IT Security and Compliance Officer

The security compliance officers role is to ensure the secure operation of the B&S information assets in accordance with our internal processes procedures and compliance requirements as per the relevant ISO standards regulatory frameworks applicable to B&S and industry best practices.Key ResponsibilitiesOversee and improve the information security programs including data protection risk management compliance and information security testing.Establish information security audit policies and procedures relevant to CMMC SOC2 ISO 27001 ISO 22301 ISO 38500 PCIDSS.Develop implement and maintain internal ITSC audit policies and procedures in accordance with local and international best practices.Conduct scheduled audits on information assets and processes as required in order to maintain certifications and compliance certificates.Evaluate compliance of B&S processes procedures systems and applications against the requirements of ISO 27001 ISO 22301 ISO 38500 PCIDSS CMMC and industry best practices.Monitor advancements in information security and privacy laws to ensure organizational adaptation and compliance.Prepare audit reports required for senior management regulators and other relevant stakeholders.Assist with initiatives relevant to compliance certification and regulatory bodies.Review all new products systems or processes to ensure compliance againstrequired standards frameworks and best practices.Deploy manage and maintain security audit platforms.Collaborate with the IT Risk & Threat Analyst and Cybersecurity Analyst to ensure threats and vulnerabilities are promptly identified and communicated to relevant business stakeholders for remediation.Key DeliverablesDevelop internal audit policies and procedures in accordance with local and international best practicesConduct internal audits as per the internal ITSC audit schedule and frameworkEvaluate compliance of B&S processes procedures systems and applications against the requirements of B&S certification initiativesDeliver audit reports/findings and status of the remediation of audit findings to stakeholdersPropose continuous service improvements based on audit findingsQualificationsBachelors degree in Computer with IT audit or compliance experience5 years of IT experience with a focus on security and complianceKnowledge and understanding of ISO 27k PCIDSS GDPR NIST ISO Certifications and SOC2 information security standards and/or frameworksExperience writing policies procedures and controls in one or more standards/frameworksKnowledge of computer networking concepts and protocols and network security methodologiesKnowledge of risk management processes cyber threats and vulnerabilitiesExperience with risk management in both a compliance and security contextAbility to work in a fastpaced environment and the skills to deal with ambiguityAbility to handle multiple competing prioritiesHighlevel of attention to detail and be a selfstarter with the ability to work independently multi task and adjust to shifting prioritiesProfessional information security certifications like ISO 27001 CISA CISM or other relevant securityrelated designations would be an advantageAdditional InformationCompetitive salary fitting with your experience along withdiscretionary annual performancebased bonusCompany sponsored visa along with health insuranceLeave benefits as per UAE labour lawAnnual return airticket to your home countryOpportunity for professional growth and developmentDynamic and collaborative work environmentBeing a part of leading International trading company with global presenceRemote Work: NoEmployment Type: Fulltime#J-18808-Ljbffr