Information Security – Ali Bin Ali Holding

Objective & Scope:

• Works in information security team.
• Maintaining Information Security Management System (ISMS) as per the international standards.

The Key Responsibilities:

• Prepare plan and Initiate internal and external security reviews
• Ensure compliance to Data Privacy in the Projects and functions.
• Maintain Assets Inventory of all ABAITD Assets and coordinate with all ABAITD teams to prepare the Risk analysis.
• Prepare Risk treatment and mitigation plan
• Oversee and manage the day to day information physical security activities for IT
• Shall be responsible and be compliant with ABA IT Division’s security policies and procedures
• Shall be responsible for the protection of ABA IT Division’s information assets from unauthorized access, disclosure, modification, destruction and/or interference thereby ensuring the confidentiality, integrity and availability of information
• Shall be responsible for reporting any security events, potential incidents and/or other threats
• Develops security awareness by providing orientation, educational programs, and on-going communication.
• Analyze for new security threats and vulnerabilities and recommend prevention methods to protect from the threats.
• Involve along with ISM to manage the external and internal audits.
• Involve along with ISM in managing security assessments (Knowledge of VA / PT Tools)
• Participate in Defining, implementing and maintaining IT security policies
• Coordinate and gather information on new security trends with outside vendors

Analysis:

• Assess new technologies and solutions against the requirements as defined in the relevant information security policies and standards
• Assist in developing appropriate criteria needed to assess the level of new/existing applications and/or technology infrastructure elements for compliance with enterprise security standards;

Innovation:

• Constantly strives to identify new techniques in improving systems security.
• Participates in industry education, networking events, etc.
• Conduct information security research in keeping abreast of latest security issues.
• Identifies needs and improvement opportunity within scope uses innovative solutions to facilitate change or improvement in Information security.
• Provides recommendation of innovative solutions to next level in order to facilitate change or technology advancement.

Job Details

Preferred Candidate