You are here
Manager - Information Security
Manager - Information Security
Dubai Based Group
About Our Client
Large Dubai based group operating in multiple vertical.
Security Architecture: Create and maintain the enterprise's security architecture design.
Perimeter Security Solutions: Have an in-depth knowledge on Security Solutions on Perimeter Security like Firewall, IPS, APT, Content Filtering, Anti Malware
End Point Security Solutions: Antimalware, Encryption, DLP, FIM solution knowledge for end point protection
Security Technologies: Have exposure to security technologies like IDAM/ SSO, App Scan, Nessus, Tripwire, Secure FTP, Federation Services
Security Projects: Have a good knowledge on Project Management and ability to drive cross functional project delivery.
Secure SDLC: Have a fair knowledge on Secure Software Development Life Cycle with various tools and checklist
Data Protection: DLP, IRM, Encryption during the Information Lifecycle from creation to destruction/storage
Disaster Recovery / Business Continuity: Create and maintain enterprise Disaster Recovery Plan and Business Continuity Plan.
Security Standards: Exposure to Standards like ISO 27001, ISO 22301, ITIL etc
Have experience of handling a SIEM solution with 24 X 7 operations cross geography
Have experience of handling Security Incidents and responding with speed and also resolving the same
Have experience of handling DLP/ AV/ Patching/ FIM/ Network Security solutions operations
Have experience of handling change management including architecture changes
Supervise the design and execution of vulnerability assessments, penetration tests and security audits
Ensure the confidentiality, integrity and availability of the data residing on or transmitted to/from/through enterprise workstations, servers and other systems and in databases and other data repositories.
Ensure the enforcement of enterprise security documents.
Supervise all investigations into problematic activity and provide on-going communication with senior management.
Perform regular security awareness training for all employees to ensure consistently high levels of compliance with enterprise security documents.
Engage ongoing communication with peers in the Systems and Networking groups as well as the various business groups to ensure enterprise wide understanding of security goals, to solicit feedback and to foster co-operation.
Comply with all legal and regulatory requirements pertaining to data security and privacy
Liaise with internal and external stakeholders for security implementation and compliance.
The Successful Applicant
Formal Education & Certification
Master of Computer Science, College diploma or bachelors of engineering (BE) in the field of computer science/ electronics/ Telecommunications with an overall experience of 12+ years with minimum 9 years relevant work experience in the information security field.
One or more of the following certifications:
o GIAC Security Essentials Certification
o GIAC Security Leadership Certification
o CISM Certified Information Security Manager
o Microsoft Certified Systems Engineer: Security
o (ISC)2 SCCP
o (ISC)2 CISSP
o (ISC)2 ISSAP
Knowledge & Experience
Extensive experience in enterprise security operations
Extensive experience in evaluation and rollout of security projects aligned to the security architecture
Extensive experience in enterprise security document creation.
Experience in designing and delivering employee security awareness training.
Experience in developing Business Continuity Plans and Disaster Recovery Plans.
Strong understanding of IP, TCP/IP, and other network administration protocols.
Familiarity with Operating systems and Databases like AIX/ Windows/ UNIX systems and Oracle / SQL.
Preferred familiarity with Retail and Hospitality industry.
What's on Offer
Great company in the UAE - opportunity to work on cutting edge security technology.