Nair Systems is currently looking for Information Security – Manager (Operations) for our UAE operations with the following
Experience:
• 7 - 10 years’ experience in Information Security or related field.
Skills Required for the Job:
• In-depth knowledge and understanding of information security and technology infrastructure.
• In-depth experiences in NESA requirements Implementation
• In-depth experiences in developing information security policies in line with NESA Requirements
• Detail oriented - Pays careful attention to the bank’s computer systems and watches for minor changes potentially indicative of a compromise.
• In-depth knowledge and understanding of network troubleshooting, firewall administration, network protocols an
Duties and Responsibilities:
• Assists in the development of the information security strategy and roadmap for all security technology domains
• Research security standards, security systems and authentication protocols, making recommendations to IS management as appropriate
• Reviews the architectural designs and makes recommendations for approval by IS management
• Serve as an expert to Information Security management in the development, implementation, and maintenance of an information security infrastructure.
• Monitor information security trends internal and external to the Bank and keep IS management informed about information security related issues and activities affecting the Bank
• Monitor the bank’s networks for security breaches and investigate a violation when one occurs
• Prepare reports that document security breaches and the extent of the damage caused by the breaches supporting IS management to respond to security incidents
• Conduct vulnerability assessments and support contracted third party penetration testing.
• Track identified and reported security weaknesses to their resolution
• Research the latest information security trends advising IS management of leading practices to improve the bank’s security posture
• Coordinate with all departments to ensure information security risks are considered in both ongoing and planned operations.
• Establish credibility and maintain strong working relationships with groups involved in information security matters (Internal Audit, Fraud, Physical Security, IT, External Audit, etc.). After the audit/ review, ensure that exceptions are tracked to closure on a timely basis.
• Review out-of-policy application access requests submitted by the user community and approve or reject, as appropriate.
• Manage the DLP solution through implementation of policies and classification of data.
• Advise the IS management on risk issues that are related to information security and recommend actions in support of the Banks wider risk management programs.
• Assists to evaluate and draft updates to existing Information Security policies, standards, guidelines, procedures, processes and forms as needed.
• Perform Third Party Risk assessments and identify any potential risk.
• Manage Information Security applications as EDR, SIEM, data security solutions etc.
• Understand potential threats, vulnerabilities, and control techniques and communicate the information to IT system & network administrators.
• Assist Bank’s departments or units as necessary to investigate security breaches and pursue associated disciplinary and legal matters.
• Support in the development and delivery of security awareness and training programs.
• Review out-of-policy application access requests submitted by the user community and approve or reject, as appropriate.
• Terms & conditions.
Joining time frame: 2 weeks (maximum 1 month)
Should you be interested in this opportunity, please send your latest resume in MS Word format at the earliest