Description:
Hiring Analyst Information Security
Reports to: Manager Information Security
Division: Risk
Department: Information Security
Job Objective:
Support seamless adoption and implementation of Information security standards and procedures within the organisation to ensure security and protection of company information, supplementary data and supporting infrastructure.
Key Accountabilities:
General Responsibilities
- Lead the effective development and implementation of Information Security policies, procedures and controls covering all areas of assigned department activity so that all relevant procedural/legislative requirements are fulfilled while delivering a quality, cost-effective service.
- Lead the identification of opportunities for continuous improvement and sustainability of systems, processes and practices considering global standards, productivity improvement and cost reduction.
- Ensure that all reports are prepared timely and accurately and meet company requirements, policies, and quality standards.
Job Specific Responsibilities
- Information Security Activities (Governance, Risk & Compliance):
- Develop, implement and maintain the information security program of company as per local and international standards and in alignment with company vision and strategy.
- Develop and review information security policies and procedures according to the industry best practices and relevant standard requirements.
- Coordinate with company heads of departments to ensure adequate implementation of information security controls and practices in accordance with company information security .
Qualifications and Experience:
- Bachelor’s degree in Information Security Management, Cyber Security, Information Technology or Computer Science
- Master’s Degree in Information Security will be preferred
- Certifications: ISO courses and certificates (27001), ISC2 courses and certificates (CISSP), SANS courses and Certified Information Systems Auditor (CISA) is good to have.
- Minimum 3-5 years of experience in information security in Financial Services (banking, Insurance, exchanges).
- Minimum 2 years of experience in implementation/maintenance/auditing of information security management (ISMS).
- Minimum 1 year of experience in incident management/incident handling, change management, risk management, vulnerability assessment and related topic(s)
- Good Understanding of local information security standards and the Abu Dhabi’s regulatory environment
- Advanced level of English & Arabic language (written and spoken).