Role Purpose:
• Acts as the primary point of contact in designing/enforcing information security controls for Vodafone Egypt in accordance with the ISO 27001 mandates and Vodafone Group’s standards.
• Designs and implements information security program that effectively and efficiently protects the company’s data assets and facilitates our implementation of corporate strategy in a secure manner.
Key Responsibilities:
1. Develop and oversee the implementation of information security policies, procedures, and best practices to protect the organization’s assets.
2. Business Ownership of Information Security Controls
o Monitoring users’ activities: that would serve in the mitigation of any information security risks and would safeguard Vodafone’s reputation and integrity.
o Document and own Vodafone’s security policies and procedures to ensure that robust security controls and guidelines are communicated to all Vodafone and VIS employees to reduce risks, violations and financial losses.
3. Incidents Investigations
o Report on VF-EG’s suspicious user’s behavior by setting different security baseline & benchmark criteria across VF-EG systems.
o Provide forensics to the Corporate Security Internal Investigations team in order to assist in investigating violations.
4. Risk Management
Identify, assess, and manage security risks and vulnerabilities for new projects through security committee & for existing systems
Skills Required:
Core competencies, knowledge and experience:
• Experience in forensic investigations with significant experience in examining IT systems and presentation in civil/criminal justice systems including concise written reports.
• Thorough understanding of current telecoms technologies
• Excellent interviewing and fact-finding skills as a requisite for conducting internal interrogations.
• Excellent analytical skills and ability to provide rapid and concise summaries and resolutions to complex scenarios and problems.
• Ability to motivate and develop a team of individuals to gain maximum performance
Must have technical / professional qualifications:
• BSc in Computer Engineering or related IT discipline.
• Experience of at least 4 years in Control function. Egypt.
• One or more of information security certificate CISA, CISM