Information Security Compliance Manager
3 weeks ago
1. Ensure proper management of the Security Compliance resources to support ongoing business initiatives from a security compliance perspective.
2. Ensure the annual review and update of the area’s processes and procedures with the development and adherence to the developed SLAs.
3. Support the implementation of the key strategic business initiatives and projects through conducting the necessary compliance checks and security assessments such as (Code Reviews and Penetration Tests) before systems’ rollout.
4. Manage and oversee the vulnerability management program to ensure proper identification, assessment, reporting and timely remediation of the identified vulnerabilities.
5. Review periodical vulnerability scans and penetration tests results to prepare a long/medium term remediation plan in order to mitigate any existing threats and avoid any potential risks.
6. Ensure effective participation in the projects/Business Requirement Documents (BRD) initiation cycle, security testing and validation process including Penetration Testing, Dynamic Scans, Secure Code reviews, internal security controls checks/validations,etc. within the overall software development and acquisition process to assess and identify areas of concern from security compliance perspective in line with regulations, standards and best practices.
7. Ensure & maintain the annual compliance with PCI-DSS, SWIFT CSP, EU GDPR and CBE regulations & other applicable standards and regulations.
8. Ensure compliance with Information Security and Business Continuity Management ISO standards to maintain the acquired ISO certificates.
9. Manage vendor communication across all security testing/services requirements, while ensuring appropriate agreements are in place with third parties to preserve the bank’s information confidentiality, integrity and availability.
10. Work collaboratively with Business units, IT teams, Audit, Legal and risk management functions to address open gaps/issues driven from internal/external audit, independent assessments and reviews as applicable, and ensure proper tracking mechanism is in place in coordination with the relevant stakeholders.
11. Ensure that a proper process is maintained across the different IT areas for enforcement and closure of vulnerability management and patch management gaps.
12. Maintain a proper security compliance portfolio and ensure proper reporting to the relevant committees as applicable.
13. Manage and operate a number of security tools (within security compliance scope) such as Firewall Policy Management (Compliance Modules), Vulnerability Scanning and Enterprise Security Management tools, Dynamic and static code scanning/review tools, Enterprise Security Monitoring tools.
14. Ensure the annual license and support renewal are done in a timely manner through the bank’s approved process lifecycle for all tools managed by Security Compliance.
15. Ensure proper validation of the responses obtained for open internal/external audit issues before communicating with Information Security Management to properly assess and track the open audit issues.
16. Resolve communication/misunderstanding conflicts between Security Compliance team and different stakeholders to ensure a streamlined process is in place.
17. Reflect necessary compliance triggers in the Security Operations Center use cases and participate in reviewing use cases development, testing and launching to be monitored on ongoing basis by the SOC team.
18. Ensure adherence to the defined compliance operating model to support the different security controls and compliance requirements and communicate violations to the relevant teams.
19. Participate and recommend improvements to policies, processes and procedures and manages their implementation to ensure all relevant procedural / legislative requirements are fulfilled.
20. Participate in the formulation and implementation of the Information Security Management Department strategy to ensure the alignment.
21. Supervise the day to day operations of the Information Security Compliance team providing some guidance in the related area, encouraging teamwork and facilitating related professional work processes in order to achieve high performance standards.
22. Supervise the activities and work of subordinates to ensure that all work within a specific area is carried out in an efficient manner and in compliance with the set policies, processes and procedures.
**Requirements**:
- Bachelor’s degree of Engineering, Computer Science, Information Security or equivalent.
- Minimum 8 - 10 years of experience in IT or related fields Information Security auditing/compliance (recommended)
- Risk Management Background with Risk analysis skills
**- Recommended Certifications**:
- CISM
- ISO Lead Implementer / Auditor
**- Mandatory Certifications**:
- CISA
**Skills**:
- Very good command of English and Arabic languages
- Very good Conflict Management skills
- Very good communication and presentatio
-
Manager, Information Security
3 days ago
مصر, Egypt Egyptian Banks Company Full timeIdentifies infrastructure Information security risks and define the controls required to mitigate the risk. - Develop and maintain organization, Third party and vendors risk management framework - Conduct continuous risk assessment for existing and new IT assets - Conduct Vendors and third party risk assessment. - Establish reporting communications that...
-
Information Security Grc Lead
3 days ago
مصر, Egypt AXA Egypt Full timeImplements security controls, risk assessment framework, and program that align to regulations requirements, ensuring documented and sustainable compliance that aligns with AXA Group Security Standards. - Manage the cyber and information security risk management lifecycle, including gaining assurance of all existing and relevant cyber and information...
-
Information Security Assessment Lead
3 days ago
مصر, Egypt PepsiCo Full time**Overview** Main Purpose of the Role: The role will be responsible for reviewing Information Technology and Information Security systems solution deliverables throughout the project lifecycle to help identify risks and security requirements, validate project phase completion, and act as a liaison to engage the various security teams as needed to assess...
-
Information Security Specialist
4 days ago
مصر, Egypt Allianz Egypt Full time**Responsibilities**: - Control & Review Audits/assessments; management of incident prevention, detection and incident response and ensure ongoing maintenance of security. - Risk Assessment Develop and implement an ongoing risk assessment program targeting information security. Recommend methods foe vulnerability detection and remediation and oversee...
-
Cyber Security Compliance Specialist
5 days ago
مصر, Egypt Vodafone Full time**Role Purpose**: - Implement the ISO27001 & 27017, PCI DSS certifications for cloud environment - Ensure full compliance of Cyber security controls on Public cloud environments based on global and local standards. - Building Processes and workflows along with a consolidated and collaborative integration of IaaS, SaaS, and PaaS cloud services. - Working...
-
Security & Compliance Specialist
1 day ago
مصر, Egypt FlairsTech Full timeDetails Required Experience 1 year at least - Department Customer Operations - Career LevelSpecialist Position Location Cairo **Skills**: Research Skills Problem Solving Security troubleshooting Technical Support Requirements and responsibilities **Responsibilities**: - Assist in completing customer security questionnaires for Upland Software...
-
Governance Risk
7 days ago
مصر, Egypt Pillars Consultancy Full timeDepartment\ GRC\Information Security Division Risk Reports To CISO Location Head Office No. of Employees per job 2 **Job Purpose** Development of cybersecurity policies, and governance of security structures Cyber Security and Operations, Cyber Security Risk Management, and Compliance With the organization’s risk management and cyber security requirements...
-
Presales Compliance Consultant
2 days ago
مصر, Egypt Orange Business Full time**About the role**: - Responding to complex customer RFI/P/Audit security & compliance requests received from multiple regions as per the International Bid Process (IBP). - Updating, expanding and ensuring the availability of standard response material to support Pre-Sales teams. - Actively contributing to the development of Global Pre-Sales Security &...
-
Compliance & Aml Specialist
2 days ago
مصر, Egypt Khazna Tech Full timeCompany Description Khazna was founded in 2019 with a mission to improve the financial well-being of 20M+ underbanked Egyptians, who have little access to formal financial services by providing access to convenient, effective and secure smartphone based financial services. We are consistently on the lookout for rock stars to help us solve for financial...
-
Compliance Specialist(4-month Contract)
4 days ago
مصر, Egypt Parent ApS Full time**Location**: Remote **About Us**: Parent, a leading cloud-based SaaS solution provider, is on the cutting edge of innovation in childcare management solutions. Our team operates remotely, fostering a collaborative and dynamic work environment. As part of our commitment to maintaining the highest standards in our operations, we're seeking a diligent and...
-
Assistant Security Manager
7 days ago
مصر, Egypt Hilton Full timeAssistant Security Manager An Assistant Security Manager directs security personal and works with Department Heads to deliver a safe Guest and Member experience while ensuring compliance with local safety legislation and hotel emergency procedures. **What will I be doing?** As an Assistant Security Manager, you will be responsible for directing and...
-
Info Security Specialist
2 weeks ago
مصر, Egypt PepsiCo Full time**Overview** The main purpose of the role is to lead, manage, and own the activities necessary to perform information security risk assessments on the third parties with which PepsiCo enters a business relationship for services around the world of varying levels of criticality and complexity. The third-party information security risk assessor will act as a...
-
Afreximbank: Manager, Agency
5 days ago
مصر, Egypt CA Global Headhunters Full timeNature & Scope The role of the position holder will be to provide middle office Agency & Security Trustee functions for the Bank's syndicated lending activities. The job holder initiates and is responsible for the recommendation and implementation of the Bank's policies in these areas. **Responsibilities**: **Facility Agency & Administration**: Ensure...
-
Afreximbank: Manager, Agency
5 days ago
مصر, Egypt CA Global Headhunters International Full timeReference No. JABLR011 **Nature & Scope** The role of the position holder will be to provide middle office Agency & Security Trustee functions for the Bank's syndicated lending activities. The job holder initiates and is responsible for the recommendation and implementation of the Bank’s policies in these areas. **Responsibilities**: **Facility Agency &...
-
Security Expert
2 days ago
مصر, Egypt Orange Full timeDuties in coordination with L2 DSOC teams as escalation level for following activities - Troubleshoot and resolve high-complexity customer faults effectively. - Manage escalations with technology vendors and coordinate resolution efforts. - Perform service changes, assess risks, and implement requests within the agreed Change Management process using Orange...
-
Associate Security Project Manager
5 days ago
مصر, Egypt Orange Full timeThe Associate Security Project Manager is an empowered project management role with full end-to-end responsibility to deliver and control results, time, resources and quality for all Security Projects. The role of the Associate Security PM is to lead a number of small to medium scale projects, or to lead a security stream on a large scale project providing...
-
Associate Security Project Manager
2 days ago
مصر, Egypt Orange Business Services Full time**About the role**: The Associate Security Project Manager is an empowered project management role with full end-to-end responsibility to deliver and control results, time, resources and quality for all Security Projects. The role of the Associate Security PM is to lead a number of small to medium scale projects, or to lead a security stream on a large scale...
-
Lead Security Architect
3 days ago
مصر, Egypt Rackspace Full timeRackspace Technology is a leading provider of expertise and managed services across all the major public and private cloud technologies. We’ve evolved Fanatical Support to encompass the entire customer journey — providing Fanatical Experience from first consultation to daily operations. Our passionate experts combine the power of proactive, always-on...
-
Compliance and Risk Assistant
3 days ago
مصر, Egypt World Health Organization Full time**Grade**: G5 **Contractual Arrangement**: Fixed-term appointment **Contract Duration (Years, Months, Days)**: 2 years (Subject to availability of funds, satisfactory performance.) **Job Posting**: Feb 8, 2024, 3:42:23 AM **Closing Date**: Feb 22, 2024, 4:59:00 PM **Primary Location**: Egypt-Cairo **Organization**: EM/RDO Office of The Regional...
-
Cyber Security Engineer
6 days ago
مصر, Egypt Allianz Partners Full timeWe are Allianz Partners. The leader in assistance and insurance solutions in the areas of international health, assistance, automotive and travel insurance. Allianz Partners is a global family of over 19,000 employees across 78 countries. This role is in the International Health part of the business, which has a number of well-known customer facing brands...