AVP - Security Incident Management (UAE National)

The AVP of Security Incident Management will lead the incident response team within the Cyber Defense Center, ensuring timely and effective handling of security incidents. This role involves coordinating with various stakeholders and managing incident response processes, including investigation, analysis, containment, recovery, communication, and reporting. Additionally, the position requires continuous improvement of the organization’s incident management capabilities and adherence to compliance requirements.

Responsibilities:

• Align incident management activities with organizational goals and objectives.
• Take ownership and accountability for incident response activities, ensuring team accountability for outcomes.
• Proactively drive initiatives that enhance incident response maturity and resilience.
• Focus on delivering impactful outputs that enhance the bank's security culture and protection posture.
• Seek innovative solutions and automate processes for efficiency.
• Commit to continuous learning and improvement in relevant processes and outcomes.
• Quickly analyze incidents to understand root causes by gathering data and identifying patterns.
• Utilize critical thinking to devise effective solutions under pressure.
• Leverage strong technical knowledge to diagnose issues and collaborate with technical teams.

Requirements:

• 12+ years of experience in the information security domain, with at least 6-8 years dedicated to Security Incident Response.
• Hands-on experience with SIEM/SOAR tools such as Sentinel and ArcSight.
• Experience in defining and reporting KPIs for Security Incident Response.
• Familiarity with advanced SOC monitoring technologies and security measures.
• Knowledge across SOC domains, including governance, compliance management, and risk management.
• Comprehensive understanding of regulatory and compliance requirements affecting Information Security strategy.
• Preferred experience in the BFSI domain with proven experience in SOC functions.
• Strong understanding of key security standards and regulations such as NIST 800-61, PCI, and ISO 27035.
• Deep knowledge of Security Incident response frameworks and policy creation.
• Commitment to maintaining up-to-date knowledge of security trends, threats, and countermeasures.
• Competence in assessing and designing security posture determination processes, tools, and methodologies.
• Capability to review and approve use cases/playbooks for SIEM/SOAR tools.
• Ability to continuously monitor security hygiene and performance using tools and processes.
• Collaboration with other information security teams, operations, and tech teams to enhance security incident response resilience.

Language Requirements:

• Fluency in English is typically required; additional languages may be beneficial.

Location: United Arab Emirates
Work Conditions: On-site, Full-time