We are seeking an experienced Information Security Officer (Arabic Speaking) to ensure compliance with information security policies during mega sports events and non-event operations. The role is responsible for managing information security governance, risk, compliance, incident handling, and awareness programs to maintain a secure information environment.

Key Responsibilities:

Information Security Governance

• Plan, coordinate, and organize all information security activities.
• Enforce and monitor compliance with IT Information Security Policies.
• Develop, implement, and maintain Information Security Policies, Procedures, and ISMS activities.
• Conduct risk assessments covering people, processes, technology, and information processing facilities.
• Ensure implementation of security controls as defined in Risk Treatment Plans.
• Lead Information Security communications and ISMS committee activities.
• Assess operational effectiveness and compliance levels across the organization.
• Supervise related assurance and compliance functions.

Security Incident Management

• Establish and maintain formal procedures for reporting and tracking security incidents.
• Oversee investigation, handling, escalation, and resolution of information security incidents.
• Ensure timely incident notification and reporting in line with policy.
• Document lessons learned, corrective actions, and preventive measures to avoid recurrence.

Problem Management

• Analyze incidents to identify underlying and recurring security problems.
• Categorize, prioritize, and investigate security issues based on impact and severity.
• Identify root causes, define workarounds, and maintain known-error records.

Risk Management

• Define and manage formal risk management processes.
• Conduct regular vulnerability and risk assessments.
• Develop and implement risk mitigation and remediation plans.

Information Security Implementation & Compliance

• Lead the development of operational security procedures.
• Manage protection against malicious code and cyber threats.
• Oversee backup, recovery, and system availability controls.
• Ensure network and infrastructure security management.
• Define and enforce policies for media handling and information exchange.
• Establish controls for electronic messaging, online services, and external system access.
• Monitor adherence to operational policies and procedures.
• Ensure internal and external compliance with applicable laws, regulations, and standards.

People Management & Awareness

• Provide guidance, performance input, and development plans for team members.
• Conduct information security awareness and orientation programs.
• Lead and coordinate Information Security Committee meetings.

Requirements

• 8–10 years of experience in systems, network, and IT security.
• 5–6 years of experience in Information Security and management roles.
• Bilingual – Arabic speaking (Mandatory).
• Strong leadership, coordination, and stakeholder management skills.

Education

• Bachelor’s degree in:
• Computer Science / Electronics & Communication Engineering
• OR Information Technology

Certifications

• Information Security certification from internationally recognized bodies such as:
• ISACA (CISM, CISA, CRISC)
• ISC² (CISSP, SSCP)