Créer l'avenir,
Maintenant.

VAC4329 - Security Specialist (UAE National)

Secteur Information Technology
Lieu Dubai, U.A.E.
Département DPW FZE DUBAI PORT INTL
Date de Fermeture 27-Oct-2019
About the Business

DP World is a leading enabler of global trade and an integral part of the supply chain. We operate multiple yet related businesses – from marine and inland terminals, maritime services, logistics and ancillary services to technology-driven trade solutions.

We have a portfolio of 77 operating marine and inland terminals supported by over 50 related businesses in 40 countries across six continents with a significant presence in both high-growth and mature markets. We aim to be essential to the bright future of global trade, ensuring everything we do has long-lasting impact on economies and society and creates a better future for everyone.

Our dedicated team of over 37,000 employees from 110 countries cultivate long-standing relationships with governments, shipping lines importers and exporters, communities, and many other important constituents of the global supply chain, to add value and provide quality services today and tomorrow.

We make sure cargo keeps moving so people have the things they need, when they need them, helping economies grow and nations prosper. It’s an important job, and one that requires smart, proud, passionate people working all across the world – people who are not afraid to innovate and find new ways of driving our business forward. We foster a culture of collaboration, innovation and respect. Our global workforce is made up of 45,000 people with over 110 different nationalities who bring their experience and expertise together, allowing us to be a global leader.

By thinking ahead, foreseeing change and innovation we aim to create the most productive, efficient and safe trade solutions globally.

 

About the Role

DP World is developing digital trade solutions that are based on the latest technologies and using distributed systems often using cloud solutions. We need to design a robust solution architecture that is in sync with the business requirements, by leveraging a hybrid best-in-class technology landscape, micro-services patterns and developing products based on Agile methodology.

The Security Manager will lead our security strategy and its implementation to safeguard our services and data. This position will oversee risk assessment, threat modelling, security reviews and vulnerability remediation. This position will manage the design and implementation of security mechanisms, processes and tools to protect against risks. The Security Manager will participate in architectural and system design discussions and share their security expertise with technical and business stakeholders across the organization, from engineers to executives. This role is a security technical expert with extensive management experience on large-scale systems.

 

Key Accountabilities
  • Conduct security risk assessments for the Mawani product or its associated installations (for directly owned subsidiaries) in defined areas and provide advice and guidance on the application and operation of elementary physical, procedural and technical security controls (e.g. the key controls defined in BS7799, ISO 27001, ISR of (Government of Dubai) and other applicable regulations or standards).
  • Designs and implements procedures and controls necessary to ensure and protect organization data
  • Ensures prevention of intentional or inadvertent access, modification, disclosure or destruction. 
  • Provides guidance and direction both within IT and among users for the physical protection of information systems assets, corporate information, and intellectual property assets.
  • Protect and defend information systems by ensuring availability, integrity, authentication, confidentiality and non-repudiation. Provides for restoration of information system by ensuring that protection, detection and reaction capabilities are incorporated.
  • Strong understanding of top SANS security controls, OWASP Top security controls, 
  • Understand enterprise-wide vision for information security issues, review the current architecture and implemented solutions.  
  • Proficient in the use of security testing tools and code analyzers to determine gaps in application level security.
  • Work with the product owners, architects, developers, and technical project managers to implement “security by design” i.e. to review requirements and propose the required security controls as a part of the application design.
  • Review and improve the existing Application Security framework. 
  • Provide assistance in the identification, prioritization and remediation of information systems vulnerabilities. 
  • Performs regular system vulnerability assessments and reports findings and recommendations.
    The management of, and provision of expert advice on, the selection, design, justification, implementation and operation of information security controls and management strategies to maintain confidentiality, integrity, availability, accountability and relevant compliance of information systems.
  • Facilitate all information security related audit including scope of audits, timelines, and closing of recommended audit actions.
  • Act as a change agent for an effective security culture in the organization and review, evaluate and recommend changes in information security policies to ensure compliance with DPW Corporate security policy, ISO 27001, Dubai government’s information Security regulation(ISR), and other Federal / Local Government’s regulatory compliance as per law of the land.
  • Conduct technical information security assessment of systems and provide recommendations for ensuring compliance with all applicable regulations and certification needs.
  • Liaise with HO IT Security and IT management team to ensure all softwares and policies are aligned with global standards.
  • Promote and demonstrate positive behaviours in harmony with DP World’s value and culture.
  • Act as an ambassador for DP World at all times when working; promoting and demonstrating positive behaviours in harmony with DP World’s Founder’s Principles, values and culture; ensuring the highest level of safety is applied in all activities; understanding and following DP World’s Code of Conduct and Ethics policies.
  • Perform other related duties as assigned. 

 

Qualifications and Experience

Minimum Qualifications:

  • Computer Science or Engineering degree.

Minimum Experience:

    • 6-8 years overall experience with at least 5 years as a software security engineer
    • 4 years managing security teams for large-scale projects

Job Specific Skills:

  • Extensive hands-on technical experience with a proven track record of being able to learn new technologies and design products from the ground up.
  • Expertise in web application, system and network security.
  • Experience in designing and implementing software and security tools.
  • Experience in penetration testing and vulnerability assessment.           
  • Capable of communicating effectively verbally and in writing to an executive audience.
  • Experience defining, implementing and integrating security controls in Cloud IaaS, PaaS, and SaaS environments. 
  • Background in securing services and/or architecting separation controls in Cloud systems.
  • Assess security configurations for firewalls, databases, servers.
  • Hands-on knowledge and implementation experience with tools and technologies used throughout secure SDLC phases
  • Experience with distributed system architecture and cloud solutions such as AWS

Generic Skills:

  • Excellent Communication skills
  • PowerPoint and Excel skills
  • Analytical Thinking
  • Able to work under pressure and handle parallel task without compromising quality
  • Coaching & Mentoring

 

Other Information

The employment benefits package is reflective of the location for this position.

 

Retour à la recherche