Enable job alerts via email!

IDB3506 - Senior Solution Security Specialist

Islamic Development Bank (IsDB)

Jeddah, Makkah Al Mukarramah

On-site

SAR 200,000 - 300,000

Full time

Yesterday
Be an early applicant

Generate a tailored resume in minutes

Land an interview and earn more. Learn more

Start fresh or import an existing resume

Job summary

The Islamic Development Bank is seeking a Senior Solution Security Specialist to oversee the governance of business applications' security. The role involves establishing security frameworks, ensuring compliance with policies, and collaborating with stakeholders to mitigate risks and enhance application security. Candidates should possess a Bachelor's degree in Computer Science and extensive experience in security operations.

Qualifications

  • Minimum 8 years in information and security operations.
  • 3+ years managing Solution and Application security risk.
  • CISSP or CISM certification is preferred.

Responsibilities

  • Establish and maintain security governance model.
  • Implement and maintain security controls per policies.
  • Participate in application change management processes.
  • Work with auditors for security assessments.

Skills

Agile methodology
Security standards implementation
Network administration
Application security improvement

Education

Bachelor’s degree in Computer Science or Engineering

Job description

Job Purpose

The Senior Solution Security Specialist is responsible for the security governance of IsDB’s business applications in line with the defined business and security strategy. Additionally, the Senior Solution Security Specialist works with the respective stakeholders on daily basis to ensure that risks have been mitigated and security regulatory requirements have been met.

Key Accountabilities

  • Establish, operate, and maintain the security solution governance model based on the business requirements and best practices.
  • Ensure adherence to cybersecurity and IT governance policies and guidelines in collaboration with Security Operations.
  • Guide the business and IMDT stakeholders to implement and maintain security controls as per IsDB security policies and regulatory requirements.
  • Ensure that identified risks and audit findings are mitigated on the agreed timelines. Also, follow a risk based approach in day-to-day solution governance activities to ensure that security risks are proactively identified and closed.
  • Ensure that security due-diligence is performed on new initiatives, RFPs, projects and major solution changes and communicate the observations via agreed channels.
  • Participate in application change management process and ensure that risks identified and security requirements are established.
  • Ensure that IsDB’s security compliance requirements are identified on annual basis. Prepare plan for achieving security compliance and communicate it to all stakeholders.
  • Work with internal and external auditors to ensure that required independent assessments have been conducted. Ensure that security attestations are submitted to regulatory institutions as per defined timelines.
  • Work as part of the CSIRT team in case of security events to ensure that incident is identified , contained and solutions/information are recovered in timely manner.
  • Perform application security vulnerability management.
  • Consult with product teams in application security and introduce Application security improvements.
  • Maintain applications patch management security/risk assessments.
  • Ensures that the solutions securities for each product group comply with IsDB’s Enterprise security and governance to meet business requirements and promote reusability.
  • Define and maintains solution-specific security procedures and guidelines for the solution development lifecycle stages in collaboration with the IT Governance team and reviews adherence on a periodic basis.
  • Anticipates security alerts, incidents and disasters and reduce their likelihood by determining the most effective way to protect IsDB’s applications, and data against possible security risks.
  • Contribute to the development of the IT strategy, enterprise architecture, standards, policies, procedures and budgets in relation to IT infrastructure and IT security infrastructure and services for HQ and Regional Hubs.

Academic And Professional Qualifications

  • Bachelor’s degree in Computer Science or Engineering or related field.
  • Minimum 8 years of experience in information and security operations, including 3+ years of experience managing Solution and Application security risk-based.

Skills & Necessary Knowledge

  • Adopt the ability to execute work in an agile, innovative manner (DevOps), while also maintaining traditional project methodologies (such as waterfall when needed).
  • Experience in implementing security standards, network engineering/administration, operating system security and vulnerability assessment tools.
  • CISSP or CISM or other relevant information security industry recognized certification.
  • Good understanding of server & application systems, networks, firewalls, and load balancers.
  • Prefer to have CEH (certificate of Ethical hacking).

Languages

  • English - Mandatory
  • Arabic - Preferred
  • French - Preferred

About Application Process

If you meet the criteria and you are enthusiastic about the role, we would welcome your application. To complete the application you would need the following document(s):

  • Resume/CV
  • Copy of passport
  • Academic certificate
Get your free, confidential resume review.
or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.
TrustpilotImage showing a rating of 4.5 out of 5 stars on Trustpilot for JobLeads, indicating a high level of customer satisfaction.
Rated “Excellent” based on 16,602 reviews
Follow us
JobLeads Youtube ProfileJobLeads Linkedin ProfileJobLeads Instagram ProfileJobLeads Facebook ProfileJobLeads Twitter AccountJobLeads Xing Profile
Company
Services
Free resources
Support

© JobLeads 2007 - 2025 | All rights reserved