Chief Information Security Officer (CISO)

The Chief Information Security Officer will be responsible for leading the organization’s security strategy, integrating physical, cyber, and operational security, ensuring compliance with regulations and resilience against threats; in addition to ​developing and executing a comprehensive security strategy aligned with business objectives. ​

Key Responsibilities
Strategic Security and Leadership

• Develop and execute a comprehensive security strategy that aligns with business objectives and incorporates Identity and Access Management (IAM), Privileged Access Management (PAM), and Public Key Infrastructure (PKI) frameworks.
• Establish a robust security governance model to oversee policy development and compliance across the organization.

Risk Management and Assessment

• Lead enterprise-wide risk assessments to identify vulnerabilities in IAM, PAM, and PKI systems, ensuring a proactive approach to threat mitigation.
• Implement risk management practices that address both physical and cyber security challenges.

Physical Security Integration

• Ensure that physical security strategies are aligned with cyber security protocols, safeguarding organizational assets from both external and internal threats.
• Collaborate with IT and security teams to implement access controls and surveillance measures that complement IAM efforts.

Crisis Management and Business Continuity

• Lead the development and implementation of crisis management and business continuity plans, incorporating IAM and PAM considerations for operational resilience.
• Conduct simulations and drills to test the effectiveness of response strategies.

Qualifications

• First Degree and 10 years of experience in cyber & risk management at senior management level.
• Professional certifications such as CISSP, CISM, CISA, or CPP.
• Proven track record in technology sector risk management and regulatory compliance.
• Experience in crisis management and developing risk mitigation strategies.

Technical Competencies

• Knowledge of Identity and Access Management (IAM), Privileged Access Management (PAM), and Public Key Infrastructure (PKI) frameworks.
• Knowledge of Threat Intelligence and Security Response.
• Knowledge of Data Protection and Privacy regulations.
• Proficiency in network security architecture, firewalls, intrusion detection/prevention systems (IDS/IPS), and VPNs.
• Ability to assess and mitigate network vulnerabilities.

Managerial Competencies

• Exceptional leadership skills with the ability to inspire and lead diverse teams across various geographies.
• Ability to develop and execute long-term risk management strategies aligned with the organization's vision.
• Excellent verbal and written communication skills; ability to present complex information clearly to stakeholders at all level.
• Strong interpersonal skills to foster collaboration across departments and with external partners.

Deadline: 13th June, 2025