Information Security Manager

Job description / Role

My Client an International Consultancy Firm require a Information Security Manager. Based in there office in Kuwait. ISM will arrange and manage audits, tests, and validation and accreditation activities as well as manage the IT risk register in conjunction with the IT Director.

- Maintain a set of ISO27001 aligned Information Security Standards and controls made up of policies, procedures, guidelines, forms and registers
- Communicate Information Security Standards to ensure individual responsibilities for information security are understood
- Perform periodic assessments of the status and compliance of these standards
- Own the IT risk and issue register and the coordination of mitigation and resolution activities
- Develops plans, monitors implementation and integration stages of all related activities in line with scheduled projects and deliverables.
- Communicate and collaborate across disciplines, divisions, and over regions ; to promote and support the identification and assessment of Information Security risks and threats within the business and advise on controls to mitigate these.
- Able to communicate with internal & external stakeholders/clients affectively
- Act as the central co-ordination point during the organisations annual external audit ensuring Information Security and IT risk and actions are captured in the appropriate registers
- Ensure IT operations and suppliers implement evidence based control systems to demonstrate compliance with Information Security Standards
- Work with IT operations and suppliers to promote and support the proactive Identification and assessment of Information Security risks within IT Services and Infrastructure.
- Develop and deliver security awareness training to staff and management
- Own investigations of security and control breaches and the development of resolution plans
- Provide security oversight of project proposals and 3rd parties to ensure solutions and practices are compliant with standards and good practice
- Maintain and track a list of exceptions to Information Security Standards and Risk Register to ensure mitigation or formal Risk Acceptance
- Manage the disaster recovery programme for the IT department
- Ensure the collation of evidence throughout the year used to demonstrate strong IT control systems.
- Demonstrates ability to input on policies, standards, or procedures updating technical requirements in the development of future QA & IMS documentation.

Requirements

Must be either GCC National or Western Expat

About the Company

Over 30 years of local industry experience.

New name, proven expertise In 2009, recruitment leaders Beresford Blake Thomas (BBT), Hill McGlynn and Ma Foi integrated under the Randstad brand to form Randstad Middle East.

Experience and local knowledge are essential commodities within the Middle East region, so it made perfect sense to combine 30 years recruitment experience in the Gulf, providing a larger, more streamlined service to our clients and candidates.

As well as having the largest geographical footprint of any recruiter, Randstad is the worlds largest specialist recruitment provider, employing over 28,000 members of staff and helping over 2.5 million people find work every year. With an enviable reputation worldwide, we have an established and respected presence in the Middle East, and are the preferred choice for specialist staffing solutions in more customary and emerging markets across the entire region.

Our Sectors:

• Accounting & Finance
• Advertising, Media & PR
• Construction & Engineering
• Hospitality & Retail
• HR & Business Support
• Industrial
• IT & Telecommunications & Electronics
• Oil & Gas
• Pharmaceutical & FMCG
• Property & Real Estate
• Sales & Marketing
• Executive Search & Selection
• Facilities Management