Senior Information Security Officer
1 month ago
Drive a strong and robust Information Security Management System (ISMS) in the organization through threat/vulnerability detection security scanning penetration testing security monitoring vulnerability mitigations threat mitigations identifying IT/OT security risks and other related information security activities.
Ensure adherence to the various information security standards and standards and provide technical consultation on Information Security issues.
Key Accountabilities:
Information Security Management:
1. Identify information security vulnerabilities and threats in the company IT/OT technology network and infrastructure using various techniques e.g. penetration testing and vulnerability assessment.
2. Collate information from the conducted assessments and recommend appropriate remedial steps.
3. Develop review improve and update information security policies procedures guidelines and other related documents.
4. Provide support to build the organization wide information security awareness and training programs. Contribute and provide content for awareness activities.
5. Monitor evaluate and ensure the segregation of duties on all systems to mitigate the risk of unintentional and/or deliberate system misuse.
6. Ensure compliance with the applicable internal and international information security standards (e.g. NIA ISO27001).
7. Monitor changes or updates in any applicable law regulation or accreditation standards pertaining to Information Security and ensure compliance as required.
8. Ensure appropriate administrative and technical safeguards are in place to protect information assets from internal and external threats. Coordinate physical safeguards for those assets in coordination with the General Services department.
9. Liaise and maintain contact with governmental authorities regulatory bodies security groups and industry forums in the field of Information Security.
10. Prepare security baselines and safeguard applications operating systems and infrastructure devices by adopting the latest standards.
11. Resolve information security issues and improve the Information Security performance by providing technical consultation in system development acquisition procurement implementation change management operation/support and architectural and other adhoc projects.
12. Assist all organizational units in areas related to Information Security and follow the related processes to provide support.
13. Work with the concerned parties on the Information Security incidents and vulnerability management processes from design to implementation and beyond.
14. Review technical information in the requirements statements feasibility analysis operating procedure manuals and other documents produced in the process of system development.
15. Monitor and assess IT systems security system audit trails/logs and the validity of system configurations whenever required.
16. Assist in vulnerability mitigation e.g. through software/system patching through the IT department.
17. Assist in performing ongoing security monitoring of information systems including assessing information security risk conducting functional and gap analyses to determine the extent to which key business areas and infrastructure comply with statutory and regulatory requirements.
18. Evaluate and recommend new information security technologies and countermeasures against threats to information or privacy and develop security reports and dashboards.
19. Ensure identification recording reporting and resolving any Information Security violations.
20. Support and assist the other activities linked with Enterprise Risk and Business Continuity Management such as Risk Assessments and Business Impact Analysis.
21. Support the development of the organizations disaster recovery and business continuity plans for information security and tests readiness.
Generic Accountabilities:
Quality Health Safety & Environment (QHSE):
22. Adhere to all relevant QHSE policies procedures instructions and controls so that NAKILAT provides a safe world class secure and environmentally responsible service to customers the public and its own people.
Policies Systems Processes & Procedures:
23. Implement approved policies processes and procedures and provide instructions to subordinates to ensure their proper implementation.
Others:
24. Carry out any other duties as directed by the immediate supervisor.
- Contribute to the development and management of policies and procedures for the Information Security Management System.
- Develop coordinate and conduct organization wide information security awareness programs and trainings.
- Prepare Information Security related risk assessments reports and other relevant documentation.
- Conduct the required activities to identify threats and vulnerabilities for IT and OT infrastructure.
- Monitor various Information Security systems.
- Drive the vulnerability patching.
Internal: Interaction with all staff on information security activities such as data classification access review threats/vulnerabilities identification and mitigation support and contribution to information security initiatives and projects.
External: Interface with vendors and external auditors and organizations for information security related matters
As per TOFA.
Qualifications Experience and Job SkillsQualifications:
- Bachelors Degree in Computer Science or any other equivalent field.
- Certified Information Systems Security Professional (CISSP) Certified Ethical Hacker (CEH) and Certified ISO27001 Lead implementer are preferred.
- Globally recognized credential certification is preferred in Information Security domain for example CISM ISO27001LA.
Experience:
- Minimum of 4 years of Information Security experience.
- IT background is preferred.
Job Specific Skills:
- Ability to manage pressure prioritize needs requirements and positively interact with the company users and external parties.
- Ability to trouble shoot and investigate information security incidents.
- Knowledge of Information Security Management System (ISO 27001) and other Information Security framework (NIST).
- Security related qualifications (e.g. CISSP CISM CEH ISO 27001 LI/LA).
Job Specific Competencies:
ii. Technical
8) Business /Industry Knowledge
9) Enterprise Risk Management
10) Business Risk
11) Risk Project Management
12) Business Continuity Management
13) Governance
14) Risk Management Methodology/Process
15) Risk Identification and Assessment
16) Business Impact Analysis
17) Risk Response & Reporting
18) Risk Mitigation & Control
19) Information Security Management
Job Segment: Information Security Information Systems Testing Change Management Computer Science Technology Management
More jobs on
-
Chief Information Security Officer
2 weeks ago
Doha, Baladīyat ad Dawḩah, Qatar Thales e-Security, Inc. Full timeChief Information Security Officer (CISO) page is loaded Chief Information Security Officer (CISO)remote typeOn-Site locationsDoha time typeFull time posted onPosted Today job requisition idR Location: Doha, QatarThales people architect solutions at the heart of the defence-security continuum. Interoperable and secure information and telecommunications...
-
Senior Information Security Officer
2 weeks ago
Doha, Baladīyat ad Dawḩah, Qatar Talent Pal Full timeJob Summary and PurposeDrive a strong and robust Information Security Management System (ISMS) in the organization through threat/vulnerability detection security scanning penetration testing security monitoring vulnerability mitigations threat mitigations identifying IT/OT security risks and other related information security activities. Ensure adherence to...
-
Information Security Officer
1 week ago
Doha, Qatar People Dynamics Full timeThe Information Security Officer (ISO) is responsible for protecting and maintaining the confidentiality, Integrity, and availability of information and related infrastructure assets; managing the risk of security. exposure or compromise; assuring a secure and stable information technology (IT) environment. identifying and responding to events involving...
-
Information Security Officer
2 weeks ago
Doha, Baladīyat ad Dawḩah, Qatar People Dynamics Full timeThe Information Security Officer (ISO) is responsible for protecting and maintaining the confidentiality, Integrity, and availability of information and related infrastructure assets; managing the risk of security.exposure or compromise; assuring a secure and stable information technology (IT) environment.identifying and responding to events involving...
-
Senior Information Security Officer
2 weeks ago
Doha, Baladīyat ad Dawḩah, Qatar Talent Pal Full timeJobSummary andPurposeDrivea strong and robust Information Security Management System (ISMS)in the organization through threat/vulnerability detection securityscanning penetration testing security monitoring vulnerabilitymitigations threat mitigations identifying IT/OT security risks andother related information securityactivities. Ensure adherenceto the...
-
Doha, Qatar Boeing Full timeDo you aspire to help build something better? Would you like to work for a company that employs the best talent to develop and deliver world class capabilities and systems to protect Australia and its national interests? Would you like to work on cutting edge projects? Then we would like to talk to you.As an equal opportunity employer that promotes a diverse...
-
Senior Information Security Officer
2 weeks ago
Doha, Baladīyat ad Dawḩah, Qatar Talent Pal Full timeJob Summary and Purpose:Drive a strong and robust Information Security Management System (ISMS) in the organization through threat/vulnerability detection, security scanning, penetration testing, security monitoring, vulnerability mitigations, threat mitigations, identifying IT/OT security risks and other related information security activities.Ensure...
-
Information Security Officer
2 weeks ago
Doha, Baladīyat ad Dawḩah, Qatar Nakilat Full timeSelect how often (in days) to receive an alert: Create Alert ** PREFERENCE WILL BE GIVEN TO QATARI CANDIDATES ** Job Summary and PurposeDrive a strong and robust Information Security Management System (ISMS) in the organization through threat/vulnerability detection, security scanning, penetration testing, security monitoring, vulnerability mitigations,...
-
Chief Information Security Officer
2 weeks ago
Doha, Baladīyat ad Dawḩah, Qatar Thales Full timeLocation: Doha, QatarThales people architect solutions at the heart of the defence-security continuum. Interoperable and secure information and telecommunications systems for defence, security, and civil operators, are based upon innovative use of radiocommunications, networks, and cybersecurity. We are ground breaking new digital technologies such as 4G...
-
Chief Information Security Officer
2 weeks ago
Doha, Baladīyat ad Dawḩah, Qatar Thales Group Full timeLocation: Doha, QatarThales people architect solutions at the heart of the defence-security continuum. Interoperable and secure information and telecommunications systems for defence, security, and civil operators, are based upon innovative use of radiocommunications, networks, and cybersecurity. We are ground breaking new digital technologies such as 4G...
-
Senior Information Security Officer
3 weeks ago
Doha, Qatar Talent Pal Full time**Job Summary and Purpose**: Drive a strong and robust Information Security Management System (ISMS) in the organization through threat/vulnerability detection, security scanning, penetration testing, security monitoring, vulnerability mitigations, threat mitigations, identifying IT/OT security risks and other related information security activities. Ensure...
-
Chief Information Security Officer
3 weeks ago
Doha, Qatar Thales Full timeLocation: Doha, Qatar Thales people architect solutions at the heart of the defence-security continuum. Interoperable and secure information and telecommunications systems for defence, security, and civil operators, are based upon innovative use of radiocommunications, networks, and cybersecurity. We are ground breaking new digital technologies such as 4G...
-
Head of Risk
3 weeks ago
Doha, Qatar Nakilat Full time**Job Summary and Purpose**: Lead and drive the comprehensive design and supervision of information security, risk and business continuity functions. The role necessitates a thorough understanding of the legislated requirements to ensure that the information security, risk and business continuity principles and plans, policies and practices are integrated...
-
Sr. Information Security Engineer
4 weeks ago
Doha, Qatar Carnegie Mellon University Full timeThe Senior Information Security Engineer (SISE) is responsible security tool implementation and administration and for monitoring, investigation, response and support tasks related to the operation of the University's information security program with a primary focus on compliance areas by: - Monitoring and responding to network intrusion, system log, and...
-
Senior Information Security Risk Analyst
3 weeks ago
Doha, Qatar قطر للطاقة Full time**Company** QatarEnergy is an integrated national oil corporation that stands at theforefront of efforts for the long term sustainable development,utilization and monetization of oil and gas resources in the State ofQatar.In its efforts to become one of the best national energy companies inthe world, QatarEnergy's activities and those of its subsidiaries...
-
Senior Information Security Risk Analyst
3 weeks ago
Doha, Qatar قطر للطاقة Full time**Company** QatarEnergy is an integrated national oil corporation that stands at theforefront of efforts for the long term sustainable development,utilization and monetization of oil and gas resources in the State ofQatar.In its efforts to become one of the best national energy companies inthe world, QatarEnergy's activities and those of its subsidiaries...
-
Doha, Qatar Qatar Airways Full timeAs a Senior Aeronautical Information Management Officer, you will be responsible for managing daily activities related to publication of Aeronautical information used within the Qatar Airways group. O...
-
Information Security Operations Officer
3 weeks ago
Doha, Qatar Vistas Global Full timeManage & Monitor any threats from all our Cybersecurity tools - Investigate suspicious activities, contain, & prevent them - Collect regional & global threat intelligence and internal threats then inject actions based on analysis and recommendation. - Proactively research and monitor security information to identify potential threats that may impact the...
-
Doha, Qatar Qatar Airways Full time**About the role**: Qatar Airways are pleased to announce an incredibly exciting opportunity to join our Flight Operations team as a Senior Aeronautical Information Management Officer to be based in Doha, Qatar. As a Senior Aeronautical Information Management Officer, you will be responsible for managing daily activities related to publication of...
-
Information Security
2 weeks ago
Doha, Baladīyat ad Dawḩah, Qatar Mekdam Holding Group Full timeAbout the job Information Security (OSCP) SpecialistJob Role: Information Security Specialist (Application Security)Work location Government entityLocation: Doha, QatarJob Purpose Statement:We are looking for a skilled Professional for VAPT, Application Security, Offensive Security & compliance profile. The ideal candidate will have experience in Network...
