Governance Risk and Compliance Manager

Etihad Airways

Abu Dhabi, UAE

Ref: KP902-913

Job description / Role

Employment: Full Time

Synopsis

As part of the Governance, Risk and Compliance team, this role is the Etihad subject matter expert responsible for managing the execution of the security risk management process, procedures and guidelines - identifying, assessing and controlling risks. They will also manage compliance assessments and preparation activities in audits and certification audits against various standards and track and report compliance implementation. This role is part of the wider Governance, Risk and Compliance team and will require cooperation with corporate compliance functions on the harmonization of security law enforcement activities and conduct IT compliance research and requirement applicability analysis.

Accountabilities

  • Proactively seek opportunities to improve the efficiency and effectiveness of the IT security compliance program.
  • Act as a channel of communication to IT to receive and direct compliance issues to appropriate IT resources for investigation and resolution.
  • Develop, review and revise information security policies and supporting standards aligned with applicable industry best practices and regulations.
  • Facilitate the development of remediation plans and the timely resolution of any identified gaps.

Accountabilities

  • Manage the execution of the security governance, risk and compliance program, with a focus on industry regulations and standards, data privacy and internal policies and standards compliance.
  • Manage the enterprise-owned tools that support governance, risk and compliance activities and support service providers in delivering contractual security requirements.
  • Identify and evaluate IT security risk factors and ensure adequate and effective IT security controls exist that mitigate these risks and meet current and future compliance requirements.
  • Demonstrate knowledge of IT security regulatory requirements like NESA, ISO 27001, PCI DSS, GDPR, etc.
  • Provide assurance that IT security risks are effectively identified and addressed in relation to the deployment of new or enhancements in existing information systems and processes.
  • Serve as the key point of contact and coordinate the IT security component of both internal and external audits.
  • Manage the development, review and publishing of content for security awareness themes and conduct security awareness trainings and simulation exercises.
  • Manage the vulnerability detection and remediation program with a focus on vulnerability prioritization and remediation with creation of timely reports and dashboards.

Education & Experience

  • Knowledge of industry best practice standards pertaining to information security, risk management and data privacy.
  • Knowledge of and experience with information security and GRC tools required.
  • Knowledge of and experience with vulnerability assessment and penetration testing tools for infrastructure and application systems.
  • Understanding of international and local regulations pertaining to aviation, information security and data privacy.
  • Ability to manage execution of projects by security services providers and internal teams.
  • Good administrative skills with effectiveness in delivering modules and driving POCs.
  • Very good written and oral communication skills required.
  • A minimum of 7-12 years of experience in cybersecurity with a focus on governance, risk and compliance.
  • Graduate degree in computer science, management information systems or equivalent industry experience.
  • Industry and domain certifications such as Certified Information Systems Security Professional (CISSP), Global Information Security Assurance Professional (GIAC), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC) or equivalent.

About Etihad Airways

Etihad Airways, the national airline of the UAE, was formed in 2003 and quickly went on to become one of the world's leading airlines. From its home in Abu Dhabi, Etihad flies to passenger and cargo destinations in the Middle East, Africa, Europe, Asia, Australia and North America. Together with Etihad's codeshare partners, Etihad's network offers access to hundreds of international destinations. In recent years, Etihad has received numerous awards for its superior service and products, cargo offering, loyalty programme and more. All this ties into Etihad's ambitious Journey 2030 strategy. The airline plans to double its fleet size and triple the number of customers over the next six years as it sets out to be the airline everyone wants to fly!

About the Company

Etihad Airways is the National Airline of the United Arab Emirates. The airline was set up by a Royal Decree in July 2003, with Abu Dhabi, the capital of the UAE, as its hub. Etihad started commercial operations in November 2003.

With Etihad, everyone who flies with us is welcomed as our guest.

This simple credo illuminates everything we do, from big things like making sure that our fleet is one of the most advanced in the sky, to small touches like letting you choose the films you watch.

Were proud to be the National Airline of the United Arab Emirates. At the crossroads between Europe and Asia, our home reflects our commitment to bringing the world closer together - as does our highly cosmopolitan staff.

Get personalised updates on latest vacancies
Similar jobs you may be interested in
Credit Risk Manager Easy Apply
QS Quest Global Markets Ltd.
Riyadh 27 Jan
Senior Manager Governance And Risk Management Easy Apply
RTC-1 Employment Services
UAE 3 Jan
Risk Officer - Saudi National Easy Apply
Elbait Consultants
Jeddah 6 Jan
Risk Analyst - Developer Easy Apply
CG Resourcing
Qatar 12 Feb
SPRC (Strategic Performances And Risk Compliance) Manager Easy Apply
Leo International HR Consultancy
Dubai 6 Feb
Job Alerts by Email
  • Personalised updates on latest career opportunities
  • Insights on hiring and employment activity in your industry
  • Typically sent twice a month