Responsibilities:
- Develop, implement, and manage the organization's information security strategy and policies.
- Monitor and assess the effectiveness of existing security controls and recommend improvements as necessary.
- Conduct regular security audits and vulnerability assessments to identify potential risks and develop mitigation plans.
- Manage and respond to security incidents and breaches, ensuring swift resolution and minimizing impact.
- Lead the incident response team and coordinate with stakeholders during security incidents.
- Stay updated on industry trends and emerging threats, and proactively implement measures to safeguard against them.
- Ensure compliance with relevant laws, regulations, and standards related to information security.
- Oversee the implementation and maintenance of security measures such as firewalls, encryption, and intrusion detection systems.
- Manage relationships with third-party security service providers and vendors.
- Provide security awareness training and education to staff to promote a culture of security awareness.
- Prepare and present regular reports to senior management on the status of information security initiatives and incidents.
Requirements:
- Bachelor's degree in Computer Science, Information Technology, or a related field; Master's degree preferred.
- Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or equivalent certifications are highly desirable.
- Minimum of 6 years of experience in information security management in the UAE market.
- Strong technical knowledge of IT security systems and tools, including firewalls, IDS/IPS, SIEM, antivirus software, etc.
- Experience in conducting security assessments, audits, and penetration testing.
- Solid understanding of regulatory requirements and standards such as ISO 27001, GDPR, NESA, etc.
- Excellent leadership and managerial skills with the ability to lead a team effectively.
- Strong analytical and problem-solving skills.
- Excellent communication and interpersonal skills, with the ability to articulate complex technical issues to non-technical stakeholders.
- Fluency in English; other language skills are advantageous.
Attractive salary depends on the interview and experince.
