JC704-Manager Information Technology Security Implementation

The primary role of the IT Security Implementation manager is to lead and manage sections within the IT Security Department. Define needed information security controls and provide strategic planning, technology standards, and an architecture framework for security. Manager Information Technology Security Implementation manages a team of engineers and specialists in order to deliver required tasks.

Provide strategic planning, technology standards and an architecture framework for security projects management and implementation.

Manage the development and integration of the enterprise security projects for large-scale system, network, or infrastructure solutions.

Overall responsibility in successfully delivering security projects and comprehensive leadership through all project lifecycle.

Provides mentorship and guidance to team members

Act as a primary assistance department manager for budgeting for security controls and solutions.

Acts as representative to Senior Manager Information Technology Security when required

Adhere to BSF PMO Methodology

Oversee IT Security Implementation team effective collaborative progress with internal stakeholders such as procurement, budgeting, legal, PMO, Risk team, finance, technology operations and Corporate Information Security Division.

Oversee IT Security Implementation team effective collaborative progress with external stakeholders such as vendors and partners.

Lead or commission the preparation and implementation of necessary security architecture.

Ensure effective implementation and continuous enhancement of security architecture to safeguard BSF customer’s data, sensitive corporate data.

Deliver continuous reporting to management regarding security projects progress including

• technical and non-technical risks associated
• initiate and ensure mitigations proactively to project risks and issues

Provide vendor management and oversight during and after project implementation.

Responsible to stay current with any advances or changes in equipment, technology and mythology.

Ensure Implementation team is managing all prerequisites for all assigned project including (MSAs, SLAs, Budget Allocation)

Manage and monitor project budget and procurement requirements.

Liaison with Audit, Compliance and Risk missions.

Work closely with Corporate Information Security Division (CISD) as Business Line and manage CISD assigned projects. In addition to IT Security projects.

Developing and Monitoring Metrics and Key Performance Indicators (KPIs).

• Bachelor degree in computer engineering, science or equivalent
• 6-8 years of related work experience in fields of IT & Security
• Relevant Certifications preferred: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Ethical Hacker (CEH), Certified Network Defender (CND), CCNA Security, CCNP Security, Security+, CySA+, SANS/GIAC Certifications, PMP
• Established experience in deployment/implementation of a wide range of security controls systems such as anti-virus systems, Anti-Malware appliances, Data Leakage Prevention, Database Monitoring, Web applications firewalls, classification solutions, SIEM administration, Proxy, Email Gateway security, Privilege Access Management, Intrusion Prevention System, Mobile Device Management, Network Admission Control…etc.
• Strong knowledge of information security concepts, methodologies and best/leading practices.
• Knowledge of security controls principles, technologies, administration, workflows and technologies
• Excellent analytical and strategic planning skills.
• Established knowledge of IT environments and technologies and their IT Security requirements
• Established experience and knowledge of IT Security requirements as per banking local (SAMA’s and NCA’s) & international regulations in this regard
• Established Excellent knowledge of a wide range of security appliances and technologies and latest trends in this regard (IPS, IDS, Firewalls and etc.) as well as identity management systems and concepts
• Knowledge security risk assessment and impact analysis skills.
• Knowledge project management and communication skills
• Ability to handle stressful situations, and to bring together the ideas of team members.
• Demonstrates an analytical and systematic approach to problem solving.
• Conceptual thinking and ability to make critical decisions
• Good presentation and interpersonal skills
• Good written and verbal communication skills in English and Arabic