Manager – Information Security (UAE National)

Job description

Manager – Information Security (UAE National) – 23000254

Responsible for planning, implementation and maintenance of a corporate information security program that is integrated with the Company’s regulatory mandates and industry best practices.

KEY ACCOUNTABILITIES

Key Activities
• Designs processes and procedures that govern the Company’s Information Security Management and participate in the overall formulation of the Enterprise Information Security Strategy.
• Develops and updates information security, data privacy policies and procedures in alignment with best practices including ISO 27001, ISR, PCI DSS, ISR and GDPR.
• Drives information security awareness and training programs. Conducts periodic information security awareness and testing.
• Enforces data privacy framework and practices across internal and external parties. Acts as single point of contact for data privacy matters.
• Coordinates with Senior Management and Head of Departments across business units, to develop effective business continuity management practices.
• Establishes partnerships with IT function in implementing technical controls and policies enforcement to provide assurance on operating effectiveness of cyber security function.
• Provides direction and support on information security and data privacy incident management.
• Liaises with Government or Regulatory authorities for information sharing and security program updates.
• Assists Head of Department in preparation of information security and data privacy reports for the Steering Committee.
• Builds and maintains professional relationships across airline business units, vendors, and other parties to ensure information security requirements are incorporate in Company-wide projects.

Qualifications

MINIMUM QUALIFICATIONS / EXPERIENCE/ KNOWLEDGE / SKILLS

Minimum Qualification
• Bachelor’s Degree in Computer Science/IT

Experience
• Minimum 8 years’ with relevant degree

Certificate / License required
• Industry Certifications such as CISSP,CRISC,CISM desireable.

CORE COMPETENCIES
• Customer Focus
• Team work
• Effective Communication
• Personal Accountability & Commitment to achieve
• Resilience and Flexibility (Can do attitude)
• Inspiring & Developing Others
• Decision Making

ISR Requirements

Reads and complies with the ISR policies of the Company and diligently reports any weakness or incidents to the respective Line Manager or the Information Security team. Completes all required ISR awareness sessions and follows associated guidelines in the day to day business operations.