Information Security Compliance Manager (UAE National)

My client is a large conglomerate operating across multiple verticals.

Overview

You will be responsible for leading the efforts in managing and mitigating information security risks. Ensuring compliance with internal control framework, relevant industry regulations and standards.

The ideal candidate will have a strong technical background in compliance management and Identity and Access Management, along with exceptional communication and collaboration skills.

The role composed of a variety of responsibilities, including tactical, operational, and strategic activities in support of the Information Security Program.

Identity and Access Management

• Develop and maintain identity and access management (IAM) procedures and policies in alignment with Group’s IAM strategy.
• Design and configure user access controls, including role-based access control (RBAC), permissions, and privileged across various platforms and applications.
• Monitor IAM systems for security incidents, anomalies, and unauthorized access attempts, and take appropriate action to mitigate risks.

Security Audits and Posture Assessments

• Manage and coordinate audit engagements, work closely with auditors, including external audit firms and internal audit teams to ensure smooth audit processes and compliance with security requirements and industry standards.
• Track and manage audit observations and findings to ensure timely resolution and closure, including the development and implementation of corrective action plans.

Risk & Compliance Management

• Serve as a single point of contact for security risks identified by IT Governance teams, risk and internal control functions of different business units.
• Maintain Information Security risk tracker to capture and prioritize all identified risks, including further assessing the potential impact and likelihood of each risk and assigning appropriate risk owners.

Minimum experience:

• 8 years or more experience of working in multiple IT Security domains in a large organization, preferably in Retail industry.
• 3 years or more experience of managing security risks and compliance activities in a supervisory role.

Minimum Qualifications/education:

• A Bachelors or Masters degree in computer science, engineering or technology-related field, or equivalent

Preferred Qualifications:

• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• Certified Information Systems Auditor (CISA)

Salt is acting as an Employment Agency in relation to this vacancy.