Security Governance Officer

Job description:

POSITION INFORMATION

Division: Network & Digital

Department:Security

Role Designation: Security Governance Officer

ROLE PURPOSE:

As an Security Governance Officer at AWASR, the primary objective is to assist in establishing and maintaining effective security protocols and policies within AWASR. He/She will play a key role to support assessing security risks, developing strategies to mitigate them, and ensuring compliance with industry standards and regulations. The responsibilities will include supporting the oversight of security awareness programs, assisting in conducting audits, and contributing to incident response procedures. Through these efforts, He/She will play a vital role in safeguarding AWASR's assets, data, and reputation against potential threats and vulnerabilities.

KEY ACCOUNTABILITIES AND RESPONSIBILITIES

* Support to implement and enforce security policies, procedures, and standards across the organization, ensuring alignment with industry best practices.

* Support to Develop and communicate the organization's security governance vision, strategy, and objectives to senior management and key stakeholders, ensuring alignment with business goals and objectives.

* Manage access control systems, including issuing access credentials, conducting access reviews, and ensuring compliance with access control policies.

* Oversee visitor registration processes, verify visitor credentials, and monitor visitor activities to maintain a secure environment.

* Conduct regular inspections of physical security measures, such as doors, windows, and locks, to identify and address vulnerabilities.

* Respond to security incidents, breaches, or suspicious activities promptly, following established protocols and collaborating with relevant stakeholders.

* Assist in coordinating emergency response activities, including evacuations, lockdowns, and communication with emergency services, as required.

* Conduct security awareness initiatives by organizing training sessions, distributing awareness materials, and promoting security best practices among employees.

* Maintain accurate records of security incidents, activities, and compliance documentation. Prepare reports and documentation for review by senior management and regulatory authorities.

* Ensure the security of office equipment and assets by implementing and enforcing security protocols for their use, storage, and disposal.

* Collaborate with colleagues, security personnel, and external stakeholders to address security concerns, share information, and coordinate security efforts effectively.

* Monitor compliance with security policies, regulations, and standards, reporting any non-compliance issues to senior management and assisting in remediation efforts.

* Identify opportunities for improving security processes and procedures, suggesting enhancements to strengthen the organization's security posture and resilience against evolving threats.

* Support to conduct regular assessments of the organization's security posture and governance framework, identifying areas for improvement and implementing corrective actions to mitigate risks.

* Support to collaborate with internal and external auditors, regulators, and other stakeholders to ensure compliance with applicable laws, regulations, and industry standards.

* Stay abreast of emerging security threats, vulnerabilities, technologies and TRA security regulations evaluating their potential impact on the organization and advising on appropriate countermeasures.

* Support in prepare and present security governance reports, metrics, and updates to the security department leadership, and other stakeholders, highlighting key security issues, trends, and performance indicators.

* Support the execution of security risk assessments by identifying, documenting, and reporting security risks, updating the risk register, and assisting in tracking remediation activities in line with security policies and standards.

* Assist in maintaining and updating the organization's information security policies, procedures, and standards to ensure relevance and alignment with evolving threats and regulatory requirements.

* Support in conducting third-party/vendor security assessments by gathering evidence, reviewing compliance documentation, and reporting potential risks.

* Contribute to maintaining security documentation repositories, ensuring version control and easy access for audits, compliance checks, and internal reviews.

Qualifications & Experience

* Bachelor's degree in information security, Computer Science, or a related field, or equivalent practical experience.

* 1-3 year of experience in information security focused on security governance or previous internship or coursework in cybersecurity governance.

* Basic understanding of security principles, standards, and best practices.

* Familiarity with regulatory requirements related to security (e.g., GDPR, HIPAA, ISO27001,ITU Security standard, NIST etc).

* Strong communication skills, both verbal and written.

* Ability to work independently and collaboratively within a team.

* Attention to detail and strong organizational skills.

* Eagerness to learn and develop new skills in the field of cybersecurity.

* Basic knowledge of security technologies and tools, or willingness to learn.

* Experience with basic IT tasks or support roles is a plus.

* Demonstrated ability to follow procedures and guidelines accurately.

* Experience with Microsoft Office or similar productivity tools.

* Any exposure to security awareness initiatives or training sessions is beneficial.

* Familiarity with basic security concepts such as access control, incident response, and security protocols.

Language Requirements for Role

* English mandatory, Arabic mandatory ( both verbal and written).

Core Competencies:

* Simplicity

* Agility

* Caring

* Smart

Technical Competencies

* Cyber Security Management

* Knowledge of Security Management

* Security Governance

* Security Monitoring

Profile description:

As an Security Governance Officer at AWASR, the primary objective is to assist in establishing and m