Head of IS Risk Management

The purpose of this role is to ensure managing and overseeing the full spectrum of information security risk management while ensuring completion of review of the risk management framework to cater for the Group’s needs and requirements. It additionally involves identifying, assessing, and treating risks to the confidentiality, integrity, and availability of the company’s assets.

Key Accountabilities:

• Manage and supervise cybersecurity risk assessment for business services, processes, and technologies.
• Stay abreast of global and regional information security threats by reviewing threat intelligence reports from Group Information Security Department’s (GISD) Cyber Threat Intelligence unit and reflect findings while identifying risks.
• Oversee and manage risk monitoring plans and collaborate with relevant business units to ensure an effective implementation of mitigation controls.
• Work with the Head of IS Governance and Risk Management for continuous improvements in policies, procedures, standards, and guidelines in line with risk assessment findings and recommendations.
• Present management reports highlighting the Group’s risk status and posture.

Location:
United Arab Emirates

Requirements:

• Bachelor’s degree (master’s degree preferred) in technology or related field or equivalent years of relevant work experience is required.
• Strong knowledge of banking and financial institutions processes and modus operandi, information security technologies, processes, and systems.
• Certified Information Systems Security Professional (CISSP) or Certified in Risk and Information Systems Control (CRISC) Certifications are strongly preferred.
• Familiar with GRC tools and other risk management platforms.