information security GRC Manger
Information technology
Location: | Cairo - EGYPT |
Age: | 30 - 50 years |
Experience: | 8 - 25 years |
Gender: | All |
Open vacancies: | 10 |
Job description: |
· Manage the ISMS including maintenance of the current ISO 27001 certification scope as well as strategic expansion across the globe. · Support the management of information security governance for the organization, ensuring adherence to group policies and standards. · Work closely with the Head of Information Security to ensure key information security risks and issues are identified, addressed and resolved in a timely manner. · Coordinate periodic security testing (e.g. penetration testing) and prioritize and manage response activities. · Work closely with the Information Security Operations team; assist the Head of Information Security in providing oversight and challenge to the Fist Line of Defense team. · Assist with updating the Third-Party Risk Management framework including policy, procedures, due diligence questionnaires and the monitoring of third parties’ adherence to information security and data privacy obligations. · Assist with the client management aspects of the Information Security team, including client and potential client questionnaires; help design a more effective process including a self-service process and a library of standard responses. · Develop relevant metrics, analyze data, identify trends and help drive improvements to the control environment. · Assist the Head of Information Security in GRC and general information security issues as required, including interaction with the Security Operations team, Technology teams and business leaders. |
Required skills: |
|
Salary: | Negotiable |