The IT Security Manager serves as the primary focal point for all IT security matters affecting Chalhoub Group’s IT landscape including protection of sensitive data related to customers, employees, corporate information.
The role advises the Group IT, Business and other Chalhoub Group entities (as appropriate) regarding real and perceived IT security risks with potential impact on operations and the application of Chalhoub Group security policies and guidelines. The role acts as a subject matter expert regarding IT Security capabilities. The IT Security Manager conducts research on behalf of Chalhoub Group IT regarding emerging security threats and available security technologies and demonstrates depth and breadth of knowledge in current and future Security IT industry technical platforms and standards in the following areas; infrastructure, network, application, and data management systems.
The IT Security Manager is responsible for providing leadership and vision for the development and management of security policies, standards, and processes, and ensuring the safety and privacy of Chalhoub Group IT assets.
The IT Security Manager is accountable for the definition and conducting of IT security audit and compliance assessments, and the resolution of any security incidents (e.g. security breaches). The role leads efforts to collect and report security metrics and serves as a point of contact for information security matters related to data protection initiatives.
The IT Security Manager is responsible for performing the appropriate level of monitoring to ensure that solutions delivered comply with security policies and standards. The role approves all information security related projects and initiatives and oversees the activities of Chalhoub employees engaged in information security activities.
In their endeavor to excellence, the fundamental values all our employees must possess are Commitment, Integrity, Empathy and Flexibility Overall responsibilities include:
- Develop security policies
- Enforce security policies and procedures across data center, networks, databases and applications
- Ensure efficient user & access management as per access profile
- Ensure auditing of security policies and procedures
- Identify, investigate and report on suspected breaches and review findings with key stakeholders
- Coordinate crisis management with relevant stakeholders
IT Security Planning:
- Accountable for the development and maintenance of Chalhoub Group IT Security Policies and Guidelines
- Responsible for the definition of Chalhoub Group Security strategy
- Accountable for the definition of security frameworks, standards, and processes for how application software, data, system software, hardware, and the physical network must be designed, built, and integrated within the enterprise to deliver hardened security solutions and deliver security business results
- Reviews use and selection of Security vendors
- Creates Security architectures (e.g., enterprise, applications, network, desktop/server, database, etc).
- Validates the security architecture against requirements and assumptions to ensure that the security architecture aligns with the Enterprise and Data Architecture
IT Security Risk:
- Directs and analyses Risk Assessments
- Advises Chalhoub Group IT Management Regarding Security Risks
- Ensures all identified risks are appropriately closed in a timely manner
- Develops proactive and reactive measures to identified risks
IT Security Compliance:
- Accountable for reviews of IT architecture in terms of security of application software, data, system software, hardware, and the physical network
- Produces compliance reports with clear actions against identified issues
- Ensures action is taken for non-compliance
- Authorizes compliance exceptions
Solution Definition:
- Accountable for working with Chalhoub IT business analysts and vendors who are delivering solutions, to provide appropriate support to design security components; providing solution guidance, input into solution design, etc.
- Participates in Business Solutioning working with business analysts to develop proposed solutions
- Emerging Security Models and Paradigms
- Contributes to the development of thought leadership around security models, and frameworks, based on industry research and knowledge The Chalhoub Group is the leading partner for luxury across the Middle East since 1955. As an expert in retail, distribution and marketing services based in Dubai, the group has become a major player in the fashion, beauty and gift sectors regionally.
By blending its Middle East expertise and intimate knowledge of luxury, Chalhoub Group is building brands in the region, by offering service excellence to all its partners and a unique experience to its customers through its passionate teams.
With a growing workforce of more than 9,000 people, implemented in 14 countries, as well as the operating of over 470 retail outlets, the group’s success is attributed to its most valued asset of highly skilled and dedicated teams. Professionalism and passion are what fuel the Chalhoub Group’s competitive edge in today’s market.
By being committed to implementing sustainable practices into their business, the Chalhoub Group has been awarded in 2013 the CSR Label from the Dubai Chamber of Commerce. |