Requirements
Responsible for implementing and continually improving policies and procedures.
2. Highlighting the management issues of performance and opportunities for improvement in relation to
Information Security domains and associated services.
3. Ability to plan and execute new information security product deployments enterprisewide.
4. Implement security improvements by assessing the current environment; evaluating trends; anticipating
requirements.
5. Create maintain and enforce the Clients security documents (policies standards guidelines and
procedures).
6. Oversee the deployment integration and initial configuration of all new security solutions and of any
enhancements to existing security solutions in accordance with standard best practices.
7. Maintain clientfacing security documentation ensuring its relevance and accuracy.
8. Deliver work streams for clients in compliance with standards such as ISO27001 UAE(IA) and ISR. NESA
DESC.
9. Deliver beneficial security risk outcomes for clients in line with their business and risk appetite using
the range of consulting capabilities.
10. Plan organize and conducts information assurance and accreditation of complex domain areas crossfunctional
areas and across the clients supply chain.
11. Deliver incident management plans such as for disaster recovery and implement them for clients as
required.
12. Contribute to the cybersecurity maturity efforts by aligning the information security program activities
with industry standards.
13. Analyse requirements and design of clients information security posture as well as Legal Regulatory
and Scheme security requirements and translate risk requirements into technical control requirements
and specifications.
Certification is required any of the following:
Certified Information Systems Security Professional (CISSP)
Systems Security Certified Practitioner (SSCP)
Certified Information Security Manager (CISM)
Certified Cloud Security Professional
Certified ISO 27001 Lead Implementer
Certified ISO 27001 Lead Auditor