Sponsored by Keepnet Labs

I am hiring CISO for KSA

Hiring
27 Jan
By Announcemets , , , , , , 0 Comments

I am hiring CISO for KSA

I have some great news to my Friends in Saudi Arabia,  I will be hiring the country CISO for KSA who will report directly to me, if you are an experienced Cybersecurity professional, or know someone who will be suitable then please apply to the role via the below link at LinkedIn:

https://www.linkedin.com/jobs/view/2397564818/

The Role Responsibilities

 

  • The Country Information Security Officer (CISO), Saudi Arabia is a permanent role that requires strong business acumen and deep knowledge and experience in the ICS (Information and Cyber Security) field.
  • This role will require hands on approach to understand and support Saudi Arabia on the ICS Risk Type Framework to maximize risk reduction and capability improvement, while meeting compliance and legal obligations, and minimising client impact. The role will require to have end-to-end view on all ICS activities with support to regular risk assessment, tracking, follow up and reporting at the relevant forums. The role reports directly to the Regional Chief Information Security Officer.
  • The Saudi Arabia CISO will provide exceptional leadership, maintain highly constructive relationships with key stakeholders, and possess strong security risk framework knowledge to mobilize effort and commitment.

Business:

  • The primary purpose of this position is to ensure that the management of ICS risk is operating effectively and efficiently and to provide assurance that ICS risk is appropriately managed within the country in accordance to regional and global bank standards.
  • Saudi Arabia CISO will execute a robust and efficient plan to rollout ICS RTF by working with key stakeholders including COOs/CIOs direct teams, ICS RTF Implementation Programme teams, Office of the CISO and Security technology teams. The plan will incorporate digital footprint discovery, risk assessment, definition and implementation of controls as guided by the ICS RTF and tailored to the relevant areas.
  1. Supporting the Regional CISO in the implementation of the ICS Risk framework including working with stakeholders to identify, assess and rate the information assets, build out the risk profile per the framework, initiate risk assessments and put together treatment plans.
  2. Use qualitative and quantitative data sources to validate Key Control Domains (KCD) and associated controls, accelerate risk assessment process, validate business risk profile and develop action plans to remediate to bring ICS risk back into appetite.
  3. Follow up on identified thematic cyber issues, develop processes to address issues from re-occurrence and ensure cyber hygiene across the whole portfolio.
  4. Provide regular status updates including progress, top risks and issues to the respective country and regional forums for the relevant domains. Track regulatory status, key milestones, risks, dependencies and issues.
  5. Interface with the Business and Country ICS Leads to assist with sharing of risk profiles, advising on cyber risk issues and addressing areas of concern.
  6. Interface with Technology forums to ensure security technologies are operating with input from countries and be actively involved in the roadmap of these technologies by providing regional/country input.
  7. Development of risk treatment plans for the assigned areas in conjunction with the business and technology teams. Interface with other areas to ensure dependencies are known and prioritised. Negotiate timelines to ensure proper remediation by maintaining support and organizational alignment.
  8. Adapt to emerging and horizon risks and address issues to maximize outcomes. Urgent and timely action for risks and issues which adversely impact cyber risk profiles.
  9. Re-planning and prioritising as required to maximise risk reduction.
  10. Coordinate and plan for cyber crisis management exercises, build response and recovery capabilities, workarounds, ensure up to date playbooks etc.
  11. Assist with other cyber activities underway

People and Talent

 

  • Lead through example and build the appropriate culture and values
  • Set appropriate tone and expectations from team and work in collaboration with risk and control partners
  • Ensure the provision of ongoing training and development of people, and ensure that holders of all critical functions are suitably skilled and qualified for their roles ensuring that they have effective supervision in place to mitigate any risks
  • Employ, engage and retain high quality people, with succession planning for critical roles.
  • Responsibility to review team structure/capacity plans
  • Manage team of country ISOs that is aligned and scaled to the ICS risk control needs of Standard Chartered Bank Saudi Arabia
  • Set and monitor job descriptions and objectives for direct reports and provide feedback and rewards in line with their performance against those responsibilities and objectives
  • Uphold and reinforce the independence of the second line ICS Risk function

Risk Management

 

  • Deliver the defined aspects of the Country ISO, Saudi Arabia role to support the Group ICS risk management approach and objectives
  • Ensure that the Country ISO, Saudi Arabia role is managed in accordance with the defined CISO Governance Risk Type Framework and associated Policy and Standards; and that issues are identified, escalated, and addressed as appropriate

Governance:
Establish strong ties into the relevant regional and country leadership, governance, risk and control committees to ensure adequate monitoring, tracking and governance of ICS risk. Drive integration of ICS Risk Type Framework into all businesses and functions in the country and utilise for the ongoing governance of region and country risk

Regulatory & Business Conduct

 

  • Display exemplary conduct and live by the Groups Values and Code of Conduct
  • Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, this includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct
  • Effectively and collaboratively CIO-Country Head Tech & Ops.

Apply now to join the Bank for those with big career ambitions.

To view information on our benefits including our flexible working please visit our career pages. We welcome conversations on flexible working.

https://www.sc.com/en/global-careers/

Hiring CISO Saudi Arabia

Expert Speaker Dr Erdal Ozkaya

Standard Chartered Regional CISO Erdal Ozkaya

Share this post

Author

Erdal is an Australian IT Professional with business development & management skills who focuses on securing the Cyber Space & sharing his real-life skills as a Security Adviser, Speaker, Lecturer, Author and Cybersecurity Architect.

Leave a Reply

Your email address will not be published. Required fields are marked *

Related Posts

Conscientious Achiever , Erdal Ozkaya
12 Aug

Conscientious Achiever , Erdal Ozkaya 2010

Conscientious Achiever, From Australian Turkish Business Council Newsletter and Web site  About ATBC ? The Australian Turkish Business Council is a... read more

Network Security Administrator Erdal
19 Jan

Network Security Administrator (ENSA) Certification Free Short Course -2014

Network Security Administrator This short course is designed to partially prepare you for certification as an EC-Council Network Security Administrator (ENSA). The... read more

Preventing and Countering Cybercrimes in Azerbaijan Erdal Ozkaya
19 Apr

Preventing and Countering Cybercrimes in Azerbaijan -0SCE Keynote

Preventing and Countering Cybercrimes in Azerbaijan Within the “Preventing and Countering Cybercrimes in Azerbaijan” Project, The OSCE Project Coordinator in... read more

CISO Summit Erdal Ozkaya
14 May

Middle East CISO Summit 2020 – Join for FREE

Speaking at Middle East CISO Summit I am pleased to announce that I will be speaking at CISO MAGs "... read more

Cybersecurity - Attack and Defense Strategies - Second Edition
07 Dec

Cybersecurity Attack and Defense Strategies – 2nd Edition

Cybersecurity Attack and Defense Strategies - Second Edition: Counter modern threats and employ state-of-the-art tools and techniques to protect... read more

Defense Against Terrorism NATO Erdal Ozkaya
13 Jan

Defense Against Terrorism -18

 Defense Against Terrorism by NATO  2018 has started great , my research journal has been published at the  North Atlantic... read more

12 Jul

WORLD AI SHOW 2020 is now free

WORLD AI SHOW 2020 Prepare for the future with World AI Show virtual event ; where I am also... read more

Logical Operations Erdal Ozkaya
18 Jul

Logical Operations Certifications Industry Contributor 0

Logical Operations / Communispond Earners of the Logical Operations Certifications: Industry Contributor badge have served as Subject Matter Experts and/or... read more

E-Crime and Cybersecurity Congress Congress Erdal Ozkaya
03 Mar

E-Crime and Cybersecurity Congress in Dubai (12th- join us Free )

E-Crime and Cybersecurity Congress in Dubai 10th March 2020 Securing citizens and stakeholders: Governments and corporations must provide next-generation service with security... read more

30 Nov

Featured at GISEC 2020 , Honored to be there

Featured at GISEC I am honored to be featured speaker at GISEC this year. I will be having a breakout... read more