Information Security Comp

About the job

Job Summary:

Security Compliance is responsible for managing related Security Compliance Team. This includes developing, implementing, and maintaining an information security compliance status that meets the requirements of industry regulations, standards, policies, and legal requirements within their functional area. Also ensures that compliance objectives are achieved in addition to Services, Systems and processes to comply with legal and regulatory requirements.

Responsibilities

• Perform Gap analysis for the compliance of security frameworks for existing and new information systems.
• Assist in Information Security policies development and maintenance
• Supply the required contributions related to the regulatory requirements & Audit reports analysis
• ensure implementing and maintaining the Information Security policies in line with business strategies and objectives & regulatory requirements within their functional areas
• Provide timely and accurate information to the external and internal auditors and the Compliance
• as and when required.
• Identify and report on risk of non-compliance to initiate corrective action and meet business regulatory requirements
• Ensure that Information Security final controls are applied for security certification for the sign-off for going live projects.
• Monitor related security compliance and follow up improvement activities
• Ensure that Information security countermeasures that meet the requirements of the business, audit, as well as the information security policy are applied
• Assist in planning and execution of information security awareness program.
• perform regular gap analysis against Information Security related standards and regulations.
• Participates in business continuity planning (BCP) activities when required by regulation or senior leadership
• Prepares reports for the status of compliance efforts, etc within their business area
• Ensure & evaluate the compliance with the CBE CSF Controls and develop reports for the discovered gaps.

Qualifications

• Degree: Bachelor degree or equivalent with 8+years in cybersecurity field & IT field, Preferred Certifications: CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), CRISC, CISA, GCIH, or GIAC.
• Experience: 8+years in cybersecurity & IT field

liance Manager