Job closed
Ref: NP551-52
Job description / Role
Job summary
- Initiate and supervise planning, development, maintenance, and improvement of the Information Security Management System.
- Initiate and supervise Information Systems audits to assess the effectiveness of security controls and communicate findings to senior management for action.
- Review and assess information security policies, standards, guidelines and procedures.
- Initiate, coordinate and supervise security awareness programs, security reviews and audits.
- Conduct Information risk management, incident management and business continuity management.
- Provide administrative and organizational support to assist the IT Director with information security and risk management decisions.
Key responsibilities
Information Security Policies & Procedures
- Initiate and supervise planning, development, maintenance, and improvement of Information Security Policies, Standards, Guidelines, Procedures, depending on the maturity level of Information Security program.
Information Security Awareness
- Initiate, coordinate and supervise security awareness, training and education programs for end-users Spread Information Security Awareness.
Information System Audit
- Initiate and supervise internal and external audits and assessments of the effectiveness of security controls (deployed for managing Physical Access, Access Control, Network & Perimeter, Application Development, Operating Systems, Malicious Code, Legal & Technical Compliance and Change Management).
IT Risk Management
- Conduct periodic Information Security risk assessment, updating Information Asset Profile, identifying vulnerabilities and proposing treatments.
Security Incident Management
- Oversee and manage Information Security incidents.
Information Security
- Maintain information security related to the bank, throughout the period of employment.
- Report or act on any reported potential or actual risks or security incidents as soon as possible.
Documentation / Process Ownership
- Take ownership, maintain & update documented processes or documentation related to his job function. In the event where processes or documentation are shared, be responsible to inform the owner of any document about required changes or improvements.
People Supervisory
- Builds, develops and manages resources to carry-out infrastructure solutions development and implementation.
- Establish objectives with direct reports that align to both business and capability objectives.
- Holds regular meetings with the team and provides results assessments and guidance.
- Develops the team by recommending professional and personal development opportunities.
- Motivates and leads the team; attract, recruit and retain required personnel.
- Empowers others through delegating key tasks/functions; establishes clear understanding of roles and accountabilities, sets clear expectations, providing feedback and guidance, and hold people accountable.
Other
- Provide supervision and professional support to IT Security team
- Perform any other duties assigned by the supervisor directly related or relevant to the job
Ensure the assigned responsibilities are delivered:
- to a high standard of quality and timeliness
- in full compliance with the SC Quality Policy and the Safety and Security rules and requirements
- in line with any standards and objectives designated in the Employee Performance Management system
Requirements
- BSc in Computer Science, Computer engineering, Math, Information Technology or equivalent experience
- CISSP or relevant certification preferred
- Minimum 12 years in information security field and 5 years in a supervisory or managerial role.
- Experience working in a large organization.
- Experience in managing complex IT projects.
- Experience of building relationships with executive and senior leadership, with a proven ability to influence and collaborate at all levels.
- Strong problem solving and analytical skills, developing creative solutions and meeting project objectives.
- High attention to detail and accuracy
- Flexibility and a related ability to work autonomously
- A team player willing to work on tight timelines and pitch in when needed
- A positive attitude, patience and persistence, especially when dealing with various internal and external stakeholders
Practitioner level skills in the below mentioned areas:
- Information Security Policies & Procedures
- Information Security Awareness
- Information System Audit
- IT Risk Management
- Security Incident Management
About the Company
The Supreme Committee for Delivery & Legacy (SC) ensures that all preparations for the 2022 FIFA World Cup™ align with Qatar’s other development imperatives, as described in the Qatar National Vision 2030 and the National Development Strategy 2011-2016. Along with its stakeholders, the SC is tasked with delivering stadiums and other infrastructure for an amazing 2022 FIFA World Cup™ that leaves a lasting legacy for Qatar, the region and the world.
The delivery goals of the SC include exceptional programme and stakeholder management to ensure the timely delivery of infrastructure and competition and non-competition venues; integrating Qatari culture into all hosting plans, to provide the best possible image of the Middle East when the world arrives in Qatar in 2022; and adopting high environmental standards on all projects, contributing to the delivery of a carbon neutral tournament.
In addition to delivering infrastructure in line with Qatar’s long-term development plans, legacy goals of the SC include nurturing exceptional local and international talent and incubating the Josoor Institute, a centre of excellence for the sports and events industries in the Middle East; fostering the development of Qatar’s private sector and streamlining regulatory frameworks; and making Qatari football more competitive and increasing participation in sports in Qatar, the region and globally.
The investments that the SC is making today will pay dividends for generations to come, in line with Qatar’s vision of a healthy and prosperous global future.
Joining the Supreme Committee for Delivery & Legacy means becoming an integral part of delivering the first ever FIFA World Cup™ in the Middle East. It means shaping the future of football in Qatar and the region. It means joining a team of creative and innovative professionals, from 45 countries and counting.