Cybersecurity Lead

Job Description

Job Description

Cybersecurity Lead

Primary role: Support the TID in overseeing the development and maintenance of the project cybersecurity architecture; leading or assisting in the implementation and management of cybersecurity solutions; implementing, monitoring, and maintaining cybersecurity operational processes; and producing reports for the assessment and functioning of security operations

Job description

·Provide TID with an independent assessment of the adequacy, effectiveness and sustainability of security operations work and follow-up with the IT Teams and other Business Units to develop action plans to mitigate identified vulnerabilities and promote security initiatives.

·Define and evaluate security technologies required to ensure safe technology operation and detection of cyber-attack.

·Provide security recommendations on actions which assist in improving security posture within the environment.

·Ensure that necessary changes to security policy documentation are incorporated as directed by the Head of Directorate

·Work in partnership with other Information Security and IT staff to ensure key security controls are working as intended, recommending improvements where appropriate.

·Work with business and IT to specify cybersecurity controls and convey security control requirements to users and information custodians.

·Collaborate with security organization team members to assess and analyze security operations and suggest improvements.

·

Requirements

·Bachelor’s or degree in Computer Science, Engineering, Information Technology, or related fields is required.

·Minimum of five (5) years of experience in IT/Security operations or Security Operations Center role

·Display good knowledge of the recognized information security domains: Access Controls, Application Security, Cryptography, Risk Management, Compliance and Investigations, Operations Security, Physical Security, Security Architecture and Telecommunication

·Good knowledge of the NIST CyberSecurity framework & Cyber Security requirements within Bahraini Government

·Proficient in development of cyber security strategies, policies and procedures

·Proficient in performing security risk assessments & maturity assessments

·Experience in performing security awareness & security audits

·Holds an Information/cybersecurity related certification: CISSP – The Certified Information Systems Security Professional; CISM – Certified Information Security

·Manager; GIAC – Global Information Assurance Certification; or CEH – Certified Ethical Hacker

·Network+, CIHE, CCNA R&S, SSCP, Security +, CySA+, Linux security, windows security or forensics training is a plus