IT Security Operations Lead

Job Description

Role: IT Security Operations Lead

Location: Abu Dhabi  

Role Purpose:

1. Design, Manage and Maintain Security infrastructure (cloud and on-prem), Tools / Products implemented at ADIB for day-to-day tasks
2. Recommend, design, build and deploy security devices/tools and platforms that automate, streamline and scale security ops efforts
3. Manage vendor resources to carry day to day operational task
4. Ensure service requests are being handled without breaching the SLA’s
5. Implement security policies, protocols and procedures
6. Regular monitoring of Security Logs and Events for IT Security devices to review security events and alerts and proactively detect actual or potential attacks to ADIB network 
7. Assist in leading the security team by fostering team spirit and co-operation, the encouragement of open expression of differing ideas and opinions and ensuring resolution.
8. Provide administrative, organizational and technical support that assists the Manager – IT SECURITY OPERATIONS to accomplish department tasks and act as the backup in the Manager’s absence
9. Manage and be responsible for the team queue managing it based on business priorities
10. Incident response: Respond to attack attempts & contain incidents
11. Follow the security hardening baselines / guidelines and generate reports as required
12. On call-availability for critical alert(s) / issue(s) reported by ADIB Command Center after working-hours, weekends and public holidays and proper escalation to Manager – IT SECURITY OPERATIONS 
13. Ensure compliance to published policies and procedures such as (PMO, ITIL processes, ISO 9001 & 27001) by performing according to what has been documented
14. Ensure accurate and timely status reporting and other related documentation to management
15. Ensure compliance to ADIB processes (HR, Legal & Sharia) related to ITD
16. Ensure satisfactory department audit with no high risk finding on department. Any finding to be resolved within agreed time (with Audit and Management)

Key Accountabilities of the role:

IT Security Operations Unit (25%)

• Leading the Team in formulating tasks list for IT SECURITY OPERATIONS Unit in a manner that tasks are aligned with overall IT Division goals.
• Assist IT SECURITY OPERATIONS Manager in formulating tasks list for IT SECURITY OPERATIONS Unit in a manner that tasks are aligned with overall IT Division goals
• Prepare Management Dashboards and reporting. 
• Chair / Attend all relevant stakeholders’ meetings, but not limited to regular team meetings, one on one discussions with reporting team members and the IT Security Operations Managers to have a high-level communication culture. 
• Provide administrative, organizational and required support to accomplish departmental deliverables and tasks
• Prepare Management Dashboards and reporting 
• Ensure team provides excellent support, which leads to user’s satisfaction
• Identify problems, evaluate alternatives, and implement effective solutions

IT Security and Device Management (25%)

• Manage, maintain, and monitor Security Devices, Security Tools and Products implemented at ADIB
• Ensure security of all ADIB public services hosted in the DMZ
• Security configuration of perimeter devices according to the Best-Practices and vendor guidelines
• Manage security device configuration change(s) as per ADIB standard Change Management Process
• Perform security device health checks as per approved checklist(s)
• Updating security devices with latest stable software and signature releases 
• Security configuration of perimeter devices according to the Best-Practices and vendor guidelines
• Troubleshoot technical issues related to Security
• Ensure ADIB User PC and servers are secured against malware attack, confidential data loss and identity theft. Proactively monitor against any vulnerability in the system, device control usage and whole disk encryption for mobile laptops. 
• Participate in POCs in coordination with CSA (Compliance and Security Architecture) and GRM (Governance and Risk Management) Sections to evaluate and to provide a feedback and test reports for selection of the best suitable Security Solution for ADIB IT Security requirements

Security Events Monitoring, Incident Response & Support (10%)

• Security Event Monitoring and Logging: Ensure that required logs from security devices and tools are configured to forward to SIEM.
• Assist and be a point of contact for Incident Management, ensuring that incidents are correctly managed and escalated
• Ensure that any complaints are dealt with in a professional and timely manner.
• 24/7 Stay on-call for Command Center, SOC and initiate response in case of any Security Incident
• Incident Support: Provide Level 2 support for any security incident reported by Command Center/SOC and escalate as per escalation procedures / guidelines

Global Expansion (5%)

• To fulfill the IT Security requirements for international expansion as conducted by ADIB Management.

Information Security (10%)

• Maintain information security related to ADIB, throughout the period of employment
• Assist in maintaining compliance with all Health & Safety legislation.
• As soon as possible, report any potential or actual risks or incidents affecting the security of information to the ITD Service Desk

Documentation / Process Ownership (25%)

• The incumbent is responsible to take ownership, maintain & update documented processes and / or documentation related to his job function
• In the event where processes or documentation are shared, the incumbent shall coordinate with the owner of document about required changes or improvements  

Specialist Skills / Technical Knowledge, Technical Competencies Required for this role:

• Professional Certification: COBIT, Security+, CCNP, PCNSE, NSE, and/or other Security Certifications
• Must have excellent People management, troubleshooting skills and problem-solving attitude
• Good knowledge of IT systems configuration and log analysis 
• Knowledge of Information Security systems, methodologies and best practices.
• Knowledge of security frameworks such as ISO/IEC 17799-27001, COBIT, etc. 
• Good leadership, team building and mentoring skills. 
• Good budgeting and project management skills.

Previous experience:   

• 10-15 Years; experience in an IT Environment (Network and/or Security)