Overview
Information Security – Manager (Operations) Jobs in Sharjah, Sharjah Emirate, United Arab Emirates at Commercial Bank International
Title: Information Security – Manager (Operations)
Company: Commercial Bank International
Location: Sharjah, Sharjah Emirate, United Arab Emirates
Job Purpose:
The role will be responsible for developing and implementing the security measures that keep the Bank’s information assets safe. Working with Information Security management, you will identify gaps in existing IS policies, standards, guidelines, procedures and recommend updates to bring them into alignment with regulatory requirements, leading practices, and industry standards.
Responsibilities:
· Assists in the development of the information security strategy and roadmap for all security technology domains
· Research security standards, security systems and authentication protocols, making recommendations to IS management as appropriate
· Reviews the architectural designs and makes recommendations for approval by IS management
· Serve as an expert to Information Security management in the development, implementation, and maintenance of an information security infrastructure.
· Monitor information security trends internal and external to the Bank and keep IS management informed about information security related issues and activities affecting the Bank
· Monitor the bank’s networks for security breaches and investigate a violation when one occurs
· Prepare reports that document security breaches and the extent of the damage caused by the breaches supporting IS management to respond to security incidents
· Conduct vulnerability assessments and support contracted third party penetration testing. Track identified and reported security weaknesses to their resolution
· Review out-of-policy application access requests submitted by the user community and approve or reject, as appropriate.
· Manage the DLP solution through implementation of policies and classification of data.
· Advise the IS management on risk issues that are related to information security and recommend actions in support of the Banks wider risk management programs.
· Manage Information Security applications as EDR, SIEM, data security solutions etc.
· Understand potential threats, vulnerabilities, and control techniques and communicate the information to IT system & network administrators.
· Assist Bank’s departments or units as necessary to investigate security breaches and pursue associated disciplinary and legal matters.
· Support in the development and delivery of security awareness and training programs.
· Review out-of-policy application access requests submitted by the user community and approve or reject, as appropriate.
· Performs and evaluates information risk on a regular time schedule and promotes information security awareness within the Bank.
Contributes to team effort by accomplishing related results as needed.
· Other duties as may be assigned by IS management.
Education:
· Bachelor’s degree in computer science, Network/ Cyber Security or related information technology field.
Professional / Technical Qualifications / Diplomas:
· Platform specific (e.g., SIEM/ Networking/ Operating System) certifications.
· Security (e.g., SANS/ ISC2 / CEH/ CISSP/CISM/CISO) certifications
Experience:
· 7 – 10 years’ experience in Information Security or related field.
Other Skills:
· In-depth experiences in NESA requirements Implementation
· Excellent technical knowledge to advise appropriate security controls and operate security tools such as SIEM and VA Scanner.
· In-depth experiences in developing information security policies in line with NESA Requirements.
