Job Description

Preparing and developing the cybersecurity strategy and performance indicators in alignment with the relevant legislations approved by the Government of Dubai and the UAE

Preparing and developing cybersecurity policies, methodologies, and programs within the organization according to the approved frameworks of the Government of Dubai and the UAE

Defining and reviewing the roles and responsibilities of all parties involved in implementing cybersecurity controls within the organization

Managing cybersecurity risks in a systematic manner aimed at protecting the organization's information and technological assets, in accordance with approved regulatory policies, procedures, and legislative requirements

Assessing cybersecurity risks in technical projects and prior to making any major changes in the technical infrastructure

Preparing, developing, and documenting cybersecurity requirements to protect the organization's external smart applications from cyber threats

Preparing, developing, and documenting cybersecurity requirements for managing system access identities, software permissions, and authorizations within the organization

Preparing, developing, and documenting cybersecurity requirements for managing backups and information encryption within the organization

Preparing, developing, and documenting cybersecurity requirements within contracts and agreements with external entities that the department interacts with

Preparing, developing, and documenting cybersecurity requirements for managing technical vulnerabilities in the organization, including periodic scanning, detection, classification, remediation, and risk management

Assessing and testing the effectiveness of cybersecurity enhancement capabilities within the organization

Preparing the budget related to cybersecurity requirements

Preparing the periodic cybersecurity audit plan

Analyzing cybersecurity audit reports and developing an action plan to address observations and recommendations

Preparing contingency cybersecurity plans for crisis and disaster situations, and conducting the necessary scenarios to ensure their effectiveness

Preparing and developing periodic cybersecurity awareness programs

Complying with the information security systems, policies, procedures, and programs, and reporting any security breaches or suspicious incidents to the direct supervisor

Performing any other tasks related to the division's work or as officially instructed

Qualifications

Master's / Bachelor's degree in Information Systems or equivalent

Master's degree holders are required to have 6 years of experience in the field of Information Security. * Bachelor's degree holders are required to have 8 years of experience in the field of Information Security.