Emirates Airlines
Cyber Security Compliance Analyst Senior at Emirates Airlines in Garhoud Area opposite to Airport Terminal 3, Dubai, UAE is an experienced regulatory compliance analyst with a background in cybersecurity. Their primary responsibility is to plan and lead the execution of risk assessments, compliance reviews, vulnerability assessments and measure compliance against EU-GDPR, UK DPA and PCI-DSS standards. Candidate work output also supports continuous review and compliance to internal policies and standards. This is a Senior level full time job. And salary can range between 15000-25000 AED/month.
Responsibilities of Cyber Security Compliance Analyst
- Assess risk and conduct root cause analysis to recommend, implement and/or design new features and functionalities to support compliance initiatives.
- Manage implementation of any new compliance requirements for existing or new needs.
- Manage all evidence collection activities relating to compliance.
- Coordinate with all business units and the enterprise to obtain and validate evidence required for compliance and assessments.
- Incrementally improve the evidence collection process and streamline evidence collection procedures.
- Communicate regularly PCI DSS, EUGDPR requirements and the status of PCI DSS and EU-GDPR compliance to IT, Data Privacy Office, business units, and enterprise executives, management, and liaisions.
- Communicate regularly with assessors and adjust the compliance program as needed.
- Coordinates with company and vendor SMEs to ensure adherence to program requirements.
- Manage relationship of compliance needs in conjunction with needs of the other cyber departments.
- Challenge and validates assessment decisions from both internal business units as well as external partners/vendors.
Requirements for Role of Cyber Security Compliance Analyst
- Degree or Honors (12+3 or equivalent)
- ISA certification/designation with a previous PCI DSS compliant entity, PCIP or QPASP certification.
- Certified IAPP/CIPP.
- Experience in managing or assessing successful/compliant PCI DSS program(s).
- Minimum seven (7) years of relevant experience (information security, audit, compliance, risk management)
- Candidates with experience in a Level-1 Merchant or significant global business.
Skills And Knowledge Desired
- Working knowledge of UK and EU data protection legislation (including DPA and GDPR).
- Data Discovery and Data Flow Mapping.
- Data quality and data cleansing techniques.
- Business Risk Management.
- IT Audit and Information Security Management Systems.