Manager - Information Security\..mgs Risk Management - Isd

Job Category NES Job Group Management To Strategize develop and implement Data Protection Controls in coordination with stakeholders across the Organization globally To ensure compliance of the Organization with the defined policy framework with a data driven approach Execution To ensure that the protection operations are executed effectively in a timely manner and with required quality Assists in the development and implementation of Data Protection strategic initiatives Leads all Data protection related tasks with effective monitoring and protection of information security assets Manager - Data Protection has overall responsibility to coordinate and support the Head of Data Privacy and Protection to achieve organization s Protection strategy and goals He she is a T-Shaped expert with proven skills in most core capability areas of Data Protection and security Policy Governance Protection Strategy Program Management Performance evaluation of the role will be based on the positive impact on the bank in terms of Data protection posture enhancement rather than the effort put in place Responsibilities Develop and coordinate with stakeholder internal external to implement Data Protection policies procedures and protocols Collaborate with internal departments such as human resources business and IT to ensure compliance with security protocols and standards Drive the creation of a comprehensive data protection framework ensuring compliance with applicable data security laws Develop and maintain metrics Key Performance Risk Indicators for measuring effectiveness of the managed solution and reporting to key stakeholders Work closely with legal and compliance teams to manage risk breaches and audits related to data protection Advice on implementation robust security controls across all stages of the data lifecycle including data collection storage processing transmission and destruction Ensure the use of encryption at rest in transit and secure key management strategies Apply anonymization and pseudonymization techniques where required to mitigate privacy risks Collaborate with IT teams to integrate security measures into application and system design from the outset security by design Good understanding hands-on knowledge of DLP solution and data classification concepts Raise awareness and provide training about information handling rules to end-users Design and implement controls to reduce information risk and coordinate remediation actions with the support of the business Gather and document business and security requirements identify and define opportunities and lead the development and implementation of Data Protection Controls that meet business needs Establish an exception management process for scenarios where data protection policies cannot be fully enforced Evaluate and approve security exceptions ensuring that any deviations from standards are properly justified documented and risk-assessed Monitor and review approved exceptions regularly to ensure ongoing security and compliance Qualifications Essential knowledge Graduate Post Graduate degree in Science Engineering IT Minimum 2 Professional certification related to Information Security like CISM CISSP CASP CEH CCSP 8 years Information Security experience in large financial institution banks with minimum 5 years experience within Compliance audit and or risk function with recent experience in Data protection projects implementation In-depth knowledge of data encryption anonymization pseudonymization techniques Strong understanding of security controls required at different stages of the data lifecycle Skills and Application Coordinate with internal stakeholders and cross-functional teams to execute Protection initiatives ensuring that projects are completed on time and achieve desired outcomes Excellent communication skills with the ability to work cross-functionally with different teams Strong analytical skills and the ability to evaluate the effectiveness of implemented security measures About Us The leading financial institution in MENA While more than half a century old we proudly think like a challenger startup and innovator in banking and finance powered by a diverse and dynamic team who put customers first Together we pioneer key innovations and developments in banking and financial services Our mandate To help customers find their way to Rise Every Day partnering with them through the highs and lows to help them reach their goals and unlock their unique vision of success Delivering superior service to clients by leading with innovation treating colleagues with dignity and fairness while pursuing opportunities that grow shareholders value We actively contribute to the community through responsible banking in our mission to inspire more people to Rise