• Evaluate and Gap Analysis based on various standards in the field of information security
• Identification, valuation and documentation of IT services and assets.
• Implementing information security risk assessment (Identification, analysis, evaluation).
• Measuring information security risks and developing corresponding Risk Treatment Plans.
• Designing ISMS policies and procedures and auditing them.
• Auditing of ISMS and other requirement (Develop and maintain audit checklist and documents) and perform it by coordinating related teams and vendors.
• Create and monitor Key Performance Indicators (KPIs) and evaluate the effectiveness of the ISMS.
• Keep the Cyber Security Department updated on latest security trends and security technologies, policies, and standards.
• Create the Security Awareness Plan across the company using different communication channels and enhance security culture beyond the organization.
• Manage technical and managerial meetings
• Identification, valuation and documentation of IT services and assets.
• Implementing information security risk assessment (Identification, analysis, evaluation).
• Measuring information security risks and developing corresponding Risk Treatment Plans.
• Designing ISMS policies and procedures and auditing them.
• Auditing of ISMS and other requirement (Develop and maintain audit checklist and documents) and perform it by coordinating related teams and vendors.
• Create and monitor Key Performance Indicators (KPIs) and evaluate the effectiveness of the ISMS.
• Keep the Cyber Security Department updated on latest security trends and security technologies, policies, and standards.
• Create the Security Awareness Plan across the company using different communication channels and enhance security culture beyond the organization.
Requirements
• BS or MS Degree in IT/ Software engineering
• Fluent in ISO 27001 and familiar with ISO 9001
• Familiar with the concepts of information security
• Familiar with computer networks, servers and services
• Adequate familiarity with technical issues
• Familiar with project control topics (BCNP)
• Sufficient English language proficiency (Reading / Speaking / Listening)
• Ability to evaluate and Gap Analysis based on various standards in the field of information security
• Ability to manage technical and managerial meetings