Lead Specialist - Internal Information Security
Al Nahiya Group
- Abu Dhabi
- Permanent
- Full-time
- Developing and maintaining information security programs, policies and guidelines within the body designed to protect the authority's communication, systems and infrastructure assets from internal and external threats.
- Implementing alignment with the company's internal IT function to anticipate potential security threats , including measures and control of potential security risks from THE company's IT operations
- Implement periodic audit of information security by ensuring that all new vulnerabilities are identified and addressed, and that all existing vulnerabilities are subject to effective preventive measures
- Ensure that awareness and training sessions are coordinated to ensure that the sectors are ready against potential digital security threats by enhancing awareness and understanding of the potential impacts of any breaches
- Ensure that cooperation with risk response and business continuity is implemented within the company to ensure that risk mitigation plans and business continuity plans are comprehensive for the information security perspective when needed
- Implement the management of the comprehensive requirements imposed by digital security incidents to which the company is exposed in coordination with the relevant authorities as needed and ensure that adequate prevention measures are applied to prevent future breaches
- Implement development efforts or adopt solutions that will prevent or reduce exposure to digital security threats as needed by departments
- Push search and intelligence activities within the Office to keep up with the latest information security threats, hacking methodologies, and security breaches exploitation information
- Ensure that relevant information security policies and procedures are harmonized and implemented within the department's activities
- Develop skills and transfer knowledge to the team
- Implementing and applying the security assessment process to the agency's systems and ensuring that security vulnerabilities are subject to effective preventive measures