Cyber Security Manager

Job description / Role

Job title

Cyber Security Manager

About the company

RATP Dev, in the Middle East and across the world, is committed to developing and optimising public transportation systems. Everywhere, we operate to boost the local economy and quality of life of our passengers. Everywhere, we are driven by excellence, passion and determination in welcoming challenge.

RATP Dev Middle East is the regional head office which operates and maintains urban transportation systems in multiple countries, on four continents, carrying more than 1.5 billion annual passengers on its networks. Headquartered in Dubai, RATP Dev Middle East has become a leading, innovative and sustainable mobility player in the Middle East and North Africa (MENA) region.?

In the wider MENA region, RATP Dev Mobility Cairo (RDMC) will soon be in charge of the operations and maintenance of the new Light Railway Transit line and the Cairo Metro Line 3 plus its future extensions therefore we are actively sourcing quality talent for our new and exciting venture in Egypt.

About the job

JOB PURPOSE:
The role will require in-depth understanding of information security, technology architecture and business security. Successful candidates will be expected to demonstrate relevant experience working in a dynamic environment dealing with complex challenges, and communicating to all levels of the business.
Business coninuty management by fully implement and testing the disaster recovery process & business continuity plan.

RESPONSIBILITIES/DUTIES
Supervision
- Supervise information security policy exceptions & change management requests assessments.
- Develop a culture of in-depth understanding as to why security testing is required at both business and internal team level and external with technology partners and client.
- Analysis of information protection technologies and processes to identify technology security weaknesses.
- Lead ongoing assessments of data processing systems to confirm the design of logical controls are effective and meet regulatory and legal requirements; and Provide quality reports to summarize test activities, including objectives, planning, methodology, results, analysis, and recommendations to both technical and non-technical audiences. From the output of the reports provide suggested approaches to enhance further.
- Take the ownership and ensure Governance, Policy and Procedures in relation to Management of Information.

Operations
- Provide information protection reports to summarize test activities, including objectives, planning, methodology, results, analysis, and recommendations to both technical and non-technical audiences. From the output of the reports provide suggested approaches to enhance further.
- Coordinate with Infrastructure and business systems Teams to implement identified controls, policies, and procedures.

Continuous Improvement
- To lead the identification of opportunities for continuous improvement of systems, processes and practices considering 'National / international best practice', improvement of business processes, cost reduction and productivity improvement
- Meetings or workshops or participating in professional organizations or conferences.
Reporting
- To prepare reports timely and accurately to meet department requirements, policies, and standards

Health, Safety & Environment
- To monitor the adherence to all relevant safety and environmental management procedures and controls to guarantee employee safety, legislative compliance, delivery of high-quality products/service and a responsible environmental attitude

Related Assignments
- To perform other related duties or assignments as directed
- To participate in any enhancement project to ensure company infrastructure reliability

Requirements

Requirements

ESSENTIAL QUALIFICATIONS, KNOWLEDGE & EXPERIENCE
- Broad knowledge of a wide range of Information Technology systems and a deep understanding of the inherent security risks associated with these technologies.
- Information security principles and best practice (e.g., ISO27001)
- Strong technical abilities, combined with business acumen.
- Ability to present security topics to a non-technical audience and presenting the business value of security.
- A good understanding of IT networking and access management concepts.
- Ability to understand and assess technology systems and applications from both a technical and business function perspective.
- Ability to communicate business and technical risk to all levels of audience.
- Excellent interpersonal skills with the ability to build and influence teams; and self-motivated

About the Company

We operate and maintain urban and intercity transportation systems in 12 countries, on four continents, carrying more than 1.5 billion annual passengers on our networks.

Our parent company, RATP, is the transportation operator for Paris and the surrounding region. It ensures 12 million trips a day on one of the world's densest and most multi-modal transportation network.

As the world's fifth-largest transportation company, RATP Group runs and maintains tens of thousands of kilometers of subway, bus, tram, and urban or intercity rail lines around the globe.

Every day we innovate for smarter, more sustainable cities by designing, operating and maintaining networks for the well-being of our passengers. Our key words: passion and determination.