Magnati is a regional leader in the payment solutions industry focused on direct acquiring, issuer processing and acquiring processing.

Magnati provides government, merchant and institutional clients with an intelligent payments platform that monetises data, using next generation technology to deliver improved experiences and increased efficiency. The Magnati brand is charged with energy and potential and is set to transform payments into possibilities.

Headquartered in Abu Dhabi, Magnati’s expertise and relationships provide a platform for Magnati to attract international partners, while setting a new standard for innovation and delivery in the payments industry.

Visit Magnati.com for more information.

The Head – IT Risk & Security will be responsible for developing, implementing, and monitoring a strategic, comprehensive enterprise cybersecurity and IT risk management program. The candidate will provide the vision and leadership necessary to manage the risk to the organization and will ensure business alignment, effective governance, system and product availability, integrity, and confidentiality. This position reports to Head of IT.

ACCOUNTABILITIES:

• Provides the direction for data and cybersecurity protection and oversee Technology governance and policies.
• Develops security strategy, security awareness programs, security architecture, and security incident response.
• Provides strategic risk guidance for IT projects, including evaluation and recommendation of technical controls.
• Educates IT and Non-IT leaders on appropriate security risk and mitigation strategies
• Collaborates with compliance team(s) as needed and coordinates the IT component of both internal and external audits, federal and state examinations to ensure security programs follow relevant laws, regulations, and policies.
• Develops, maintains, and publishes up-to-date security policies, standards, and guidelines. Oversees training and dissemination of security policies and practices.
• Evaluates new cybersecurity threats and IT trends and develops effective security controls. Oversees development of security awareness programs.
• Develops and oversees effective disaster recovery policies and standards to align with company business continuity management program goals. Coordinates the development of implementation plans and procedures to ensure business critical services are recovered in the event of disasters or other incidents, and provides direction, support, and in-house consulting in these areas.
• Evaluates potential security breaches, coordinates response, and recommend corrective actions.
• Supervise staff as assigned in the performance of the job duties.
• Define and report on information security metrics.
• Provides project management and leadership to staff and external resources in support of established goals and objectives, improved efficiencies, and problem resolution.
• Ensures accomplishment of all objectives in accordance with company policies, procedures, and strategic direction, as well as external regulatory standards.
• Maintains current knowledge of industry and regulatory trends and developments for the enterprise technology.

• Bachelor’s degree from an accredited institution, with degree preferred in Computer Science or information technology systems security or related field. Master’s degree preferred.
• Minimum of ten (10) years within the last twelve (12) years of experience in the field related to the title of the position.
• Certified Information Security Manager (CISM) or Certified Information Systems Security Professional (CISSP) Certification.
• Knowledge of Information technology infrastructure library (ITIL) (certification preferred) with respect to security administration and information technology governance in a multi-platform environment.
• Experience in establishing cybersecurity and risk metrics for reporting
• Strong Emotional Intelligence with demonstrated sustained leadership in a large organization involving multiple stakeholders.
• Demonstrated management skills, e.g., budget development and administration, policy development and implementation, personnel administration, staff training and development.
• Demonstrated ability to work with diverse people.
• effective oral and written communication skills.