Enable job alerts via email!
IS Governance Analyst
Sadara Chemical Company
Saudi Arabia
On-site
SAR 200,000 - 300,000
Full time
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Job summary
An established industry player is seeking a skilled Information Security professional to enhance their IT department's governance and risk management strategies. This role involves developing comprehensive Information Security policies, conducting risk assessments, and ensuring compliance with industry standards. The ideal candidate will have a Bachelor's degree in a relevant field and a minimum of three years of experience in Information Security. Join a forward-thinking company where you can make a significant impact on the organization's security culture and practices.
Qualifications
- Bachelor's degree in a relevant field is essential.
- 3 years of experience in Information Security roles.
Responsibilities
- Develop IT/OT governance framework and Information Security policies.
- Conduct Business Impact Analysis and manage risk assessments.
- Ensure compliance with Information Security regulations.
Skills
Education
Job description
Duties:
Job Purpose:
Provide technical and professional expertise to the IT department and other Sadara Business Functions for Information Security Governance, Strategy planning for Information Security (IS) enterprise wide, Information Security Risk Management and Compliance with Rules, Regulations and business requirements with associated enforcement and Information Security Awareness to assure defined secure level of Information Security behaviors in Sadara culture is achieved.
Functional Duties:
- Develop Information Technology (IT)/ Operation Technology (OT) governance framework from Information Security Management System perspective.
- Develop Information Security Policies, Guidelines and Standards.
- Develop Information Security Processes, Standard Operation Procedures (SOPs) and Minimum Security Baselines (MSBs).
- Alignment with policies and requirements from IT and the business, industry standards and best practices for both IT and OT.
- Develop, Implement and monitor Risk Management Methodology.
- Conduct Business Impact Analysis (BIA) and build Risk Register.
- Identify, analyze and provide recommendations on risk landscape, risk posture and mitigation plans.
- Evaluate and review business solutions/services from Information Security perspective.
- Participate in Change Management Advisory Board (CAB) meetings to review and reflect on Information Security Compliance for all changes (Normal and Urgent).
- Provide Information Security requirements and assure related rules and regulations compliance for systems/services acquisitions, development and maintained.
- Develop, Implement and verify effectiveness of Information Security Awareness programs and campaigns.
- Managements of Information Security Projects.
- Perform job related activities requested by line supervisors/manager.
Managerial Duties:
N/A
Education:
Essential: Bachelor degree in Computer Science, Computer Engineering or Information Management Systems.
Certification:
Years of Experience: 3
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
