Etisalat's vision is a world where people's reach is not limited by matter or distance; a world where people will effortlessly stay in touch with family and friends; a world where businesses of all sizes can reach new markets without the limitations of distance and travel.
Job Title: Manager - Information Security Management
Manage the planning and delivery of the Information Security program for Etisalat enterprise IT network environment covering compute, network and storage infrastructure, supported application services and databases and ensure adequate protection is achieved and maintained. Oversee end-to-end information security management for the IT network environment - risk assessments, planning and implementation of risk mitigation strategies and initiatives in line with best practices, continuous compliance monitoring and measurement, anchor security improvement and compliance projects, and interface with internal auditors, and enterprise risk management on all assurance matters
Develop, manage and implement a comprehensive information security program for Etisalat enterprise IT network environment.
Support the development, enhancement and implementation of a comprehensive security architecture, policies, standards and processes and ensure compliance across the IT network environment
Develop and maintain an up-to-date security posture assessment for Etisalat enterprise IT network environment. Ensure a satisfactory/acceptable risk rating from independent assessments is achieved and maintained
Conduct periodic review of the Etisalat IT network environment security management framework and ensure it is refreshed and enhanced in line with industry trends and regulatory requirements.
Develop and implement recommendations, action plans and strategies to address identified risks and non-conformities
Raise the security awareness and education level of Etisalat employees, through internal bulletins, regular training and on-boarding for new hires and IT vendor personnel
Support security and forensic investigations and compliance reviews as requested by internal or external auditors
Play an advisory role in application development, acquisition or delivery projects, to assess information security requirements and ensure that security controls are implemented as planned throughout the project life cycle to fulfill these requirements
BA, BSc, HND
Engineering, Technical, ICT, Computer
Method of Application