We are currently hiring Policy & Risk Analyst role for our company. Kindly share the below details if looking for change.
Total Experience:
Relevant Experience:
Current CTC:
Expected CTC:
Notice Period:
Security Policy, Risk and Privacy Analyst
Responsibilities:
• Contributes to the development of policies, standards and guidelines related to personal
data regulations and information security.
• Ensures controls are implemented inline with the approved security policies.
• Maintain an inventory of all information assets affecting personal data.
• Identifies security and privacy risks and vulnerabilities, assesses their impact and
probability, develops mitigation strategies and reports to the business.
• Coordinates and works with the IT teams to communicate and mitigate security risks.
• Adopts governance framework to manage process, technical risks, and compliance of
implemented security controls.
• Ensures key security controls are verified for compliance and deviations communicated and
coordinated to closure.
• Conducts regular technical compliance assessments to verify the effectiveness of
implemented security controls.
• Should manage governance and compliance related projects.
• Should coordinate with the relevant IT teams and the audit team to manage regular local
audits.
Requirements
• Have worked at least 5 years’ experience in the information security domain.
• Should have knowledge of Information security standards (ISO 27001, NIST) and
personal data regulations and standards (GDPR, ISO 27018 etc.)
• Have experience on drafting policies and procedures.
• Should have knowledge on security solutions.
• Should have worked on implementing personal data regulations and managing the
same.
• Ability to create and analyse metrics to identify trends, gaps and issues.
• Have experience on managing end to end security audits.
• Have an experience on the information security risk management cycle.Public
• Understanding of project management and part of a project implementations
• Should have skills of managing implementation projects on governance and personal
data regulations.
• Good communication skills, problem-solving skills and team player.
Preferred Certifications
• ISO 27001 Lead Auditor/ CISA
• Certification on Management of Personal data (ISO 27018/GDPR certification/CDPSE/
Product related certification)
Top Skills
What We Do
Founded in 1973 in Bahrain, Landmark Group has grown to become one of the largest and most successful omnichannel retail and hospitality conglomerates, with presence across 17 countries in the Middle East, Africa, India and Southeast Asia. Based in the UAE since 1990, the Group owns and operates 21 established homegrown and 4 franchise brands across an extensive network of more than 2,200 outlets, encompassing a gross leasable area of 30 million square feet.
Landmark Group's success is driven by its diverse portfolio of established brands, across multiple retail categories, offering a comprehensive range of products across fashion, home, groceries and electronics. These include Centrepoint, Max Fashion, Home Centre, Babyshop, Splash, Shoemart, Lifestyle, Viva, Emax, Home Box, Styli, Shoexpress, Spar and Easybuy.
Beyond retail, Landmark Group has diversified into the leisure, fitness and hospitality sectors with brands like Fitness First, Citymax, Fun City, Fun Ville, Zafran and Carluccio’s. The Group boasts unparalleled logistics capabilities, owning the MENA region's largest privately-owned distribution hub - Omega Logistics and Logistiq, which offers state-of-the-art third-party logistics services.
Landmark Group places a strong emphasis on delivering exceptional value and achieving customer satisfaction throughout its comprehensive product range. Across its loyalty programmes, the Group enjoys a loyal customer base with more than 35 million active users.
The company has a dedicated workforce of more than 53,000 employees and continues to be certified as a Great Place to Work (GPTW) since 2017.
