Implementing the Information Security Policies and procedures are in accordance with information security regulatory requirements (like UAE IAS, PCI DSS, SWIFT, ISO 27001, etc and applicable information security requirements) and advising the business on information security requirements.
Identify compliant and non-compliant processes and system and evaluate their effectiveness.
Make recommendations for improvement. Partake in information gathering exercises on new projects and continually test projects on go-live to ensure they meet the required standards and policy.
Leading as required and maintaining cross-functional working groups to coordinate information security efforts, including current projects and initiatives and regulatory awareness across the Bank.
Executing information security and compliance reviews.
Assist the Departments under their responsibility in conducting the OR related activities such as development and monitoring of RCSAs and KRIS, conducting Control Testing, etc
Work with the Contracts, Vendor Management and Compliance/Business departments to ensure that third-party suppliers contracts and operating-level agreements meet information security requirements.
To support and promote a culture of awareness of information security throughout the bank, and hold training with staff members across different business units.
Monitoring compliance with Bank Information security policy and applicable Security and regulatory standards.
Key Accountabilities:
Implementing and ensure the Information Security Policy and procedures are in accordance with information security regulatory requirements (like UAE IAS, PCI DSS, SWIFT, ISO 27001, etc and applicable information security requirements) and advising the business on information security requirements.
Supporting the development and roll out of information security trainings, communications, and awareness campaigns across the Bank.
Supporting the Senior Manager to perform compliance assessments/ audits against information security compliance assessment and Management reporting requirements.
Provide support for communications with internal / external stakeholders and authorities.
Hold training with staff members across different business units.
Qualifications, Experiences & Technical Skills:
Bachelor’s Degree in Information Management, or a related field.
Experience: 5+ years of relevant experience
Technical Skills:
Data Protection & Information Security: Knowledge of data privacy laws and best practices for protecting sensitive information.
Research and Data Analysis: Ability to conduct information research and perform basic data analysis.