Director – Information Security Operations
About the Role
DP World are recruiting for an experienced Information Security Operations Director, reporting to the Senior Director – Technology Governance Europe. This role is pivotal in safeguarding our organization’s digital assets and sensitive data. Tasked with overseeing the day-to-day operations of the information security team, ensuring that robust security measures are in place to protect against cyber threats and data breaches.
How you will contribute
* Cybersecurity Strategy: Working closely with Head Office, develop and oversee the organization's cybersecurity strategy, taking into account emerging threats, technology trends, and the business's evolving needs. Strategy should be 3 year forward looking with Quarterly management reviews to ensure alignment.
* Risk Management: Identify and assess information security risks to the organization's assets, including data, systems, networks, and intellectual property. Implement risk management strategies to minimize potential impacts in conjunction with the Risk and Compliance function.
* Security Operations: Develop a Regional Security operations centre with a team of dedicated Information Security analysts operating to defined daily, weekly, monthly and annual objectives aligned to Head Office and Regional objectives and standards. Responsibilities would include, Event management, Vulnerability management and reporting, Internal Penetration testing as well as Information security metrics reviews covering both the Top down regional view as well as bottom up site/plant/port view.
* Incident Response and Management: Develop an incident response plan and lead the response team in handling cybersecurity incidents, including data breaches, malware infections, and other security breaches.
* Security Awareness Training: Promote a security-aware culture within the organization by conducting training sessions and awareness programs for employees, educating them about potential threats and best practices. In addition, build upon internal exercises to strengthen awareness such as internal phishing tests and bulletins.
* Security Architecture: Collaborate with IT teams to design and implement secure infrastructure, networks, and applications. Review system designs for security flaws and recommend enhancements.
* Vendor Management: Working closely with the Risk and Compliance function, evaluate and manage relationships with external vendors providing security services or products to the organization.
* Incident Reporting and Documentation: Maintain detailed records of security incidents, investigations, and mitigation measures taken. Prepare reports for executive management and relevant stakeholders.
* Budgeting and Resource Allocation: Working closely with the IT Management team, support the development and management of the cybersecurity budget, ensuring optimal utilization of resources for security initiatives in line with Cybersecurity strategy.
* Collaboration and Communication: Act as the key liaison between technical teams, executive management, and the board of directors. Communicate the organization's security posture and risk exposure effectively at all levels within the Region.
What you will bring
* A bachelor's in computer science or IT Security or a combination of equivalent professional training and security industry certifications, combined with a minimum of three years related work experience in a position(s) with increasing responsibility may be accepted.
Industry-recognized certifications are desired and can demonstrate expertise. Some valuable certifications for this role include:
* Certified Information Systems Security Professional (CISSP)
* Certified Information Security Manager (CISM)
* Certified Information Systems Auditor (CISA)
* Certified Ethical Hacker (CEH)
* CompTIA Security+
* Cisco Certified Network Associate (CCNA) Security
* Experience in information technology that encompasses a variety of roles, such as working with SIEM, Data Loss Protection, Vulnerability Management, Forensics, IDS/IPS, privilege and identity management as well as software and security architectures, like NISt and ISO27001.
* Knowledge of industry standard processes (SDLC, CMMI, Change Mgmt, ITIL,OWASP), methodologies, standards, best practices and encryption methods and techniques
* Understanding of network and host-based intrusion detection (NDS/HDS), non-repudiation, access control, network security, threat modeling, SSL / TLS, Digital Signatures, auditing architectures, application vulnerabilities and Public Key Infrastructure (PKI) is desired
* Understanding of methods and models within information security & compliance to include risk analysis and mitigation, policies, regulatory environment, technologies, architecture and best-practices.
NOTE: There will be 10-25% travel requirement to attend team and site meetings. There may also be some adhoc travel across Europe when projects and the business require.
Compensation
DP World offers exciting and challenging roles within a growing international organization. We strive to hire and develop the right people, locally and globally, stimulating personal growth and self-development within an informal atmosphere. We offer a market competitive compensation package.
About DP World
Trade is the lifeblood of the global economy, creating opportunities and improving the quality of life for people around the world. DP World exists to make the world’s trade flow better, changing what’s possible for the customers and communities we serve globally.
With a dedicated, diverse and professional team of more than 103,000 employees spanning 75 countries on six continents, DP World is pushing trade further and faster towards a seamless supply chain that’s fit for the future.
We’re rapidly transforming and integrating our businesses -- Ports and Terminals, Marine Services, Logistics and Technology – and uniting our global infrastructure with local expertise to create stronger, more efficient end-to-end supply chain solutions that can change the way the world trades. The DP World family comprises of syncreon, Imperial and P&O.
What's more, we're reshaping the future by investing in innovation. From intelligent delivery systems to automated warehouse stacking, we’re at the cutting edge of disruptive technology, pushing the sector towards better ways to trade, minimising disruptions from the factory floor to the customer’s door.
WE MAKE TRADE FLOW
TO CHANGE WHAT'S POSSIBLE FOR EVERYONE
DP World is committed to the principles of Equal Employment Opportunity (EEO). We strongly believe that employing a diverse workforce is central to our success and we make recruiting decisions based on your experience and skills. We believe that employees are happiest when they’re empowered to be their true, authentic selves. So, please come as you are. We can’t wait to meet you.
By submitting your resume and application information, you authorize DP World to transmit and store your information in the world-wide recruitment database, and to circulate that information as necessary for the purpose of evaluating your qualifications for this or other job vacancies.
#J-18808-Ljbffr