Skip Ribbon Commands
Skip to main content
Sign In

Vacancies

Go to Root Site
Title
Job Title (Arabic)
Job Code
Department
Department (Arabic)
Job Type
Job Type (Arabic)
Job Qualifications

Qualifications:

Bachelor's degree in Computer Engineering or IT

Experience:

5-7 years of experience in IT Security including mandatory 4+ years of experience in GRC

BS/MS in Computer Science (or relevant work experience)

Proven experience architecting and implementing large-scale, enterprise wide GRC solutions.

Security certification desired ITIL, Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC) or Certified in the Governance of Enterprise IT (CGEIT)

Skills:

Demonstrated understanding of real-world application of (ISO/IEC) 17799:2005(E) standards, COBIT and RISK IT frameworks and PCI-DSS requirements.

Support GRC Lead and manage adherence to access controls and process controls framework for the WOQOD

Experience with one or more of the following tools: RSA Archer, SAP GRC.

Ability to clearly communicate with technical and non-technical stakeholders is a must, in order to translate technical jargon into business related decisions for management and clients, and business objectives into technical solutions.

Special emphasis is placed on demonstrated knowledge in the areas of risk assessment, strong understandings of secure communications, secure data storage, secure systems development, secure systems deployment and documentation.

Understanding of GRC concepts and best practices

Proficiency in design & development of GRC solutions

Enterprise Risk Management

Business Continuity Management

IT Security Management
Job Qualifications (Arabic)

Qualifications:

Bachelor's degree in Computer Engineering or IT

Experience:

5-7 years of experience in IT Security including mandatory 4+ years of experience in GRC

BS/MS in Computer Science (or relevant work experience)

Proven experience architecting and implementing large-scale, enterprise wide GRC solutions.

Security certification desired ITIL, Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC) or Certified in the Governance of Enterprise IT (CGEIT)

Skills:

Demonstrated understanding of real-world application of (ISO/IEC) 17799:2005(E) standards, COBIT and RISK IT frameworks and PCI-DSS requirements.

Support GRC Lead and manage adherence to access controls and process controls framework for the WOQOD

Experience with one or more of the following tools: RSA Archer, SAP GRC.

Ability to clearly communicate with technical and non-technical stakeholders is a must, in order to translate technical jargon into business related decisions for management and clients, and business objectives into technical solutions.

Special emphasis is placed on demonstrated knowledge in the areas of risk assessment, strong understandings of secure communications, secure data storage, secure systems development, secure systems deployment and documentation.

Understanding of GRC concepts and best practices

Proficiency in design & development of GRC solutions

Enterprise Risk Management

Business Continuity Management

IT Security Management
Job Role

JOB OBJECTIVE:

To conduct ongoing security monitoring for applications running on Woqod’s IT systems as per  the established guidelines and procedures; assess risks to IT security, and proactively highlight non conformances   to facilitate the development of a secure IT environment across Woqod.

Description

Security Policies & Procedures

Implement relevant security protocols for all new applications & systems installed at woqod to ensure compliance to the security policies & procedures; effective integration & consistency with the existing protocols.

Develop and maintain IS policy, standards, procedures and guidelines to support the organizations' information security program.

Inspection of Security Breaches

Review violations of applications security procedures and discuss procedures with violators to ensure violations are not repeated; escalate the case in case of a high level security breach or violation to the IT Security Head so that proper action can be taken

Good knowledge and understanding of security software / tools, such as Antivirus, SIEM, DLP, MDM, IDAM, PIM, MFA, NAC and data encryption etc., to protect organizational information

Analyze logs to identify attack trends.

Review in-house and 3rd-party applications/code for security vulnerabilities and best practices.

GRC Activities

Conduct information security risk assessments by following the Woqod internal risk assessment methodology and template.

Day to day evaluation of adherence to Woqod internal information security controls.

Identify weaknesses in the in place operational processes, systems and network and escalating these observations for management prioritization.

Promote information security awareness by providing hands on training and mentoring in the areas of GRC.

Work with a multi discipline team to create a solid information technology infrastructure and collaborate with teams to ensure that the relevant policies and procedures are implemented
Job Role (Arabic)

JOB OBJECTIVE:

To conduct ongoing security monitoring for applications running on Woqod’s IT systems as per  the established guidelines and procedures; assess risks to IT security, and proactively highlight non conformances   to facilitate the development of a secure IT environment across Woqod.

Description

Security Policies & Procedures

Implement relevant security protocols for all new applications & systems installed at woqod to ensure compliance to the security policies & procedures; effective integration & consistency with the existing protocols.

Develop and maintain IS policy, standards, procedures and guidelines to support the organizations' information security program.

Inspection of Security Breaches

Review violations of applications security procedures and discuss procedures with violators to ensure violations are not repeated; escalate the case in case of a high level security breach or violation to the IT Security Head so that proper action can be taken

Good knowledge and understanding of security software / tools, such as Antivirus, SIEM, DLP, MDM, IDAM, PIM, MFA, NAC and data encryption etc., to protect organizational information

Analyze logs to identify attack trends.

Review in-house and 3rd-party applications/code for security vulnerabilities and best practices.

GRC Activities

Conduct information security risk assessments by following the Woqod internal risk assessment methodology and template.

Day to day evaluation of adherence to Woqod internal information security controls.

Identify weaknesses in the in place operational processes, systems and network and escalating these observations for management prioritization.

Promote information security awareness by providing hands on training and mentoring in the areas of GRC.

Work with a multi discipline team to create a solid information technology infrastructure and collaborate with teams to ensure that the relevant policies and procedures are implemented
Submission Deadline
Status
Subsidiary
Apply
Attachments
Content Type: Career