التخصصتقنية المعلومات - برمجة الحاسب
·Assist in the development of the vision for IT security and solutions to architect needs for company-wide IT solutions
·Develops and documents project design requirements to promote flexibility, scalability, reliability, security and adherence to architectural standards.
·Initiates, facilitates, and promotes activities to create information security awareness within the organization
·Ensure that disaster recovery and business continuity plans are in place and tested
·Direct immediate remedial action for high level security alerts, and ensure and recommend mitigating actions for avoiding recurrence.
·Manage vulnerability assessments, red team exercises, penetration testing, incident response and forensic investigations.
·Conduct risk assessment activities including control assessment, likelihood determination and risk prioritization
·Provides infrastructure, system and application-related technical and architectural direction to the Information Protection Program.
·Assist in developing policies, procedures and guidelines for implementing and safeguarding the company’s infrastructure.
·Perform periodic internal security audits on the company’s infrastructure to monitor security compliance with information security policies and procedures, before the scheduled company/shareholder/external audits.
·Ensure the business processes and work activities, relevant to position, are executed in compliance with SASREF policy, procedures and best practice to achieve the business objectives in a safe, efficient and cost effective manner.
·Lead, motivate, develop and assess the assigned team to achieve business objectives and grow capability.
·Develops and maintain Security Awareness Program
·Responsible of operational compliance to all ISO and other information security standards and regulations.
·Develop comprehensive list of cybersecurity policies that are aligned with NIST CSF and ISO standards
·Review investigations after breaches or incidents, including impact analysis and recommendations for avoiding similar vulnerabilities
·Ensure compliance with the changing laws and applicable regulations
··Brief management on status and risks, including taking the role of champion for the overall strategy and budget
Workplace (WPS) and Process (PSM) Safety:
·Ensure that measures to protect personal safety and well-being are always in place and that personal actions do not jeopardize the safety and well-being of others.
·Adhere strictly to all IOWs, Safe Operating Procedures, and Safe Work Instructions - thus preventing potential WPS and PSM incidents at all times.
·Always comply with the SASREF HSE Policy, the 5 Safety Principles and 12 Golden Safety Rules.
·No personal injury or injury to a third party.
·No WPS or PSM incident caused.
Qualifications & Experience
Bachelor’s Degree in Computer Science, IT Security or any other related field
·Minimum of 15 years of experience with 10 years in IT Security Operations
منذ 1 شهر