الوصف الوظيفي
Role Purpose
Support the operations teams in implementing the information security program. Monitor and report on cybersecurity ongoing improvements in order to ensure the security of information assets at SANS, within adopted policies and procedures of the department.
KEY ACCOUNTABILITIES & ACTIVITIES
ISMS ISMS
•Perform inventory tasks related to the Information Security Management System
•Collects and review evidence needed for the ISMS
•Supports in the definitions of information security related standards and guidelines; supports the definition and implementation of processes and procedures to implement standards according to guidelines
•Provides expertise to other directorates and departments in information security related matters in close work relationship with the Information Security Manager and the Information Security Architect.
Risk Mgmt
•Plans, conducts and supports regular risk assessments with all directorates and departments
•Supports all directorates and departments in risk analysis, risk mitigation, and implementation of counter measures
•Monitors the progress of agreed risk treatment plans
•Prepares together with the directorates and departments policy exceptions and remediation plans
•Supports departments in controls selection and implementation
Project Mgmt
Supports information systems projects in gathering the information security related requirements
•Support in the definition of information security related SLAs, OLAs and KPIsSecurity Operations
•Develop threat intelligence capabilities and related proactive measures
•Act as a Subject Matter Expert for SIEM and be able to configure, manage, operate and administrate the platform.
•Creation of technically detailed reports on the status of the SIEM to include metrics on items such as number of logging sources; log collection rate, and server performance.
•Managing the end-to-end vulnerability lifecycle from discovery to closure. Performing vulnerability assessments to identify weaknesses and countermeasures and providing timely assessment reports to key stakeholders.
Security Incident Management
•Supports in the analysis and remediation security incidents
•Contributes to education and awareness of incident management within the organization
•Implement and maintain Incident Response PlansTraining
•Performs regular information security related trainings at all staff levels in SANS
•Support, train and supervise Junior Security AnalystsAudit support
•Support the preparation information needed related ISMS audits
•Supports the Information Security Department in audit related mattersPolicies, Processes and Procedures
•Conduct day-to-day activities while ensuring compliance to policies and procedures.
•Contribute to the identification of opportunities for continuous improvement of systems, processes taking into account leading practices, changes in business environment, cost reduction and productivity improvement.
المهارات
1. Professionalism
2. Honesty and Integrity.
3. Adaptability
4. Problem-solving
5. Dependability/Reliability/Responsibility
6. Loyalty
7. Positive Attitude/Motivation/Energy/Passion
8. Self-Confidence
9. Self-Motivated/Ability to Work Without Supervision
10. Willingness to Learn
11. Leadership/Management Skills
12. Multicultural Sensitivity/Awareness
13. Planning and Organization
14. Teamwork
Education and Certifications
•A bachelor’s degree in Computer Science, IT, Systems Engineering or equivalent is required.
•Certification in information security domains (e.g. CISSP, CISM or similar) preferred
تفاصيل الوظيفة
منطقة الوظيفة المملكة العربية السعودية
قطاع الشركة خطوط الطيران/الملاحة الجوية
طبيعة عمل الشركة صاحب عمل (القطاع الخاص)
الدور الوظيفي الحماية
نوع التوظيف دوام كامل
الراتب الشهري غير محدد
عدد الوظائف الشاغرة 1
المرشح المفضل
المستوى المهني متوسط الخبرة
عدد سنوات الخبرة الحد الأدنى: 3 الحد الأقصى: 6
*** تقدم على الرابط التالي : Apply on the following link ***
https://www.bayt.com/ar/saudi-arabia/jobs/information-security-grc-analyst-3899177/
Printable Page 
Report Advertisement