ROLE PURPOSE:
Lead the development and implementation of information security strategies to safeguard the organization’s digital assets and infrastructure. Ensure compliance with regulatory requirements and internal policies while managing risks associated with digital and technological operations. Act as the central point of contact for information security matters, collaborating with various departments to mitigate risks and enhance overall security posture.
Education:
Degree in Engineering or equivalent. Should have at least one of the following certifications:
- CISSP, CISM, CISA, CGRC, GRCP, ISO 27001 LA/LI
Minimum Experience and Knowledge:
- Minimum of 8 years of experience in the IT or Digital risk domain. Knowledge on International Standards such as UAE-IA, ADHICS, ISO, PCI-DSS, ITIL, COBIT, NIST, etc.
Job-Specific Skills:
- Compliance and Regulatory Knowledge (UAE-Information Assurance and ADHICS)
- Knowledge of current cybersecurity threats, vulnerabilities, and trends.
- Expertise in creating and enforcing security policies, procedures, and guidelines.
Knowledge of IT infrastructure, including networks, systems, and applications.
Leadership:
- Guiding strong IT and business team with security initiatives
- Engagement with senior Business executives with ability to influence
Functional:
Expert
- Risk Management
- Solution design
- IT Security Management
Advanced
- Service Management
- IT Project Management
- IT Vendor Management
- Infrastructure and Technology
Proficient
- Business Process Design
- Application Implementation