Information Security Manager (199940)
Information
Information Technology | |
Management (6-10 years) | |
Not specified |
Company
Not specified | |
Healthcare, other | |
New Cairo, Cairo, Egypt |
Description
- Collaborate with and support Group Security and other stakeholders as necessary to ensure that security (Information Security, Operational Resilience and Physical Security) within the local entity is relevant, cost-effective and is delivered in accordance with the Group Security Strategy
- Serve as an expert advisor to the entity leadership team in the implementation and maintenance of security
- Ensure local compliance with the security standards, instructions and strategic initiatives
- Adapts the global security strategy to the entity (taking into consideration the local regulation and specifications), defines the concrete actions leading to its execution and monitors achievement
- Ensure the achievement of the security targets in the entity, as set by Group Security
- Identify and analyze security risks, recommend appropriate mitigation options and document all components in clear, business-intelligible language
- Maintain an understanding of emerging technology, risks and industry trends. Assess the impact on the business environment and recommend appropriate mitigation actions or the prioritization of projects and investments
- Escalate the need to redirect investment or change practices to mitigate critical risks and ensure legal, regulatory or commercial compliance
- Implement continuous improvement processes and activities (e.g. good practices, reporting, problem resolution) to ensure quality and relevance of security services
- Monitor and maintain system confidentiality, integrity and availability and manage security incidents (analysis, tracking and communications)
- Undertakes assurance to validate the effectiveness of the local security activities and controls
- Promote a culture of security and raise awareness
- Oversee the execution of security projects
- Ensure development and maintenance of audit processes to enforce consistency within the local entity
- Identify and implement coordinated responses to security audit and compliance issues
- Develop, track and control the local security budgets (required to invest, build and run security) in agreement with the CXO and the Corporate CSO
Requirements
- A university degree in security or related fields (risks management, audit, international relations, information security) from a reputable university.
- A post-graduate degree in security or general management (such as an MBA) is a plus.
- Information Security and /or Information Technology industry certification (CISSP-ISSAP, CISM, ISO 27001 Lead Auditor, GIAC or equivalent) is a plus.
- Business Continuity Industry certification (MBCI, DRII…) is a plus.
- Physical security / Health and Safety certification (CPP, PSP, BTEC, IOSH…) is a plus.
- 7 - 10 years' experience in security, risks management, audit or related area.
- Previous experience managing a remote/international team preferred.
Created on | 06 Dec 2021 |
Last updated on | 04 Jan 2023 |