Closed or Expired Job Posting This job posting is closed or has expired and is no longer open for applications.
Upload
Job Description
Transguard Group is currently recruiting Senior Specialist – Information Security to be a part of the Information Security Department. The successful candidate will be part of an exciting team, responsible for assisting the management in implementing, maintaining, and managing the Information Security programme. The candidate's responsibilities include Transguard's Information Security, ICT operations, and other affected business units, and ensuring that their performances are in line with regulatory governance, compliance standards and client’s requirement.
In this role, your responsibilities include the following:
- Responsible for implementing and continually improving policies and procedures.
- Implementing data protection (EU GDPR)
- Responsible for the ongoing maintenance and improvement of Information Security Management System in accordance with international standard ISO 27001:2013 and other standards selected by the management
- Propagation of Information Security Management System as and when deemed necessary by Transguard
- Enhancing awareness for end-users within the scope for information security and related domains
- Designing, developing and implementing processes and procedures for Information Security incident management
- Responsible for the formulation of strategy, architecture, and governance as per the local regulations and international best practices
- Highlighting to the management issues of performance and opportunities for improvement in relations to Information Security, domains, and associated services
- Supporting, exhibiting, and enhancing corporate culture that is committed to governance, risk, compliance, and information security best practices
- Making sure that the information technology policies and procedures are in compliance with the regulations
- Monitoring applicable regulatory changes and provide effective change management to address such changes
- Conducting continuous and ongoing risk assessments as per the risk management methodology
- Conducting risk assessments to evaluate the effectiveness of existing controls and determine the impact of proposed changes to business processes, applications and systems.
- Developing and communicating the risk treatment plan
- Ensuring risk and treatment plan is being followed, following up on action plans and escalation whenever necessary.
Skills
The ideal candidate will have the following skills and experience:
- 7- 10 years of experience in the Information Security field
- Proficiency in English
- Excellent drafting experience
- Experience in Information Security and IT - Governance and Risk Management - Compliance Management, Data Protection implementer (EU GDPR)
- Excellent understanding of Information security standards and best practices (ISO 27001, ADSIC, NIST, SANS, ISO 31000, NESA, DUBAI ISR, PCI DSS, etc.)