Duties and responsibilities: Own ongoing compliance with data protection regulations like HIPAA and GDPRStay aware and current on all government policies related to data protection.Stay aware of the developing cybersecurity threat landscape using regular NIST alerts (or equivalent) and filter noise from actual threats to the ecosystem.Monitor systems for suspicious activity.Establish cybersecurity policies and protocols.Establish data privacy policies and protocols.Partner with Compliance to maintain and deliver regular cybersecurity and data privacy training to all employees.Enforce cybersecurity and data privacy policies with all third parties.Initiate and sponsor regular cybersecurity audits, including penetration tests, to identify vulnerabilities.Assess all audit findings, establishing a prioritized path to mitigation.Report the state of cybersecurity threats and readiness to the CTO, CEO, and board on a regular basis.Establish dashboards and metrics to monitor current state and improvement over time.Select and implement appropriate monitoring tools.Develop an annual budget and business case tied to security investment needs.Establish a plan to protect against ransomware attacks and to ensure the business can continue uninterrupted in the event of an attack.Work with other IT and business leaders to establish a robust Disaster Recovery Business Continuity PlanManage prioritization and execution priority on all cybersecurity and data privacy work.Work with the Technical Management to manage the security-related budget.Hire, manage, and coach security team members.Manage security assessments for customers and potential customers audits.Ensure Access Management processes and policies are robust and followed. Benefits Employment contract will be for an initial one-year term (with a three-month probation period) with possibility of renewal.Working hours according to the Libyan Labour Law.Company will process INAS (social contributions).Company will cover partial medical expenses.Training opportunities.Masarat prides itself on its collegial and supportive working environment, which allows space for personal and professional growth. Job Requirements A background in Systems Engineering (Windows and Linux)The ability to build relationships and be able to integrate into business units.Clear communication and writing skills.Security control performance analysis and improvementA working knowledge of ISO/IEC27001 and PCI-DSSadvanced understanding of risk assessment and management3 years of current experience in a security and 5 years in ITBachelor’s degree is a minimum. How To ApplySend your CV to
قدم سيرتك الذاتية الان
اضغط هنا لاظهار البريد الالكترونى
قدم للوظيفة بدون تسجيل بالبريد الالكترونى! 