Senior Manager Cyber Security (DevSecOps) – Qatar Airways , Qatar

Strategic:
Develop a data and digital cybersecurity risk management portfolio to ensure that cybersecurity risks are adequately identified and managed for each cybersecurity capability defined in the Qatar 2022 cyber security framework
Develop the Data and Digital including Cloud Cyber Security framework to ensure compliance to the Cyber security frameworks such as ISO27001, PCI-DSS, Qatar2022 framework and NIST.

Operational:
Establish a cloud security strategy for Qatar Airways.
Establish cloud security policy, forms and procedures in support of the cloud security strategy.
Establish governance and assign cloud specific roles and responsibilities within the IT department.
Deploy and train Cyber Security team members on Cloud Security aspects.
Continually improve cloud policy, procedure & guidelines with changing risks and lessons learned
Define cloud security monitoring parameters and incident handling procedures.

Qualifications
Technical Skills required:
Solid Knowledge of cloud security concepts and fundamentals.
Capable of Evaluating and addressing the cyber risks to cloud security and virtualized environments, especially on the Microsoft Azure environment.
Solid knowledge of hardening cloud platforms and the underlying cloud fabric.
Knowledge of the unique cyber security risks pertaining cloud environments such as multi-tenancy, the rapid and agile deployment risks
Capable of working with and supporting the Security monitoring team and the SOC function in monitoring the Cloud infrastructure
Solid understanding of applicable best practices and security standards such as ISO 27017, NIST SP 800-145, NIST SP 500-291.
Understanding of the Qatar National cloud security policies and standards is preferred.
Good understanding of the legal, regulatory and privacy implications of cloud computing

Qualification and Experience:
You should hold Bachelor’s Degree with minimum 10 years of job related experience.
Full-time work experience in data and digital including cloud security management.
Have carried out successful Cloud Security Risk Assessment and treatment Programmes in a large environment
Have lead the design, implementation, operation and maintenance of the data and digital Security framework.
Recommended Certifications:
SANS GIAC Cloud Security Fundamentals
Cloud Security Alliance (CCSK) Certificate of Clod Security Knowledge
EC – Council Certified Ethical Hacker
SANS GIAC Certified Enterprise Defender
SANS GIAC Security Essentials

Click here to Apply Online

Enter your email address to receive latest Gulf Jobs Updates: