Head of Information Security & Assurance Abu Dhabi Islamic Bank

Abu Dhabi Islamic Bank is presently accepting applications from suitable candidate for the job role of Head of Information Security & Assurance. The purpose to hire a Head of IS Compliance and Assurance is to manage IS Compliance and Assurance of ADIB and its subsidiaries and international units to ensure coherence and assurance on Regulations and Policy controls. Furthermore, the role will be required to ensure collaboration between internal and external parties related to assuring compliance of IS requirements by external regulatory entities to avoid any regulatory matters disrupting the overall operations (NESA, CB-UAE, PCI DSS, SWIFT, ATM Sec etc.).

Responsibilities of Head of Information Security & Assurance

• Ensures that the group’s information security compliance and assurance plans are achieved.
• Responsible for building the assurance plans and its alignment with regulatory compliance and strategic priorities.
•  Managing and ensuring tracking and validating the implementation of the recommended mitigation controls in alignment with the Risk management framework.
• Assists in preparing IS compliance and assurance reports for top management as required.
• Coordinate the plans  for information security compliance and assurance assessments, audits, and gap analyses.
• Manage and continuously update the group’s information security compliance and assurance checklist, highlighting compliance requirements per asset type, criticality, etc.
• Manage and communicate with different internal control departments such as ORM, Compliance, Internal Audit and HR to improve the group’s compliance posture.
• Act as 2nd line risk Lead for group information security compliance assessments against internal policies as well as PCI DSS, PA-DSS, ISO 27001, UAE NESA IAS, SWIFT CSP, ESCA, FCA, data protection and privacy laws, Red teaming and other relevant information security regulations and standards
• Manage and present implemented information security configurations on enterprise platforms to identify and document security gaps while recommending appropriate corrective actions.
• Participates in internal and external audits and reviews to ensure compliance with regulatory standards, internal security policy, and coordinates with internal audit staff, as appropriate.
• Maintain the Regulatory register for ADIB and its subsidiaries and International Business.
• Ensure all compliance and assurance risks are logged and tracked in the risk register.
• Accountable for compliance submission accuracy of reporting internally and to regulators.

Requirements of Head of Information Security & Assurance

• Bachelor’s degree from four-year College or university in Information Resource Management, Business Computer Systems, Computer Science or Computer Security.
• Master’s degree preferred.
• 9-12 years of experience in information security, information technology, enterprise risk, assurance or compliance (Preferably in banking or finance industries).
• Auditing and compliance assurance experience in information security
• Experience with GRC systems and compliance tools
• Experience in managing internal and external compliance and assurance assessments.

Skills and Knowledge Desired

• Strong knowledge of information security local and international frameworks, regulations, international standards and best practices. (UAE NESA, ISO 27001, SWIFT CSF, PCI DSS, UAE CPR, GDPR)
• Knowledge of IT and information security technologies
• Knowledge of banking processes and modus operandi
• Certification in security or systems control related field: I.e., CISSP, CISA, or CISM.

Tagged as: Security Officer