Purpose: The IT Security lead is tasked with assisting the head of IT security in performing the information security management function and liaising closely with the IT Manager. The purpose of the Information Security Management function is to bring the organization’s information security risks under explicit management control through the Information Security Management System.
The IT Security lead supports all activities that provide appropriate access to; and protect the confidentiality and integrity of customer, employee, and business information in compliance with QAPCO policies and standards.
Position Responsibilities:
• Participate in the design, implementation, operation and maintenance of the Information Security Management System in coordination with the Head of IT security and IT Department based on the ISO/IEC 27000 series standards.
• Support the development, implementation, and monitoring of access control, data confidentiality, system integrity, system reliability, and recovery methods and procedures including business continuity and disaster recovery.
• Support continuous monitoring in QAPCO’s different information processing environments utilizing SIEM, log analyses and computer/network forensic tools
• Identify, prioritize and track information security vulnerabilities utilizing approved security scanning and vulnerability management tools
• Work cross-departmentally with IT department and Automation (DCS) to establish and implement mechanisms for identifying and addressing security vulnerabilities
• Support external party security assessments and audits, perform internal assessments, and provide tracking for findings and resolution.
• Support the development, implementation, and updating of security policies and procedures.
• Support the development and management of a security awareness training program
• Provide expertise in support of new product/technology/control implementation activities to ensure compliance with information security and privacy standards
• Support the handling, reporting, recording, and resolution of information security incidents.
• Review all system-related security plans throughout QAPCO’s various information systems.
• Assist HITS in monitoring compliance with information security policies and procedures, referring non-compliance to HITS, the IT manager and the department manager.
• Support the design and operation of relevant compliance monitoring and improvement activities to ensure compliance with both internal security policies & procedures and applicable laws and regulations.
• Perform information security risk assessments and controls selection activities.
• Perform additional duties and projects as assigned by the head of IT security.
Qualifications and Experience:
• Bachelor degree in Computer Sciences (minimum), Communications or equivalent. CISSP, CISA, SANS or similar certificate is added value.
• ISO 27001 lead auditor certification.
• Minimum 6 years diverse information systems experience, with emphasis on network, IT infrastructure and information security; ideally in a similar industrial/commercial environment.
• Must have proven experience in implementing and operating information security management systems
• Knowledge and experience in SIEM, computer/network forensics and log analyses systems
• Very good spoken and written English and good communication, interpersonal and negotiations skills. Arabic would be an advantage.
Job Details
| Date Posted: | 2013-04-08 |
| Job Location: | Doha, Qatar |
| Job Role: | Technology/IT |
| Company Industry: | Petrochemicals; Oil/Gas; Information Technology |
| Joining Date: | 2013-05-01 |
Preferred Candidate
| Career Level: | Mid Career |
| Degree: | Bachelor's degree / higher diploma |
Apply Now -
Jobs in Qatar
-
Search All Jobs