Background
As part of the Group Technology team, the cybersecurity function will play a crucial role in ensuring that the Ooredoo Group\'s technology, network, operations, planning, budgeting, and related services align with the group\'s overall strategy and roadmaps. You would be expected to work collaboratively with other members of the team to develop and monitor security scorecards, targets, and milestones that support effective cybersecurity measures and reduce overall security risk. As Director of Cyber Security within the Ooredoo Group Technology Department, you will align the greater security organization with Ooredoo Group\'s vision and direction and lead the development of Group-level information/cyber security domain. Ensuring strategic guidance and tactical support to achieve greater security maturity and standardization across Ooredoo OPCOs. You would provide strategic and tactical support to achieve greater security maturity and standardization across Ooredoo OPCOs, advise on technology blueprint and architecture, and provide incident response support during major security incidents. Additionally, you would advise and manage OPCO Governance, Risk, and Compliance activities, establish quality Group-wide scorecards, and provide information/cybersecurity advisory support to group-level initiatives and programs. Role Profile
As a critical member of the Ooredoo Group Technology Department, responsible for driving the organization\'s cybersecurity strategy and ensuring alignment with the overall vision and direction of the organization. Your role will be critical in ensuring that Ooredoo Group has a comprehensive and effective information/cyber security program in place to protect its assets, customers, and reputation from cyber threats.

• Provide strategic guidance and tactical support to OPCOs strategic plans, budgets as technical Subject Matter Expert to achieve greater security maturity and standardization across Ooredoo OPCOs.
• Execute and support periodic evaluation of OPCO As Is IT & Telecommunication information/cyber security assessment and recommend the required strategies and roadmaps.
• Establish and manage the quality Group-wide scorecards with explicit metrics for cyber security.
• Participate in group wide synergy and harmonization initiatives and events in information\\cyber security.
• Advisory and incident response support within OPCOs during major security incidents and provide guidance to mitigate underlying risks.
• Advise and support technology blueprint and architecture and technical selection of information\\Cyber security solutions and support OG sourcing in vendor negotiation of security solutions.
• Advise and manage OPCO Governance, Risk and Compliance activities, specifically standardization and compliance to security policies and procedures.
• Provide information\\cyber security advisory, guidance, and support to group level initiatives and programs

Experience
Minimum Experience & Essential Knowledge

• Proven track record with 10 years\xe2\x80\x99 experience directly related to the duties and responsibilities within similar role in Mobile Financial Services and/or Telecommunication/Hi-Technology industry or service provider industry.
• Knowledge of Financial, Communications Industry, especially in telecommunication and IT field, TMF, specifically ODA, TAM, COBIT, ITIL, eTOM, SABSA strongly recommended.
• Strong understanding of technology and industry trends, security best practices, and management of technology innovation operations.
• Demonstrated understanding of cloud technologies.
• A strong understanding of risk and associated business impact of information/ cyber security frameworks, controls, technologies, policies, and architectures.
• Experience with common information security management frameworks: International Standards Organization (ISO) 2700x, the IT Infrastructure Library (ITIL) and Control Objectives for Information and Related Technology (COBIT) frameworks.
• Experience working with legal, audit and compliance staff.
• Proficiency in performing risk, business impact, control, and vulnerability assessments, and in defining treatment strategies.
• Strong critical thinking and data analysis skills to analyse business requirements security requirements and balance appropriate security controls and risk reward outcomes.
• Experience in establishing information/cyber security and risk metrics for measurement and reporting.
• Proficient in emerging technology platforms \xe2\x80\x93 API Gateways, Blockchain, Cloud Services (IaaS, PaaS, SaaS), containerization, Big Data, AI and related cutting-edge security technologies and methodologies.

Qualifications
Minimum Qualifications

• Bachelor\xe2\x80\x99s degree or masters in IT/ engineering/Telecommunication, business administration, Information/cyber security, or any similar relevant experience.
• Any related professional certification and combination of such certifications as CISSP, CISM, OSCP, CRISC, CCISO, CDPSE, in addition TOGAF, and ITIL advantageous.