Information Security Senior Supervisor - Business Resilience

Job Description

• Overseeing and controlling all aspects of information security in a business. The job entails planning and carrying out security measures that will protect a business’s data and information from deliberate attack, unauthorized access, corruption, and theft.would also be expected to be responsible for training and supervising staff.
• Creating and managing security strategies
• Oversee information security audits, whether performed by the organization or third-party personnel
• Supervise security team members
• Assess current technology architecture for vulnerabilities, weaknesses and for possible upgrades or improvement
• Implement and oversee technological upgrades, improvements, and major changes to the information security environment
• Communicate information security goals and new RFPs Requirements effectively with other department managers within the organization
• Review Penetration testing findings and reporting when conducted
• Review vulnerability management program output
• Responsible for the execution, monitoring of the Risk Management frameworks activities following Xceed interested parties’ needs and expectations.
• Maintaining the compliance against Infosec related standards and regulations (ISO 27001, PCI and GDPR)
• Acting as SME in SOC operations and Incident handling to give technical advice if any
• Evaluate and assist in creation of department budget and costs associated with technological training

Job Requirements

• 4+ years of experience in a related field
• Experience in managing projects.
• Experience facilitating group discussions, training/awareness, and exercise scenarios.
• Knowledge of industry standards for the field.

Special Certificates:

• CISA / CISM / CISSP / ISO 27001 Lead Auditor / ISO 27001 Lead Implementer / OSCP certs is a plus or another related certificate

Skills:

• Language Skills: Good command of Arabic and English (oral/written).
• Excellent communication and interpersonal skills.
• Very good analytical and writing skills.
• Must have strong moral and ethical foundation to disclose potentially illegal, criminal and unethical business practices or data

Required Knowledge:

• Internal & external audits
• ISO 27001 and PCI Standard compliance
• GDPR Regulation Compliance
• Risk Assessment
• Tuning of related security Products
• Vulnerability Management Output
• SOC Operations Output