Managing the Plant Cyber Security department with the mission and resources to assist in ensuring Company compliance with relevant information and nuclear security standards and regulations.
Managing the Plant Cyber Security department with the mission and resources to assist in ensuring Company compliance with relevant information and nuclear security standards and regulations. Protecting Company information and information systems in terms of confidentiality, integrity and availability through security planning, managing risk assessment processes and strengthening and developing department resources with objective to constantly improve information & cyber security posture of the organization.
Activity: Leadership
Responsibility:
• Provide leadership and guidelines on information assurance security expertise for the site part of organization, working effectively with strategic organizational functions such as legal experts and technical support to provide authoritative advice and guidance on the requirements for security controls.
• Take initiatives in leading the Plant Cyber Security departments with clearly set objectives which are aligned with organization objectives using full range of leadership skills.
Activity: Strategy and Planning
Responsibility:
• Participate in formulating and setting effective information & cyber security strategies consistent with the business and competitive strategy for the site part of the organization.
• Communicates and carries out the organization’s information security strategy, developing it as an integrated part of the business strategy.
• Contribute in overseeing policy issues and strategic planning with a long-term perspective; assure that set objectives and set priorities are met; assess potential threats or opportunities.
• Prepare the Plant Cyber Security department budget, and monitors financial performance versus the budget to ensure alignment
• Positively contribute to the establishment and maintenance of a robust security culture within Company.
Activity: Information Security Management
Responsibility:
• Manages the information security functions and data subjects needed to support future business, thereby enabling the development of an Information Security Architecture.
• Direct information resources, to create value for the stakeholders by improving the security of the organization, whilst maintaining the principles of professional standards, accountability, openness, equality and diversity and clarity of purpose.
• Assess compliance with regulations, standards and codes of good practice relating to information security and cyber, information assurance and data protection.
• Managing Plant Cyber Security processes: site infrastructure security, industrial systems security, risk and compliance, setting and enforcing policies and procedures, security planning, developing and improving information security architecture, monitoring and intelligence, and assurance and testing.
Activity: Programme Management
Responsibility:
• Ensures that there are appointed resources for managing Plant Cyber Security programs and projects within the department (e.g. cyber programme, compliance, information classification, security operations center, forensics projects and similar)
• Manage and implement complex programmes from contract /proposal initiation to final operational stage.
• Ensures that programme objectives are aligned with business objectives, and recommends the selection and planning of all related projects and activities.
Activity: People management
Responsibility:
• Manage the effective achievement of organization’s objectives by setting individual targets, developing and motivating staff, provision of formal and informal feedback and appraisal - in order to maximize subordinate and department performance.
• Contribute to the development of UAE National employees in a manner which supports the objectives of the corporation and its Emiratization strategy.
• Contribute to knowledge dissemination/sharing in a way that assists with building internal capabilities of UAE Nationals where applicable and maximize their effective performance.
Technical Competency
• Industrial Systems Security
• Nuclear Security
• Information Security governance
• Incident handling and management
• Knowledge of Information Security frameworks and standards like ISO 27001, ADSIC, NESA and FANR regulations
• Communications Security Management
• Compliance
• Computer Network Defense
• Configuration Management
• Encryption
• Identity Management
• Information Assurance
• Information Resources Strategy and Planning
• Asset management
• Information Systems/ Network Security
• Information Security Architecture
• Risk Management
• Technology Awareness
• Vulnerabilities Assessment
Behavioral Competency
Core Competencies:
• Respect for Safety and Security
• Integrity and Transparency
• Communication Effectiveness
• Results Focus: Working effectively and efficiently
• Teamwork
• Accountability
• Customer Focus
Leadership Competencies:
• Strategic and Visionary Thinking
• Inspirational Leadership
• Effective Decision Making
• Personnel Development
• Effective Partnering
• Performance Improvement