Department Description:
The formation of the Group Information Security function is to ensure EmiratesNBD information and data is resilient against external and internal security threats embed information security mindset as a core element of organization business strategy and provide an independent objective view of EmiratesNBD Security posture to the management committees The unit exists to provide secure banking environment for our customer and employees
The formation of the Group Information Security function is to ensure EmiratesNBD information and data is resilient against external and internal security threats embed information security mindset as a core element of organization business strategy and provide an independent objective view of EmiratesNBD Security posture to the management committees The unit exists to provide secure banking environment for our customer and employees
Brief Description:
The formation of the Group Information Security function is to ensure EmiratesNBD information and data is resilient against external and internal security threats embed information security mindset as a core element of organization business strategy and provide an independent objective view of EmiratesNBD Security posture to the management committees The unit exists to provide secure banking environment for our customer and employees
The formation of the Group Information Security function is to ensure EmiratesNBD information and data is resilient against external and internal security threats embed information security mindset as a core element of organization business strategy and provide an independent objective view of EmiratesNBD Security posture to the management committees The unit exists to provide secure banking environment for our customer and employees
Detailed Description:
The Third Party Threat Assessment Specialist will assess and monitor third parties that provide supplies and services to Emirates NBD that affect the banks information security and cyber posture through focused threat and risk based methodologies and frameworks to identify and expose weaknesses in the third parties Cyber readiness and review security controls and system configurations across third parties to ensure their security posture and compliance The specialist is expected to
Work with key internal stakeholders to identify third parties and their potential criticality to the bank
Collect open source intelligence on threats and vulnerabilities that third parties expose publicly to identify any potential exposure to the bank
The Third Party Threat Assessment Specialist will assess and monitor third parties that provide supplies and services to Emirates NBD that affect the banks information security and cyber posture through focused threat and risk based methodologies and frameworks to identify and expose weaknesses in the third parties Cyber readiness and review security controls and system configurations across third parties to ensure their security posture and compliance The specialist is expected to
Work with key internal stakeholders to identify third parties and their potential criticality to the bank
Collect open source intelligence on threats and vulnerabilities that third parties expose publicly to identify any potential exposure to the bank
Job Requirements:
Periodically assess the security and compliance of third party IT suppliers of Emirates NBD and review them for weaknesses in order to protect Emirates NBD from any exposure through these
Execution of the Periodic Assessment Charter
Enhancement of the Periodic Assessment Framework
Act as an advisor to internal teams to advise them of third party risk
Manage and continuously enhance a third party assessment program to review third party IT Suppliers
Proficient in industry best practices in Supplier Threat Management
Be accountable and responsible to conducting security assessments and work with relevant stakeholders to execute these
Periodically assess the security and compliance of third party IT suppliers of Emirates NBD and review them for weaknesses in order to protect Emirates NBD from any exposure through these
Execution of the Periodic Assessment Charter
Enhancement of the Periodic Assessment Framework
Act as an advisor to internal teams to advise them of third party risk
Manage and continuously enhance a third party assessment program to review third party IT Suppliers
Proficient in industry best practices in Supplier Threat Management
Be accountable and responsible to conducting security assessments and work with relevant stakeholders to execute these
Additional Details:
Education General Professional
Bachelors or Masters degree in Computer Science Mathematics or equivalent discipline
Masters Degree in Business Management or equivalent
Certifications such as CISSP OSCP OSCE CREST GPEN SANS GWAPT
Third Party Assessment Certifications such as C3PRMP CTPRA CTPRP
PMP Certification
Essential
Desirable
Desirable
Desirable
Desirable
Education General Professional
Bachelors or Masters degree in Computer Science Mathematics or equivalent discipline
Masters Degree in Business Management or equivalent
Certifications such as CISSP OSCP OSCE CREST GPEN SANS GWAPT
Third Party Assessment Certifications such as C3PRMP CTPRA CTPRP
PMP Certification
Essential
Desirable
Desirable
Desirable
Desirable
Qualifications
AS Mentioned in the JD
Primary Location : United Arab Emirates-Dubai-Dubai – Nadd Al Shiba, Meydan, Building M
Job : Professional Support
Organization : Group Information Security
Schedule : Regular
Shift : Standard
Job Type : Full-time
Day Job
Job Posting : Nov 1, 2022, 2:37:32 AM
More Information
- Address Nad Al Sheba - Nad Al Sheba 1 - Dubai
- Experience Level Junior
- Total Years Experience 0-5
Email Me Jobs Like These
Showing 1–0 of 0 jobs
