Job Description

Job Title VP & Head of Information Security

Description

One FAB Tower, Abu Dhabi, United Arab Emirates

Full-time

Division: Magnati

Sub Division: Magnati - Operations

Company Description

Magnati is a regional leader in the payment solutions industry focused on direct acquiring, issuer processing and acquiring processing.

Magnati provides government, merchant and institutional clients with an intelligent payments platform that monetises data, using next generation technology to deliver improved experiences and increased efficiency. The Magnati brand is charged with energy and potential and is set to transform payments into possibilities.

Headquartered in Abu Dhabi, Magnati's expertise and relationships provide a platform for Magnati to attract international partners, while setting a new standard for innovation and delivery in the payments industry



JOB PURPOSE:

The Head of Information Security and Business continuity will be responsible for managing the delivery for Magnati Information Security and Business continuity services to Magnati. He / She shall ensure the information security program is in alignment with the regulatory, legal and statutory requirements of Magnati.

ACCOUNTABILITIES:

Security Compliance requirements at maganti.

Oversee, Review, Approve and Maintain Information security/cyber security strategy, IS/regionalCyber security policy, IS/cyber security architecture, IS/Cyber security risk management process;

Highlight security status & concerns to management.

Consult Business Units, IT and information security staff to ensure that implementation plan is established.

Track open Audit issues on information security to closure

Risk assessments for maganti IT implementations

make sure the critical security risks are discussed and mitigation controls are directed at risk committee

Prepare the Security Strategy for maganti

Prepare the budget Information security program at maganti

Oversee the Information Security delivery at maganti

Review the GIT and GSO SLA between maganti

Assurance on the data confidentiality, integrity and availability at maganti

Update Executive management regarding information security initiatives, major risk, threats, attacks and incidents.

Participate in discussion and coordinate activities between Business units, support functions, Compliance Team, GIT and GSO for information security, planning, implementations and review.

Ensure information security compliance as per regulatory requirements. (ISO27001, NESA, PCI DSS, CBUAE regulations, or and any other as applicable)

Closely work with FAB Security team on Information security issues, risk and initiatives pertaining to maganti

Ensure Technology Risk Assessments, information security Review and Third Party Risk assessments are conducted

Ensure review of ODCs and third party vendors providing production support.

Review Management Dashboards/Security MIS related to Patching, VA, PT, Baselines, Network devices security review and end point security controls

Ensure BRDs, Solution Design, Concept Design and any other requirements from business units and GIT meets the security policies.

Ensure the Business continuity plan are reviewed annually

Ensure business continuity table top exercise conducted as per policy

Ensure IT assets are being monitored for the security events and incidents

Review and track compliance of Data Privacy and Protection controls

Assist and support for Internal and External Audits.

Oversee the tracking of all issues identified during the information security activates, Internal and external audits.

Govern the security awareness and training program for Magnati staff and ensure the program is conducted

Qualifications

Information Security or IT Security or IS Audit background

Must be having a minimum of 15 years of Experience.

Expert knowledge of Information Security Domains and should be certified (CISA, CISSP or CISM or any other relevant security certification)

Experience in a similar type of role in a multinational business and dealing with regulatory authorities, governments and industry bodies

Experience in managing and govern an information security team.

Knowledge of ISO27001, NESA, Data Privacy, PCI DSS Central bank regulations and other relevant information security standards as applicable.

Ability to make good judgments on security risk and to prioritize resources and activity around managing those risks

Able to conduct the role independently and with integrity

Ability to plan, organize and prioritize tasks and projects

Good personal communication skills capable of dealing with wide range of stakeholders, including senior management, regulatory authority.

Only registered members can apply for jobs.

You have applied correctly

A message has been sent to the employer, you are going to receive the reply soon. Good luck!

You have applied correctly

The request has been sent correctly. However, we have seen that your resume is incomplete. We highly recommend you to fill it to let the employer know you. These are the fields you have empty: