Chief Information Security Officer (CISO)

Responsibilities

• Assessing IT and Trusted Domains “including PKI and Remote Signing” infrastructures and for potential weak points and implementing solutions

• Establishing security measures to detect, prevent, and mitigate cyber-attacks.

• Developing response protocols for successful cyber attacks

• Participating in disaster recovery and business continuity plans for compromised data.

• Providing ongoing Security awareness session and notifications.

• Promote a culture of strong information security as active defender against cyber threats

• Lead the audit activities with different internal and external stakeholders (including: External Audit Partner, Customer Audit Team, PKI Vendor, etc.)

• Develop, implement, and monitor a strategic, comprehensive information security and risk management program.

• Work directly with the subsystems owners to facilitate risk assessment and risk management processes.

• Develop and enhance an information security management framework.

• Understand and interact with related disciplines through committees to ensure the consistent application of policies and standards across all technology projects, systems, and services.

• Partner with business stakeholders across the organization to raise awareness of risk management concerns.

• Assist with the overall business technology planning, providing a current knowledge and future vision of technology and systems.

Experience Required

• Minimum of 9 years of experience in a combination of risk management, information security and governance.

• Excellent Knowledge of common information security management frameworks, such as ISO/IEC 27001, e IDAS and ETSI and WebTrust.

• Excellent written and verbal communication, presentation skills and high level of personal integrity.

• Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams.

• Specific experience in Agile (scaled) software development or other best in class development practices.

• Experience with Private Cloud computing across virtualized and containerized environments.

Qualification, Certification & Educational Requirements

• Bachelor’s degree or equivalent in Computer Science, Cybersecurity, or Information Security.

• Professional Security Management Certification is preferred.

• Proficient in English with knowledge of Arabic language being a plus.