Our client

Our client is providing an advanced transport network for the people of Dubai. They have been high on the government’s agenda, which is evident from its initiatives to enhance the public transport facilities and improve roads across the emirate to make travel safer and smoother. Our client is responsible for planning and providing the requirements of transport, roads & traffic in the United Arab Emirates.

Career objective

Achieving digital security and managing related operations, complete security governance and ensuring the implementation of information security and digital security controls in projects and managing risks and technical variables data and artificial intelligence.

Tasks and responsibilities

• Participate in the technical planning of the department in the field of information security and digital security in terms of planning budgets, technical solutions and projects, data controls, processes and policies, and then submitting technical reports to the direct official in the authority.
• Ensure the development of plans and compliance with and closure of information security requirements at the authority level, which support the operational work systems and administrative systems in the authority in accordance with best practices.
• Ensure that all initiatives for the department get the funding they need.
• Provide technical reports to the line manager.
• Follow up on key performance indicators related to cybersecurity and submit them to the line manager
• Dealing with risks and ensuring that corrective measures are properly implemented according to the approved methodology And submit reports in accordance with the regulations and procedures followed in the Authority
• Participate in supporting the administration in innovation and leadership activities in the fields of security, technology and raising ideas
• Observations, recommendations, studies and applicable research for the direct supervisor
• Studying observations related to the security of management systems and data and aligning them internally with the Security and Control Department in the Authority and externally with other government agencies, partners and society, and preparing executive reports or research for senior management on the state of cybersecurity and the level of threats in accordance with procedures
• Work on creating and developing operating manuals / procedures for the various units in the Security and Monitoring Department and submitting them to those concerned in the Authority
• Ensuring the implementation of cybersecurity governance and business continuity by monitoring security threats, analyzing real-time immediate threats, sorting them when an error occurs, identifying errors and gaps in the breach, and involving stakeholders to understand security problems and resolve them in appropriate ways.
• Participate in supporting operations to ensure the security of the Nol system and the compatibility of safety standards with local best practices, and prepare technical reports in this regard
• Carry out Assure Security checks and take care of security vulnerabilities from technology providers and implement confirmed security tests in coordination with the concerned authorities 
• Perform any other tasks and responsibilities related to the job and according to what is assigned to him and respond to calls and carry out work after official working hours, or during weekends if required for urgent and emergency tasks

Academic qualification and practical experience

• Master's degree in security, information technology, computer science, management information systems or software engineering from an accredited educational institution with a minimum of 9 years of experience in the field of specialization or in the field of information security
• Bachelor's degree in security, information technology, computer science, management information systems or software engineering) or any similar major from an accredited educational institution with a minimum of 11 years of experience in the field of specialization or in the field of information security

Required knowledge and skills

• Work independently with minimal supervision 
• CISM, an industry-accredited certification (for example, but not limited to, Certified Information Systems Auditor CISSP Certified Information System Security Professional PCI-DSS. 
• Demonstrable working knowledge for adoption 
• Enterprise Architect or Security Systems Architect with training
• Experience and certification EMV hands-on experience validation and validation of a payment/financial system (AI, IOT, OT)