Position Objectives:

The Cyber Security and Data Solutions Expert works and reports to the Cyber Security and Data Governance Head and PMs.

He will guide and assist stakeholders and vendors involved in Cyber Security and Data Governance Implementations for Wireless Network rollout.

Job Description & Responsibilities:

• Policy and Standards Development: Develop and implement cybersecurity and data governance policies, standards, and processes that align with business objectives and regulatory requirements, including NIST, ISO 27001, GDPR, and HIPAA.
• Risk Management: Identify and manage risks related to both cybersecurity and data governance using frameworks like FAIR, including threat modelling, vulnerability assessment, and mitigation strategies, with regular reporting to executive management.
• Technical Compliance and Monitoring: Establish and enforce compliance monitoring programs for cybersecurity and data governance, ensuring adherence to organizational policies and industry standards. Utilize tools like SIEM (Security Information and Event Management), DLP (Data Loss Prevention), and IAM (Identity and Access Management) solutions.
• Implementation Oversight: Oversee the technical implementation of cybersecurity infrastructure, including firewalls, IDS/IPS (Intrusion Detection/Prevention Systems), encryption protocols, and data protection controls during system development, ensuring they meet the organization's security and governance standards.
• Incident Response and Forensics: Govern the incident response team, utilizing tools such as EDR (Endpoint Detection and Response) and forensics software, to manage and investigate security breaches, and assist with disciplinary and legal matters.
• Technical Reporting to Executive Management: Provide detailed technical reports on the effectiveness of cybersecurity and data governance programs, including specific metrics on policy violations, security risks, SIEM alerts, and the progress of remedial actions.
• Training and Mentorship: Provide technical training and mentorship to staff on cybersecurity and data governance best practices, driving continuous improvement in these areas. Utilize advanced tools for training simulations like cyber ranges and threat intelligence platforms.
• Third-Party Coordination and Technical Evaluation: Manage and technically evaluate external resources, including penetration testing firms, vulnerability assessment teams, and vendors providing security solutions like WAF (Web Application Firewalls) and endpoint protection platforms.
• Certifications: Preferred certifications include CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), CRISC (Certified in Risk and Information Systems Control), CEH (Certified Ethical Hacker), and CIPP (Certified Information Privacy Professional).

Qualifications & Experience:

• Bachelor’s degree in Electrical or Electronics Engineering, Telecommunications, or Computer Science from a recognized university or equivalent qualification.
• Minimum 15 years of telecommunications experience, with at least 5 years in a responsible position managing CyberSecurity systems implementation in a Telco service provider.
• Extensive knowledge and professional experience in managing projects, project control, and coordination with clients and contractors.
• Strong experience developing CyberSecurity and data protection policies, standards, and processes.
• Strong experience in Network Security
• Proven ability to identify opportunities to improve CyberSecurity solutions, governance posture, procedures, and methodologies.
• Subject matter expertise and the ability to drive enhancements for security programs and risk assessments.
• Excellent communication skills in both written and spoken English (Arabic is desirable).
• Native Arabic speakers will be preferred