Senior Associate – Security Risk and Intelligence

JOB PURPOSE• Review compliance/implementation status of IT & information security policies & standards• Review security logs such as applications, operating systems, and security systems/appliances i.e., anti-virus, Firewall, IPS, VPN, Privilege Access Management, etc.• Perform risk assessment of IT systems and update IT Risk Register on regular basis  
The role is only for UAE nationals
ROLES AND RESPONSIBILITIES• Maintain information security standards and ensure implementation of information security policies and standards• Review, monitor and report non-compliance of IT Governance Framework, information security policies, security standards, procedure, and guidelines• Review security logs of critical business applications & infrastructure on regular basis • Conduct periodic assessment on state of IT security and issue regular security assessment reports (e.g. vulnerability & penetration testing, Residual Risk Report, etc.) • Prepare & maintain IT Risk Register and follow-up with risk owners for risk mitigation• Identify & report key information security risks, incidents, and events promptly• Evaluate, maintain, and manage tools required to perform Information Security & Compliance related activities• Ensure conformance to relevant Service Level Agreements• Keep up-to-date with latest IT security benchmarks and best practices• Participate in DR tests as an independent observer as and when requested by Business Systems &/or Infrastructure Support team and ensure IT disaster recovery plans are adhered to• Collate data from internal IT teams on agreed KPIs and assist in preparation of IT Dashboard on regular basis• Prepare Information security awareness presentations and email flyers and present the same in new staff induction program conducted by HR• Liaise with security vendors to support, upgrade and troubleshoot the security systems
RELATED YEARS OF EXPERIENCEMin of 6+ years in Information Technology with a minimum of 1+ year in the information security position of a leading organization
YOE IN MANAGERIAL POSITIONMin of:N/A
FIELD OF EXPERIENCEExperience in real estate and retail industries will be preferred
TECHNICAL AND INTERPERSONAL SKILLS• Knowledge of process frameworks : COBIT, ISO 27001• Knowledge of Information Security Standards/Practices and regulatory/compliance requirements • Technical proficiency in security-related hardware and software• Strong verbal and written communication skill and presentation skills• Proven skills in working collaboratively with other teams
QUALIFICATION• Bachelor’s degree in Computer Science or a technical discipline relevant to IT security• Relevant systems security certification from SANS, (ISC)2, ISACA e.g., CISSP, CompTIA+, etc.