Cyber Security Manager

Responsibilities:

• Following up on the application of information security policies and procedures in a way that ensures the protection of the Group’s customer data, its electronic systems, and its various services in line with The Group’s strategic objectives.
• Following up on the implementation of policies and procedures related to information security in order to achieve The Group’s compliance with applicable legal and regulatory requirements.
• Maintaining the confidentiality of the components of The Group’s systems and applications and the confidentiality of customer data by setting procedures on systems settings and managing access permissions to data, systems, assets and everything related to them.
• Preserving the components and applications of The Group’s systems and its customers’ data from any unauthorized change, whether intentional or unintentional, by individuals or electronic systems from within or outside The Group.
• Maintaining the continuity of electronic services by following up on the implementation of policies and procedures that prevent blocking The Group’s services, applications and data from relevant parties internally and externally.
• Conducting continuous examinations and tests of The Group’s applications and programs, whether produced internally or contracted with other companies, to ensure their compliance with best practices related to information security.
• Auditing the compliance of employees, suppliers, service providers, and other parties with The Group’s information security policies.
• Working with the Business Continuity Department on BCP and incident and emergency response plans regarding incidents related to information security.
• Operating the necessary programs and systems to detect security events and activate early warning systems in a way that ensures the reduction of risks associated with information security.
• Managing the cybersecurity risk awareness system for all employees.
• Effectively communicate with employees, senior management, and other teams in IT. Write clear reports and documentation and deliver presentations.
• Leadership and Management Skills: lead and motivate a team, prioritize tasks, and manage budgets.

Qualifications:

• Bachelor’s degree in Cyber Security, Computer Engineering, Computer Science, or a related field.
• Minimum of 10 years of professional experience in information and cyber security.
• One or more professional certifications such as CISSP, CISM, CEH, and/or OSCP.
• Proven experience in Vulnerability Assessment and Penetration Testing (VAPT).
• Experience in Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST).
• Solid experience with network and systems security technologies.
• Experience with database security technologies and controls.
• Hands-on experience with security frameworks and standards such as NIA v2.1, ISO/IEC 27001:2022, and/or PCI DSS implementation.
• Strong experience with Security Operations tools, including technology implementation, configuration, and use-case creation.
• Native Arabic Speaker