Senior Information Security Manager - Enterprise IT

Al Futtaim Group

UAE

Ref: HP698-10867

Job description / Role

Employment: Full Time

Senior Information Security Manager - Enterprise IT - Al Futtaim Group - Dubai, UAE

We are currently looking for Sr. IT InfoSec and Compliance Specialist to work from our Dubai based offices. Reporting to the Head of EA & IT Compliance you will be responsible for supporting management with the overall administration and dash-boarding of InfoSec Compliance within Enterprise IT. Shall manage a team of 3 to 5 associates.

This role will be composed of a variety of activities, including very tactical, operational and strategic activities in support of initiatives that include:
- Strategic support
- Security liaison
- Architecture/engineering support
- Operational support

In this role your responsibilities will include:
- Author, procure and publish technical Security Standards for Infrastructure and Software; and manage a program of deployment and comprehensive monitoring.
- Head and manage PCI-DSS compliance activities of the Group
- Procure, maintain & manage tools required to perform IT security related activities e.g. Forensics Tool Kit (FTK), Vulnerability Management Tool, etc.
- Devise appropriate methodologies for various processes of information security management, e.g., Risk Assessment; Risk Treatment; Document classification; Maintain EIT Risk Register, etc.
- Brief senior management on the current security threats. Recommend safeguards, information security metrics and trends in information security events.
- Maintain and build skill set to perform IT Compliance duties by internal and external trainings of associates and by participating in various workshop/conferences within the budget.
- Protect assets by conducting periodic technical vulnerability assessment and penetration testing or as when requested by business system owners.
- Carry out periodic IT Security reviews of information systems.
- Conduct Risk Assessment of all new applications and publish Residual Risk Report (as per Risk Management framework) to LOB head prior to go-live.
- Monitor the critical infrastructure from security perspective i.e. AD Security Logs, Anti-virus console logs and Proxy Logs.
- Review Business Requirement Documents (BRDs) from IT Compliance and information security perspective and provide input at early stages.
- Coordinate with the Human Resource Department for matters related to HR security and information security awareness training imparted during HR induction.
- Provide support to Internal Audit teams as per the engagement model. Collaborate with Internal Audit teams in relation to Policies, Standards and Procedures (PSP) adherence.
- Work with Internal Audit in IT incidents and Fraud investigations
- Prepare and maintain EIT Policies/Standards/Procedures/Guidelines. Provide governance related activities of PSP (Policies, Standards and Procedures) repository like repository access control, file naming convention, folder structures etc.

Requirements

- Business focused and team worker
- Excellent interpersonal skill
- Good written and verbal communication skill
- A minimum of ten years of IT experience, with seven years in an information security role and at least three years in a supervisory capacity.
- A degree in Information Systems/Computer Science or relevant
- Relevant security certifications (CISA, CISSP etc.)
- Experience working with legal, audit and compliance staff.
- Experience developing and maintaining policies, procedures, standards and guidelines.
- An understanding of operating system internals and network protocols.
- Experience in system technology security testing (vulnerability scanning and penetration testing).
- Knowledge of COBIT Framework, IT policies, Standards and regulatory requirements

About the Company

Established in the 1930's, the Al-Futtaim Group initially operated as a trading enterprise. Rapid development throughout the 1940's and 50's saw it establish itself regionally as an integrated commercial, industrial and services organisation, positioning itself one of the leading business houses in the lower Gulf region. Today, it operates collectively over 40 companies bearing the Al-Futtaim name, dominates many market segments in the UAE, and has expanded its sphere of operation to include Bahrain, Kuwait, Qatar, Oman and Egypt.

The Group comprises a diverse range of strategically positioned operating subsidiaries and associate companies, structured to give the Al-Futtaim Group the flexibility and versatility to keep ahead of local competition while keeping pace with the ever-evolving global business scenario. The Groups continued investment in world-class systems technology is clear evidence of its commitment to maintain leading edge performance and service delivery.

The success of the Al-Futtaim Group can be attributed to a business approach that combines the ability to change with the traditional values of integrity, service and social responsibility that define its core business philosophy. This, linked with the Groups belief in decentralisation, gives the heads of the operating companies a high degree of functional autonomy and authority, providing the Group with essential flexibility, and individual employees a clearly defined work culture and sense of responsibility.

Get personalised updates on latest vacancies
Job Alerts by Email
  • Personalised updates on latest career opportunities
  • Insights on hiring and employment activity in your industry
  • Typically sent twice a month
Business Manager salaries in Saudi Arabia

Average monthly compensation
SAR 24,000

Breakdown available for industries, cities and years of experience