Senior Manager

Website Emirates Flight Catering

Job Description:

Manage Risk identification and Mitigation that will ensure EKFC Infrastructure comply with all Operational, Legal and Security requirements. Review Design, Implementation of Information security controls across all new and existing IT Services to ensure SLA’s are met, GRC process followed, achieve desired level of risk appetite implemented by IT and improve Cyber security risk posture of EKFC.

Job Responsibilities:

  • Work with EKFC IT team to ensure IT Services/projects both New and existing, follow strict IT Security guidelines
  • Own KPI’s that provide view of Security state at EKFC and all stakeholders and own cyber-security risk dashboard including security metrics, monitoring parameters and reporting requirements
  • Reduce IT operational risks to an acceptable level by identifying and classifying risks, defining and implementing mitigation and corrective actions where required
  • Implement regular plan for vulnerability assessments, penetration tests, technical risk assessments and compliance reviews on EKFC IT infrastructure
  • Ensure any security weaknesses and risks are managed through their life-cycle from identification to closure and provide appropriate visibility of same to Management
  • Update corporate Information Security Policy and ensure IT comply with policies and appropriate international standards
  • Manage risk identification and assessment initiative along Internal Audit to ensure risks in EKFC systems recorded, mitigated and communicated to relevant stakeholders in IT and Group
  • Review overall Cybersecurity technology to identify, protect and respond to Incidents and work with 3rd party partners, Eg : Security Operation Centre, to Proactively monitor and deliver appropriate & quick remediation for Incidents
  • Build design, implementation and any applicable certification on Cybersecurity aligned with standards like ISO/IEC 27000 series, PCI/DSS, Data Protection Laws, GDPR, NESA, Sarbanes Oxley etc.
  • Defines EKFC ‘s vision for Cybersecurity Policies, Technologies and Metrics aligned to groups strategies & priorities
  • Collaborate with EKFC IT Security team with input on security policies, Risks and ensure controls in place
  • Assess Cybersecurity services in EKFC – so that Security Incidents are reduced and 95% SLA is delivered
  • Leads EKFC Cybersecurity Steering committee to approve standards and processes, and reports against IT-wide compliance. Manage security governance and review of policies to ensure Information systems are secure and any Intrusion are detected and appropriate action taken including updating policy framework
  • Define and implement a risk management framework for IT risks facing EKFC including operational, legal, regulatory and security risks that could impact company. The framework should be based on industry standards, industry best-practices and business requirements

Job Requirements:

  • Security Frameworks – ISO2700130000/CIS Critical security controls, NESA etc.
  • Vulnerability Assessment and Penetration Testing (VAPT)
  • IT Security/Cybersecurity
  • Mandatory 5 years’ experience in IT Security leadership covering IT Audit, IT Risk and Cybersecurity
  • Must have lead Information Security/Risk in a Global organisation with Complex/Hybrid IT Environment
  • Strong knowledge of IT Infrastructure – both On Premise and Cloud, BYOD, Application development etc.
  • Must have followed IT GRC Methodologies
  • ITSM and COBIT skills
  • Strong Interpersonal, Communication & Leadership skills.
  • Minimum 10 years of IT Leadership Experience with extensive focus on IT Security
  • Strong problem solving, analytical and time management skills

Job Details:


Company: Emirates Flight Catering

Vacancy Type: Full Time

Job Location: Dubai, UAE

Application Deadline: N/A

To apply for this job please visit www.linkedin.com.


 Report Job
Back to top button