It Governance & Security Specialist
Gulf Drilling International
Total years of experience :9 years, 4 Months
Responsibilities
Advisor to C-Level Executives and Steering Committee on Security Governance, Risk & Compliance.
Head of Enterprise Risk Management Committee reporting to CEO/Audit Committee.
Manage the IT Security & Governance Function with fully accountability and Establish Security governance throughout the enterprise.
Develop overall Security Governance Strategy, plan and design of Information security solutions to secure the Company from Cyber Security Threats and ensure that the security risks are within the acceptable limit.
Perform the periodic Risk Assessment, Vulnerability Assessment and Penetration testing activities and lead the mitigation activities.
Perform IT infrastructure configuration and IT Control review and identify security flaws within the IT Landscape and ensure the Security Standards are maintained.
Set direction, develop IT Strategy and lead the business-technology alignments.
Implement IT Governance Practices (COBIT 5) and Information Security Management Systems (ISMS) to achieve the ISO 27001 certification.
Advise on Cost Optimization, IT Budget, and Process Improvement Programs and implement industry best practices and reduce the TCO (total cost of ownership) and add value to IT investment.
Evaluate the overall performance of IT Department and set strategic direction for “IT Operational Excellence.
Prepare and Manage IT Security & Governance Function budget and ensuring that adequate investments are made to maintain the IT Security Posture of the organization.
Evaluate IT operations and Business Processes according to the established Governance Framework.