As a Technology Controls Lead, you will play a pivotal role in ensuring the security and resilience of the technology infrastructure. This multifaceted role involves responsibilities that span various domains, with a strong emphasis on a consultant-like approach. You will collaborate closely with our IT teams, taking a proactive role in shaping and enhancing the security posture.

Client Details

My client leads a groundbreaking urban development corporation, driving a forward-thinking initiative in Saudi Arabia. Their focus is on promoting innovation, sustainability, and economic variety, attracting international investments and top-notch professionals from diverse industries to shape tomorrow.

Description

Infrastructure Security:

* Work closely with external vendors and partners to ensure that controls required by our IT policy are appropriately addressed in SOC reports.
* Assess and enhance security controls for in-house developed solutions to safeguard our infrastructure.

Cloud Controls:

* Collaborate with IT teams to develop and implement a comprehensive Cloud Control Framework.
* Ensure the secure configuration and management of various cloud solutions used by the organization.
* Monitor and assess the effectiveness of cloud security controls and recommend improvements as needed.

Identity and Access Management (IAM):

* Implement and manage IAM controls to ensure that access to critical systems and data is authorized and monitored.
* Review and update IAM policies and procedures to align with evolving business needs and security requirements.

Disaster Recovery:

* Develop and maintain a robust disaster recovery plan to minimize downtime and data loss in the event of a disaster.
* Conduct periodic disaster recovery testing and exercises to validate the effectiveness of the plan.

Data Protection:

* Implement data protection measures to safeguard sensitive and confidential data.
* Collaborate with data owners to classify data and apply appropriate security controls.

Governance, Risk, and Controls:

* Articulate and report on security issues and risks to senior management.
* Review and draft policies, procedures, and standards to ensure compliance with industry regulations and best practices.

Job Offer

* Opportunity to work with one of the biggest player in the industry
* Permanent opportunity

Requirements

* Bachelor's degree in Computer Science, Information Technology, or a related field.
* Minimum of 5 years of experience in technology controls, risk advisory, IT audit, or a related role.
* Strong technical skills in Infrastructure Security, Cloud Controls, IAM, Disaster Recovery, and Data Protection.
* Ability to adopt a consultant-like approach, focusing on risk, authorization, access management, and cybersecurity.
* Excellent communication skills, both written and verbal, to effectively communicate complex security concepts to technical and non-technical stakeholders.
* Relevant certifications such as CISSP, CISA, CISM, or similar are a plus.