCS
assets from IT-side threats.
• Configured Media Redundancy Protocol (MRP) on Hirschmann industrial switches (RS20/30/40,
GRS1020/1030, MACH104, MAR1040) to ensure network redundancy and high availability in critical OT
environments.
• Designed and deployed secure VLAN architectures on Cisco Layer 2/3 switches (9200/9300/3850),
implementing inter-VLAN routing, STP, HSRP, and port security across control and corporate network
layers.
• Led end-to-end OT/IT SIEM integration (IBM Q Radar), onboarding 15+ industrial assets including Cisco
Firepower, Juniper SRX 1500, Cisco switches, McAfee DLP, Active Directory, and WSUS — enabling
centralized, real-time threat visibility.
• Conducted NESA-aligned cybersecurity risk assessments for OT/IT systems, identifying vulnerabilities and
implementing remediation plans that reduced critical exposure across ICS environments.
• Deployed and maintained network monitoring tools (WhatsUp Gold, HiVision, Kiwi Syslog) across OT
environments, enabling proactive fault detection and reducing mean time to detect (MTTD) network
anomalies.
Endpoint Security & Patch Management
• Administered Trellix (McAfee) ePO suite — including ENS Threat Prevention, Application
Control/Whitelisting, and DLP — across OT endpoints in air-gapped and semi-connected environments,
ensuring industrial systems met hardening requirements without disrupting control system operations.
• Managed enterprise-wide backup and disaster recovery operations using Acronis Cyber Protect for 50+ OT
servers and workstations across ADNOC facilities, achieving 100% backup compliance per site standards
and tested recovery objectives.
• Streamlined OT patch management processes using WSUS, coordinating updates across Windows-based
DCS/ECS systems without disrupting critical industrial operations.
• Managed Windows Server 2019/2022 environments within DCS/ECS/IPCS domains — including Active
Directory, Group Policy, DNS/DHCP configuration, and domain trust relationships — ensuring secure and
compliant OT domain operations per MCSE standards.
• Administered user accounts, RBAC, and node permissions within ABB 800xA and Windows domain
environments, enforcing least-privilege access controls for compliance and operational security.
• Resolved complex domain-level issues including DNS/DHCP conflicts, Group Policy failures, and domain
trust errors in live DCS/ECS environments with minimal operational impact.
- Company industry:
- General Engineering Consultancy
- Job role:
-
Engineering