Sr. Supervisor, Corporate Information Security

Recrutement Orange Egypte: Sr. Supervisor, Corporate Information Security

Votre rôle

Serving as the process owner for all ongoing activities related to corporate information security within the organization while spreading information security awareness and maintaining it at the corporate level.
Participate in the development and implementation of global security policy, standards, guidelines and procedures to ensure ongoing maintenance of security, and its compliance with SOX Controls and ISO/IEC 27001 and the group standards.
Participate in defining the security management system requirements (ISMS) in accordance to the ISO 27001 requirements and group information security standard in order to ensure that security objectives are being achieved.
Set the security requirements needed in any new/existing products and services that may impact any security aspect and verify their proper implementation.
Apply Orange ISMS standards in alignment with the group standards.
Participate in performing ISMS gap analysis and developing the information security forum priorities and road map, follow up on the implementation of the plans.
Develop the corporate information security dashboard through measuring, monitoring and reporting information security forum metrics and plans to ensure that organizational objectives are achieved.
Participate in reporting the critical security incidents and take recommended corrective actions to the Information Security Forum and FT.
Participate in periodic information security risk assessment for the company critical systems and recommend the adequate controls as per the Information security scope and limits.
Engage and assess the information security risk assessments for new/existing products and services that may impact any information security aspect.
Identify and assess information security risk / exposure affecting the business at the corporate level.
Ensure full implementation of global security policy, standards, guidelines and procedures to ensure ongoing maintenance of security and reinforce standard security level whenever necessary.
Responsible for data classification across the organization ensuring staff awareness and proper follow-up and implementation.
Initiate, facilitate, promote and maintain activities to create the corporate information security awareness.
Ensure closure of any SOX deficiencies on yearly basis.
Maintain the archiving and record management policy and system.

Votre profil

Bachelor degree in Computer Science or IT.
Certifications such as CISSP and/or CISA are highly preferred.
Minimum 4 years of experience in the risk assessment and security field.
Previous experience in project management.
Good knowledge of information security technologies.
Strong knowledge of network exploitation, ethical hacking, penetration testing.
Knowledge of database applications, spreadsheet design and report writing software.

Compétences

Very good English both spoken and written.
Very good computer working skills such as databases, operating systems and networks.
Strong technical writing skills.
Good communication skills.
Excellent organizational abilities.
Strong people management skills.