Chief Information Security Officer Pearl Marina Estates Limited

Key Responsibilities:
1. Develop and Execute Zero Trust Architecture Strategy:
o Lead the development and implementation of the Zero Trust Architecture strategy, ensuring alignment with the bank’s overall security objectives.
o Define the roadmap for transitioning to a Zero Trust Architecture, including goals, milestones, and resource requirements.
o Evaluate emerging technologies and industry best practices to enhance the bank’s security posture.
2. Security Governance and Risk Management:
o Establish and maintain a robust security governance framework that aligns with regulatory requirements, industry standards, and best practices.
o Identify and assess security risks, vulnerabilities, and threats, and develop appropriate risk mitigation strategies.
o Collaborate with internal stakeholders to establish security policies, standards, and procedures that support the Zero Trust Architecture.
3. Security Operations and Incident Response:
o Oversee the design, implementation, and operation of security controls and technologies to protect the bank’s infrastructure, applications, and data.
o Develop and maintain an incident response plan, ensuring the organization’s readiness to detect, respond, and recover from security incidents.
o Conduct regular security assessments, penetration testing, and vulnerability scanning to identify potential weaknesses and recommend remediation measures.
4. Security Awareness and Training:
o Develop and implement a comprehensive security awareness program to educate bank employees on the principles of Zero Trust and their roles in maintaining a secure environment.
o Conduct regular security training sessions and workshops to enhance the security awareness and knowledge of employees across the organization.
5. Stakeholder Management and Collaboration:
o Collaborate with senior management, business units, and technology teams to understand their requirements, align security objectives, and ensure the successful implementation of the Zero Trust Architecture.
o Engage with external partners, vendors, and industry peers to stay abreast of the latest security trends, technologies, and threats.

Requirements:
1. Education and Experience:
o Bachelor’s degree in Computer Science, Information Security, or a related field. A master’s degree is preferred.
o Extensive experience (minimum of 10 years) in information security, including hands-on experience in designing and implementing security solutions in a complex environment.
o Proven experience in leading and managing security operations, incident response, and risk management teams.
o Experience in the financial industry or a similarly regulated environment is highly desirable.
2. Technical Skills:
o In-depth knowledge of cybersecurity principles, frameworks, and standards (e.g., NIST, ISO 27001, etc.).
o Strong understanding of Zero Trust Architecture principles, concepts, and implementation strategies.
o Familiarity with cloud security, network security, identity and access management, encryption technologies, and secure coding practices.
o Experience with security tools such as SIEM, DLP, IDS/IPS, and vulnerability management systems.
3. Leadership and Communication Skills:
o Excellent leadership and people management skills with the ability to build and motivate high-performing teams.
o Strong analytical and problem-solving skills with the ability to make sound decisions in complex and high-pressure situations.
o Exceptional communication and presentation skills.