Employer Active
• Lead and oversee business risk and vulnerability assessments for Qatargas Information Systems and provide authoritative advice and guidance on security strategies to manage identified risks and ensure adoption, and adherence to, Qatargas Information Security Policies and Procedures. Support the Head of Information Security in developing and communicating Corporate Information Security Policies and Procedures
• Carry out risk assessment of complex information systems and infrastructure components to identify threats to the confidentiality, integrity, availability, accountability, and relevant compliance of information systems. Contributes to classification of data types held and audits of information systems and contribute to data breach planning.
• Review compliance to information security policies and standards, configuration assessment, adherence to legal and regulatory requirements, and recommend appropriate action.
• Conduct risk, vulnerability and business impact assessments of business applications and computer installations and recommend appropriate action to management.
• Investigate major breaches of security and recommend appropriate control improvements in accordance with established procedures including incident management procedures.
• Contribute to development of information security policy, standards, and guidelines.
• Provide authoritative advice and guidance on security strategies to manage identified risks and ensure adoption, and adherence to standards.
• Deliver and contribute to the design and development of specialist IT security education and training to IT and system user management and staff.
• Ensure that incidents are handled according to agreed procedures.
• Investigate escalated incidents to responsible service owners and seeks resolution.
• Regularly monitor the incidence, status, and speed of resolution of incidents. Analyze metrics and report on the performance of the incident management process.
Full Time