Technology & IT Risk Operations Manager

Job Description

<p><strong>Job Objective</strong></p><p>Your role as the Technology &amp; IT Ops Risk Manager is to be responsible for the execution of control and risk management programs for Monty Mobile’s Technology and operations Infrastructure.</p><p>You will also provide direction and guidance in the development, implementation, and communication of risk-related policies and standards.</p><p> </p><p> <strong>Main Tasks</strong></p><ul><li>Responsible for the oversight of an organization’s cyber-security programs as they relate to the organization’s information initiatives.</li><li>Analyze existing risk mitigation policies and security controls and communicate with the organization’s information security officer on the efficacy of these measures, suggesting ways and means for improving them.</li><li>Assist in developing contingency plans and recovery processes and procedures when an organization’s information systems are severely compromised.</li><li>Perform risk and control self-assessment, identify the threats, vulnerabilities and assess the effectiveness of controls, recommend corrective action, and track issues to closure.</li><li>Formulate technology risk management strategies, policy, processes, and work plans.</li><li>Follow up on incident reports, identify root causes and provide recommendations.</li><li>Review IT initiatives from technology risk perspectives and provide advisory and recommendation.</li><li>Research and evaluate latest security threats and technology solutions, such as Cloud, Big Data, Artificial Intelligence, Social Networking and Mobility.</li><li>Review Security Architecture and relevant policies for the organization infrastructure, applications, and cyber resilience.</li><li>Prepare management reports on technology risk assessment or review results.</li><li>Lead initiatives to assess the adequacy and effectiveness of IT controls and policies and ensure that business users are compliant to the IS standards.</li><li>Keep abreast of IT Risk and Security advancements and propose appropriate security enhancements to IT infrastructure and systems.</li><li>Design processes to identify, improve and optimize IT risk management policies/practices.</li><li>Assess third party risks related to their IT security.</li></ul><p><br></p><p><strong>Qualifications</strong></p><ul><li>Bachelor’s degree in Computer science, CEE, Cyber security, or any related field.</li><li>8+ years of experience as IT Security, technology risk or IT audit.</li><li>Professional proficiency in Arabic and English required.</li></ul><p> </p><p> <strong>Skills Requirements</strong></p><ul><li>Knowledge of HKMA requirements and industrial security standards.</li><li>Good working knowledge of security risk management, security governance framework and compliance (IT Security Audit / Log review), technical vulnerability management (Vulnerability Assessment, Penetration testing), application security, security technologies (system hardening, IDS/IPS, firewall), security incident response and security assessment.</li><li>Ability to provide insight in a range of situations.</li><li>Excellent problem solving and self-management skills.</li><li>Excellent organizational skills.</li><li>Dedicated, innovative, resourceful, and able to work under pressure.</li><li>Foster an efficient, innovative, and team-oriented work environment.</li><li>Exceptional interpersonal skills, written and verbal communication.</li><li>Enthusiastic team player with a strong drive to create positive and dynamic work environment.</li></ul><p></p>