'%3e%3cpath d='M15.3069 13.1535H1' stroke='%23333333' stroke-width='1.4' stroke-linecap='round' stroke-linejoin='round'/%3e%3cpath d='M15.3069 8.15347H1' stroke='%23333333' stroke-width='1.4' stroke-linecap='round' stroke-linejoin='round'/%3e%3cpath d='M15.3069 3.30693H1' stroke='%23333333' stroke-width='1.4' stroke-linecap='round' stroke-linejoin='round'/%3e%3c/g%3e%3cdefs%3e%3cclipPath id='clip0_126_10407'%3e%3crect width='16' height='16' fill='white'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e){kind=small}
Information Architect - Information Security - Healthcare Domain
QatarJob Responsibilities & Skills
- Provide regular reporting on the current status of the information security program management as part of a strategic enterprise risk management program
- Create and manage a targeted information security awareness training program for all employees and contractors and establish metrics to measure the effectiveness of this security training program
- Provide clear risk mitigating directives for projects with components in IT, including mandatory application controls
- Determine the information security approach and operating model in consultation with stakeholders and aligned with the risk management approach and compliance monitoring of non-digital risk areas
- Develop, implement, and monitor a strategic, comprehensive information security program to ensure appropriate levels of confidentiality, integrity, availability, safety, privacy, and recovery of information assets owned, controlled and/or processed by the organization
- Develop and enhance an up-to-date information security management framework
- Develop and maintain a document framework of continuously up-to-date information security policies, standards, and guidelines
- Create a framework of roles and responsibilities with regard to information ownership, classification, accountability, and protection of information assets
- Facilitate a metrics and reporting framework to measure the efficiency and effectiveness of the program, facilitate appropriate resource allocation, and increase maturity of the information security, and review it with stakeholders at the executive level
- Coordinate with the enterprise architecture team to build alignment between the security and enterprise architectures to ensure those information security requirements are implicit in IT architectures and security is built in by design
- Work with the compliance staff to ensure that all information owned, collected, or controlled by or on behalf of the company is processed and stored in accordance with applicable laws and other global regulatory requirements, such as financial, lending, and data privacy
- Ensure that security is embedded in the project delivery process by providing appropriate information security policies, practices, and guidelines
- Oversee technology dependencies outside of direct organizational control that includes renewing of contracts and the creation of alternatives for managing risk
- Manage and contain information security incidents and events that protect corporate IT assets, intellectual property, regulated data, and the company's reputation
- Monitor the external threat environment for emerging threats, and advise relevant stakeholders on the appropriate courses of action
- Develop and oversee effective disaster recovery policies and standards to align with the enterprise business continuity management (BCM) program goals
- Coordinate the development of implementation of incident response plans and procedures to ensure that business-critical services are recovered in the event of a security event; provide direction, support, and in-house consulting in these areas
TECHNICAL SKILLS
- A Bachelor degree in IT or equivalent.
- 9+ years of experience working in IT
- 6+ years of experience as an Information Security Specialist
- Professional security management certification such as CISSP, CCISO, CISM, and/or CISA required
- Strong knowledge of business management and a working knowledge of information security risk management and cybersecurity technologies
- Strong knowledge of information security best practices, standards, and frameworks, such as ISO/IEC 27000, NIST 800-53, and PCI DSS
- Proven track record and experience in developing information security policies and procedures, as well as successfully executing programs that meet the objectives of excellence in a dynamic business environment
- Knowledge of business IT ecosystems, SaaS, IaaS, PaaS, cloud computing, SOA, APIs, open data, open systems, microservices, event-driven IT and predictive analytics
- Exceptional soft and interpersonal skills, including teamwork, facilitation, and negotiation
- Strong leadership skills
- Excellent written, verbal, communication, and presentation skills
- Excellent planning and organizational skills
Salary : Max 180,000 QR
Didn’t find the job appropriate? Report this Job
'%3e %3cpath d='M24 48C37.2548 48 48 37.2548 48 24C48 10.7452 37.2548 0 24 0C10.7452 0 0 10.7452 0 24C0 37.2548 10.7452 48 24 48Z' fill='%23333333' fill-opacity='0.8'/%3e %3cpath fill-rule='evenodd' clip-rule='evenodd' d='M22.5299 19.0115V19.5849V29.0154V31.5316C22.5299 32.3403 23.1967 33 24.004 33C24.8114 33 25.4784 32.3358 25.4784 31.5316V29.0154V19.5849V19.013L29.4885 23.0077C30.0627 23.5795 31.0044 23.5743 31.5733 23.0077C32.1421 22.441 32.1423 21.4975 31.5735 20.9308L30.1054 19.4684C30.0891 19.4504 30.0724 19.4329 30.0551 19.4156L25.0837 14.4634L25.0479 14.4264C24.9234 14.3024 24.7807 14.2055 24.6281 14.1358L24.5952 14.1212C24.5751 14.1126 24.549 14.1022 24.5286 14.0946C24.0039 13.8983 23.3839 14.0068 22.9622 14.4268L22.9533 14.436L21.4743 15.9093C21.4615 15.9211 21.449 15.933 21.4367 15.9452L16.4286 20.934C15.8598 21.5008 15.8545 22.4389 16.4286 23.0108C17.0027 23.5826 17.9394 23.5827 18.5135 23.0109L20.0019 21.5283C20.0147 21.5164 20.0274 21.5043 20.0399 21.492L22.5299 19.0115ZM24.5952 14.1212C24.5751 14.1126 24.549 14.1022 24.5286 14.0946L24.5952 14.1212Z' fill='white'/%3e %3c/g%3e %3cdefs%3e %3cclipPath id='clip0_99_1825'%3e %3crect width='48' height='48' fill='white'/%3e %3c/clipPath%3e %3c/defs%3e%3c/svg%3e "Scroll Up"){kind=small}