اقتراحات البحث:

مطلوب فورا
accountant
محاسب
اسنان
construction manager
نساء
دوام جزئي
consultant
civil engineer
logistics
مهندس مدني
عمل عن بعد
electrical engineer
Riyadh
منطقة الرياض
منطقة مكة المكرمة
المنطقة الشرقية
Dammam
Jeddah
منطقة المدينة المنورة
Al Khobar
Dhahran
Al Jubayl
منطقة تبوك
Medina

Head of Infromation Security- KSA

Bank Of Jordan
Riyadh, منطقة الرياض
دوام كامل
منذ 4 أسابيع

Responsibilities:

  • Ensures compliance with all applicable cybersecurity regulations and standards in the region, especially those issued by the Saudi Arabian Monetary Authority (SAMA), and provides necessary support and cooperation to regulatory bodies during audits and inquiries.
  • Follows up on the review of security procedures and mechanisms, participates in defining security responsibilities and controls, and works with external information security consultants to enhance the bank's information security posture.
  • Conducts in-depth analysis of past cybersecurity incidents to prevent recurrence and to continuously improve the cybersecurity system.
  • Oversees, reviews, and periodically updates the bank’s Information Security Policy and technology framework (COBIT), assesses risks based on NIST standards, evaluates data protection mechanisms and encryption practices, and ensures proper access controls to backup media and devices. Reviews them periodically in line with the branch's strategy by analyzing and managing cybersecurity risks, access controls, and information security documentation standards, and contributes to developing and implementing these policies to improve information governance.
  • Manages the implementation of the cybersecurity program, develops an approach to integrate cybersecurity into bank operations at all levels, manages cyber risk assessments, recommends mitigation controls and procedures, defines cybersecurity requirements for current and new projects, and oversees information/system classification processes.
  • Evaluates the adequacy of cybersecurity risk controls and approves exceptions based on acceptable risk levels and regulatory guidelines, in coordination with the group-level information security team.
  • Measures and develops the performance of cybersecurity programs and key risk indicators, ensures compliance with cybersecurity policies, standards, and procedures, and regularly reports the cybersecurity program status to the Board of Directors and relevant committees as needed.
  • Reviews system user reports to ensure the application of authorized user access policies across bank data, identifies users violating approved policies, and takes corrective actions to prevent future breaches.
  • Assesses the efficiency of IT infrastructure security by monitoring performance indicators, using appropriate tools, and reviewing configuration reports.
  • Manages security and cyber incident response and digital forensics, and implements necessary actions to address and minimize impacts in alignment with business continuity plans and in coordination with relevant internal and external parties.
  • Manages access control policies at all levels in coordination with information owners and helps develop the necessary procedures for access transitions.
  • Ensures the bank’s compliance with information protection laws and regulations, including the General Data Protection Regulation (GDPR) and the Personal Data Protection Law (PDPL) in Saudi Arabia, by monitoring data handling, processing, and storage practices.
  • Develops and enhances cybersecurity procedures by simulating cyberattack scenarios such as phishing and penetration testing to safeguard the bank’s interests.
  • Ensures external service providers comply with the bank’s cybersecurity standards by conducting regular security assessments and ongoing monitoring to protect the bank’s rights.
  • Collaborates with external information security consultants to improve the bank’s information security framework.
  • Prepares periodic information security reports for relevant departments and committees at the branch and head office levels. Reviews activities of various automated systems and prepares periodic reports on the Information Security / Business Continuity unit, reflecting relevant security events.
  • Submits detailed cybersecurity risk reports to relevant committees and stakeholders, including trends, breach probabilities, and mitigation strategies quarterly or as required.
  • Oversees the review of information systems/cybersecurity control measures, periodically assesses information risk, recommends new technologies and countermeasures to align with global trends, and supervises the security of any new services or projects planned by the bank.
  • Develops and delivers information security awareness and training programs for bank staff in collaboration with the group-level information security team.

Requirements

Skills and Competencies (as previously translated):

  • A university degree in Computer Engineering or any related field.
  • A minimum of 10 years of experience in Information Technology (IT), including at least 5 years in Information/Cyber Security.
  • Preferably holds certifications such as CISM, ISO 27001, PCIP, or any related certification.
  • Strong planning and organizational skills.
  • Decision-making capabilities.
  • Full fluency in English (spoken and written).
  • Strong analytical abilities.
  • Proficiency in computer usage and working with implemented systems.
  • Thorough knowledge of internal and external policies and procedures governing the work.
  • Excellent interpersonal and communication skills.
  • In-depth knowledge of PCI, COBIT, ISO 22301, cybersecurity standards, and any information security regulations issued by regulatory bodies.
  • Ability to work under pressure.
تقديم
حفظ
الإبلاغ عن وظيفة
توصيات وظائف أخرى:

Millwright Technician - Oil & Gas - KSA

Hudson Manpower
Al Jubayl, المنطقة الشرقية
  • All types of pumps (single & multi)
  • Steam turbine
  • Sundyne pump...
منذ يومين

Cyber Security Auditor Job

Arabian Drilling Co.
Dhahran, المنطقة الشرقية
  • Provide strategic leadership and advice in the development...
  • Manage the performance and development of a team of...
منذ 3 أيام

Expert - Security and FLS Master Planning (MAS8-MDUMDO2009)

Qiddiya | القدية
منطقة القصيم
  • Lead the tracking of Security & FLS master planning...
  • Manage timeline databases incorporating critical...
منذ أسبوعين

Cluster Manager of Security - Raffles & Fairmont the Red Sea

Accor
السعودية
  • Develop and implement security policies, procedures, and...
  • Oversee the management and training of security personnel...
منذ أسبوعين

Security Supervisor

MOVENPICK
Al Khobar, المنطقة الشرقية
  • Is aware of the daily activities and has product knowledge...
  • Fire prevention and safety procedures, basic fire fighting,...
منذ 3 أسابيع

Senior Sales Account Manager (KSA)

BlackStone eIT
Jeddah, منطقة مكة المكرمة
  • Minimum of 5 years of experience in software sales in the...
  • Proven track record of successfully managing and growing key...
منذ 3 أسابيع

Senior Commercial Director, KSA

Anchanto
السعودية
  • New Logos: Responsible for achieving year-over-year topline...
  • Leadership: Set responsibilities and KPIs for the sales team...
منذ 3 أسابيع

Crewing Administrator - KSA Based

DP World
Al Khobar, المنطقة الشرقية
Manage and maintain all crewing-related administrative documentation and records. Ensure the timely and accurate entry of...
منذ 3 أسابيع

Head of Project Controls

Egis Group
منطقة القصيم
  • Provide strategic leadership for the Integrated Project...
  • Direct and mentor a 16-member team, covering cost...
منذ يومين

RR-0203041 - Sr Analyst II Infrastructure Services

DXC Technology
Riyadh, منطقة الرياض
  • Contribute to the implementation of infrastructure projects...
  • Work with the team to enhance infrastructure effectiveness...
منذ يوم