الوصف الوظيفي
You will be a hands-on Information Security Manager with a deep technical background to lead the protection of our clients infrastructure, products, and customer data. You will have a specific emphasis on infrastructure security, encryption, and incident response.
Client Details
A payments solutions company in the Middle East.
Description
Develop and manage a comprehensive security program focused on securing infrastructure, products, and customer data.Oversee the development and enforcement of security policies, incident management processes, and risk mitigation strategies.Collaborate with development teams to integrate security into each phase of the software development lifecycle. Ensure code reviews, secure coding practices, and vulnerability scanning are executed.Ensure robust security measures are implemented to protect IT infrastructure, including data centers, customer-hosted systems, and internal environments.Lead regular penetration testing, vulnerability assessments, and remediation efforts across all systems, collaborating with development and IT teams to ensure security posture.Implement and manage encryption technologies and data protection patterns to safeguard sensitive information and ensure compliance with regulatory requirements.Lead incident detection, response, containment, and forensic investigations. Proven ability to handle high-severity incidents and mitigate potential risks.Conduct IT risk assessments, manage vendor risk, and implement security controls to mitigate vulnerabilities.Conduct IT risk assessments, manage vendor risk, and implement security controls to mitigate vulnerabilities.
Profile
10+ years of experience in Information Security.Strong technical background, with deep expertise in security architecture, penetration testing, and infrastructure security.Extensive experience in the secure software development lifecycle (SDLC), including secure coding, vulnerability management, and code reviews.Expertise in incident response, digital forensics, and malware containment.Familiar with encryption, data protection patterns, and regulatory compliance.Experience securing cloud environments (AWS/Azure) and financial systems like SWIFT.Certifications such as CISM, CISSP, ISO 27001 LI/LA are preferred.
Job Offer
This is a unique opportunity to join a leading organisation and play a key role at a growth stage.