Roles and responsibilities
- Develop a comprehensive threat assessment for multiple infrastructure projects, covering a wide range of scenarios, from petty crime to terrorism, identify and evaluate security threats, considering various factors such as location, type of property, and potential risks.
- Develop the security Strategy of the infrastructure projects with realistic and cost-effective strategies tailored to each client's unique needs.
- Assist in prioritizing security measures based on potential risks and operational requirements, while considering factors such as budget constraints and adaptability to future changes.
- Develop the mitigation measures plan, recommend appropriate security measures, including both physical and electronic solutions.
- Assist in estimating cost, coordination with clients, and adapting strategies to evolving security needs.
- Propose a variety of technical security solutions, including video surveillance, access control, intrusion detection, and communication systems. Collaborate with multidisciplinary design teams to integrate security systems with development infrastructure.
- Develop the physical security design concepts such as landscaping, and crime prevention through environmental design (CPTED).
- Provide support in project coordination, tender processes, compliance reviews, through the project lifecycle activities related to security implementation.
- Propose the latest security trends, and innovative technologies in the field.
Requirements
- Minimum 15 years’ experience in security risk management, strategy, and systems design.
- Must have Civil infrastructure projects experience.
- Work under pressure with the ability to prioritize and plan effectively.
- Middle East experience is required.
- Excellent interpersonal skills.
Qualifications
Masters or bachelors degree in engineering (Electronics, Telecommunications, Electrical or equivalent)
Desired candidate profile
-
1. Security Strategy Development
- Develop Security Frameworks: Design and implement comprehensive security strategies for protecting digital and physical assets, considering factors like risk management, threat mitigation, and compliance with legal and regulatory standards.
- Security Architecture Design: Oversee the design and architecture of security systems (e.g., network security, access control, surveillance systems) ensuring they are scalable, efficient, and meet organizational needs.
- Incident Response Strategy: Lead the development and implementation of incident response plans, including detection, containment, and resolution of security breaches or attacks.
-
2. Cybersecurity Leadership
- Cybersecurity Infrastructure: Direct the design and deployment of cybersecurity measures to protect organizational networks, data, and systems from cyber threats such as malware, ransomware, and hacking attempts.
- Vulnerability Management: Conduct regular security assessments, vulnerability scans, and penetration testing to identify potential security weaknesses and lead efforts to patch or mitigate these vulnerabilities.
- Compliance and Standards: Ensure compliance with industry standards (e.g., ISO 27001, NIST), and regulatory requirements (e.g., GDPR, HIPAA) for information security.
-
3. Physical Security Systems
- Physical Access Control: Design and manage physical security systems, including surveillance cameras, access control systems (e.g., keycards, biometrics), and alarm systems, to protect company assets and personnel.
- Facility Security: Oversee security protocols for physical spaces, ensuring safety measures are in place for buildings, data centers, or production facilities.
-
4. Risk Management and Threat Analysis
- Threat Modeling: Conduct regular risk assessments and threat modeling to identify potential security risks, both cyber and physical. Provide recommendations for risk mitigation and prioritization.
- Incident Management: Lead investigations into security breaches or incidents, performing root-cause analysis and driving improvements to prevent future issues.
-
5. Team Leadership and Mentorship
- Lead Security Teams: Manage and mentor a team of security engineers, analysts, and technicians, ensuring that best practices are followed and team members are equipped to handle emerging security challenges.
- Cross-Department Collaboration: Work with other departments (e.g., IT, legal, compliance, operations) to integrate security measures into broader business processes and strategies.
-
6. Continuous Improvement and Innovation
- Technology Research: Stay updated on the latest security technologies and trends, and recommend innovative solutions to improve the organization’s security posture.
- Security Testing and Auditing: Implement regular security audits, testing, and penetration tests to ensure systems remain secure against evolving threats.