Corporate Cyber Security Governance Consultant
Saudi Basic Industries Corporation - Sabic
Total years of experience :10 years, 3 Months
• Formulated recommendations for implementing GRC, business impact analysis, and security assurance to improve systems and operational security
• Security Metrics definition, measuring and collection for IT Security services performance
• Reports generation, Quality Review, Improve and Distribution to the stakeholders
• Partner with risk management to ensure the transparent communication of risk reporting related to compliance revaluations and identified gaps
• Track remediation of any gaps to compliance with the implementation area to ensure closure and tracking to deadline
• Monitor the operational reports to identify potential areas of improvement or change required within the security services.
• Work with Information Security Architecture team on emerging and new security technologies for possible adoption and update the Cybersecurity policy, standard and guidelines
• Administering an on-going security awareness program
• Performed Technical & Compromise assessments of IT & OT systems
• Assess whether the Confidentiality, Integrity and Availability of services are maintained at the levels agreed in the Service Level Agreements
• Report, Perform periodic review and updates on the Cybersecurity policy, standards and guidelines