Information Security & Assurance Head ADIB

Abu Dhabi Islamic Bank is presently hiring suitably qualified and experienced candidates for the job role of an Information Security & Assurance Head. The job holder is responsible for overseeing the information security services, assurance and compliance activities across ADIB, managing IS services delivery and communication from and to the Group Information Security Department (GISD) and managing the group-wide information security awareness & training function. The role holder works closely with the ADIB CISO and with the Group Compliance departments to identify information security regulations and ensure full compliance with all local and international regulatory requirements and mandates.

Duties of An Information Security & Assurance Head

• Provide information security services and assurance related expertise across ADIB’s sections and units.
• Manage the Information Security Services & Assurance section’s practices, operations, performance, and budget in line with the cybersecurity strategy requirements and strategic objectives.
• Motivate the Information Security Services & Assurance section team and provide continuous guidance and mentorship in order to create a performance driven culture.
• Lead the compliance and assurance programs with respect to ADIB information security policies, PCI DSS, NESA, SWIFT, ISO 27001 and other relevant standards/frameworks and regulations while coordinating with relevant departments.
• Review and validate the identification of new information security standards and regulations that ADIB is required to comply with in UAE and where ADIB operates internationally.
• Oversee the compliance assurance activities across the Group to ensure compliance with relevant information security regulations, standards, frameworks and internal/external policies.
• Report unresolved compliance issues and group compliance status to relevant entities across the Group.
• Recommend the update and refinement of information security policies and procedures based on identified compliance gaps.
• Execute PCI DSS, NESA, ISO 27001 and UAE Central Bank information security compliance assurance activities while coordinating with relevant departments.
• Ensure that the information security best practices are  well defined, effective, and consistently adopted across the Group.
• Ensure the readiness for internal and external information security auditing and compliance assessment.

What You’ll Do More?

• Review, reassess, and follow up on the corrective actions taken to close the gaps/findings from information security audit reports and compliance assessments.
• Oversee all lines of communication from and to GISD.
• Oversee the information security compliance assurance activities across ADIB.
• Manage the relationship between GISD, business units, and external stakeholders.
• Plan and develop methodologies to ensure that the group is well-aware of information security requirements, practices, and needs.
• Review awareness and training programs and plans and recommend improvements.
• Oversee awareness and training assessment results and communicate them to relevant stakeholders.
• Own IS awareness and training plan, policy, framework and process manual and ensure maintenance and update of the same.
• Develop and execute annual IS awareness & training program.
• Develop and promote Business Information Security Officers (BISOs) network.
• Ensure excellent service level is provided from GISD to all business and support unit in the bank through established operational level agreements.
• Maintain proper communication with all ADIB units.
• Continuously develop and update IS services catalog.
• Manage IS learning contents in ADIB LMS (Learning Management System).

Requirements For An Information Security & Assurance Head

The eligibility requirements for the role of an Information Security & Assurance Head are as under:

• Bachelor’s in computer science, preferred Master’s degree in Engineering, IT technical or business related discipline.
• More than 15 years of experience in information security or technology with a focus on services, compliance and assurance.
• Experience in leading a team of information security professionals responsible for information security assurance and compliance.
• Experience working with information security regulators and external party.

Skills and Knowledge Desired

• Expertise in delivering or managing information security awareness and training programs both for customers and staff.
• Strong executive experience including management-level discussions.
• Managing network of information security champions.
• Excellent interpersonal, verbal, written, communication and presentation skills.
• Strong knowledge of core banking processes and modus operandi (Islamic banking knowledge is a plus).
• Strong knowledge of information security technical and process compliance and assurance practices, processes, controls and technologies.
• Knowledge and practical use of enterprise GRC automated tool (Like RSA Archer).
• Strong knowledge of ISO 27001, UAE NESA, PCI DSS, SWIFT, COBIT, ITIL, UAE CPR, NIST, GDPR and other information security standards, frameworks and regulations.
• Knowledge of data security & protection regulations, laws, frameworks and standards.
• Professional certifications such as Security+, CCIE, CISSP, CISA, CISM, CRISC, CGEIT, PMP, ITIL, COBIT, CIA, CRMA, CIP.

Relationship Manager Abu Dhabi Islamic Bank

Senior Technical Support Analyst Abu Dhabi Islamic Bank

Senior Procurement Officer Abu Dhabi Islamic Bank