Al Futtaim Jobs - Head of Information - GRC | EIT | Dubai (AE)
Job Requisition ID: 62384
No two days are the same at Al-Futtaim, no matter what role you have. Our work is driven by the desire to make a difference and to have a meaningful impact with the goal of enriching everyday lives. Take our engaging and supportive work environment and couple it with a company culture that recognises and rewards quality performance, and what do you get? The chance to push the limits every single day.
As a humble family business that started on the banks of the Dubai Creek in the 1930s, Al-Futtaim has expanded to a presence in 31 countries, a portfolio of over 200 companies, and 42,000 employees. You’ll find us in industries ranging from automotive and retail, to finance and real estate, and connecting people with international names like Lexus, Ikea, Robinsons, and Adidas. Our team is proudly multicultural and multinational because that kind of diverse representation gives us the global mindset to grow and impact the people, markets, and trends around us.
Come join us to live well, work better, and be the best.
About the Role
The role will play an integral part in managing the security program as a whole, and provide oversight and validation of control effectiveness within Security. Manage and mature the second line of defense risk and internal controls program. Support and align with CISO for all management reporting.
About the Task
Work cross-functionally and throughout all levels within the organization. Represent Risk and Security Governance to all levels of the organization, including Executive Management.
Identify and report internal control deficiencies and gaps. Validate remediation plans with the risk owner.
Conduct regular reviews to identify adherence or gap in information security implementation
Create, maintain and regularly communicate Information Security Policies, Standards and Process
Manage the organisation wide Information Security Awareness training
Implement and manage the information security GRC tool
Manage all security related audits (internal, external, regulatory, etc.)
Communicate regular status updates and results to management.
Enhance and develop new methods of governance and assurance.
Track the Risk Acceptance Form (RAF) process for Security-related exceptions to policies
Develop, monitor, and report on key metrics (KPIs and KRIs) for risk, compliance and operating effectiveness of internal controls
About the Requirements
Degree in Engineering or equivalent. Should also have one of the certifications CISSP, CCSK, CISA/CISM.
Minimum of 12 years of experience in Information Security domain. Knowledge on International Standards such as ISO27000, PCI-DSS, CSA, COBIT, Cyber Security standards, etc.
Job-Specific Skills:
- Base experience in technology or risk department and have managed the overall Information Risk Management Lifecycle or Governance cycle.
Leadership:
- Building and leading a strong Information Security team
- Engagement with senior Business executives with ability to influence
Functional:
Expert
Strategic thinking and senior leadership engagement
Risk Management
Information & IT Security Management
Proficient
Service Management
IT Project Management
IT Vendor Management
Business Process Design
We’re here to provide excellent service but a little help from you can ensure a five-star candidate experience from start to finish.
Before you click “apply”: Please read the job description carefully to ensure you can confidently demonstrate why this opportunity is right for you and take the time to put together a well-crafted and personalised CV to further boost your visibility. Our global Talent Acquisition team members are all assigned to specific businesses to ensure that we make the best matches between talent and opportunities. We not only consider the requisite compatibility of skills and behaviours, but also how candidates align with our Values of Respect, Integrity, Collaboration, and Excellence.
As part of our candidate experience promise, we also want to make ourselves available to you throughout the application process. We make every effort to review and respond to every application.
Apply Now
No comments: