37 Mobile Security jobs in Bahrain

Play a crucial role in ensuring compliance with data protection laws and regulations, establishing and maintaining robust data protection policies and procedures, and acting as a key contact person for all data protection matters within the organization. The ideal candidate should possess a deep understanding of data protection principles, excellent communication skills, and the ability to collaborate effectively across departments.

Responsibilities:

1. Conduct regular audits and assessments to evaluate the effectiveness of existing data protection measures and identify opportunities for enhancement.
2. Act as a liaison with regulatory authorities and external auditors during data protection audits, investigations, or inquiries.
3. Monitor and assess the organization's data processing activities to identify potential risks, compliance gaps, and areas for improvement.
4. Lead incident response and breach management activities, including conducting investigations, implementing containment measures, and ensuring timely reporting of data breaches as mandated by applicable laws.
5. Develop and implement comprehensive data protection policies, procedures, and guidelines to ensure full compliance with relevant data protection laws and regulations.
6. Collaborate with relevant departments to review and evaluate privacy impact assessments (PIAs) for new projects, systems, or processes involving the collection, use, or storage of personal data.
7. Provide expert advice and guidance to management and employees on data protection requirements, best practices, and the implementation of effective security measures.
8. Serve as the primary point of contact for all data protection-related queries, requests, and concerns from internal stakeholders, data subjects, and regulatory authorities.
9. Develop and deliver training programs and awareness initiatives to educate employees on data protection principles, policies, and practices.

Qualifications:

1. Bachelor's degree in a relevant field, such as law, information technology, or data protection.
2. Certification as a Data Protection Officer (CDPO) or equivalent is preferable.
3. In-depth knowledge of data protection laws and regulations, including GDPR, CCPA, and other relevant regional or industry-specific requirements.
4. Strong understanding of information security principles and best practices.
5. Excellent communication and interpersonal skills, with the ability to effectively convey complex data protection concepts to non-technical stakeholders.
6. Exceptional analytical and problem-solving abilities, with a capacity to assess risks, identify gaps, and propose suitable solutions.
7. Ability to work collaboratively across departments, exert influence, and engage stakeholders at all levels of the organization.
8. Experience in conducting data protection audits, assessments, and privacy impact assessments.

Job purpose

• Overseeing information security, cybersecurity and IT risk management programs based on industry-accepted information security and risk management frameworks.
• Responsible for the organization's data privacy and protection function to ensure compliance with various regulations and best practices.

2. Primary Duties Performed

• Develop and maintain the cybersecurity Risk Management Framework of the organization for addressing the overall approach for handling cybersecurity risks and managing them in a methodological manner.

• Evaluate employees' information security awareness and provide the necessary training whenever is needed.

• Conduct frequent reviews on Vulnerability Assessment and Penetration Testing (VAPT) and manage vulnerabilities.

• Define the necessary controls to ensure all regulatory requirements related to cybersecurity are met, designed effectively with clear documentation.

• Identify the critical assets of the organization and ensure implementation of risk identification and management strategies for these critical assets.
• To assess technology projects to ensure that cybersecurity is adequately addressed.
• Responsible to identifying and managing cybersecurity risk for all third-party technology engagements and all cloud computing engagements.
• Evaluates and recommends cybersecurity technologies and solutions.
• Review cybersecurity & Risk Management manual and recommend necessary updates.
• Act as Data Protection Officer to identify and evaluate the Company's data processing activities.
• Monitor data management procedures and compliance within the Company.
• Assess Company compliance with Data Protection Private Law.
• Provide advice and arrange training to employees on Data Protection.
• Review and recommend updates on Data Protection Manual.
• Serve as the point of contact between the company and the data protection authorities.
• Performs other related duties assigned by the department head.

3. Secondary Duties Performed

• Assist in implementing risk management framework, policies and programs covering business, financial, operational, technological, and regulatory risks.
• Assist in the development and management of controls and business contingency plans.
• Maintain and update organizational risk register.
• Oversee the regular validation and testing of the Company Business Continuity Plan.
• Review Risk Management manual and recommend necessary updates.

4. Work & Business Contacts

Internal

• Management team and staff.

External

• Regulatory Bodies: Central Bank of Bahrain and Personal Data Protection Authority.
• Law Firms and Legal Advisors.
• Internal and External Auditors.
• VAPT vendors.

Division / Department: Risk Management

Incumbent Reports to: Manager – Risk & Project Management

Zain is the pioneer of mobile telecommunications in the Middle East. We began life in 1983 in Kuwait as the region’s first mobile operator, and since the initiation of our expansion strategy in 2003, we have expanded rapidly. Read more here: Zain Overview

The Cyber Security Specialist is responsible for planning, executing, and finalizing projects according to strict deadlines and within budget. This includes acquiring resources and coordinating the efforts of team members and third-party contractors or consultants in order to deliver projects according to plan.

1. Manage and improve an integrated cyber security solution that helps to protect the core infrastructure, the network, and the applications that run within the network.
2. Conduct testing of network design.
3. Provide training and technical support for users with varying levels of IP and cyber security knowledge and competence.
4. Participate in the discovery of vulnerabilities and risks in networks, software systems, and data.
5. Safeguard information system assets by identifying and solving potential and actual security concerns.
6. Participate in procurement, installation, testing, and developing IT and security projects.
7. Establish and maintain the enterprise IT security policy.
8. Develop operations work plan to support all operations activities.
9. Evaluate infrastructure and security proposals and recommend the required solutions that meet the IP and security requirements.
10. Plan and manage the IP network growth and resiliency.
11. Implement and manage CDN infrastructure.
12. Setup peering with other entities to reduce latency and improve traffic flow.
13. Support the organization’s Enterprise requirements with solutions, testing, and operations.
14. Perform any other related duties as assigned or needed.

1. Possess solid network and security technical experience. Maintains technical expertise in all areas of network and computer hardware, software, routing, and switching. CCIE Routing & Switching is preferable.
2. Possess strong communication skills.
3. Effectively communicate by listening actively, sharing relevant information with others, and interacting with others to establish fair and effective relationships.
4. Identify customer’s requirements correctly, exceed customer expectations, and act proactively to ensure customer satisfaction.
5. Ability to develop cooperation and teamwork while working toward solutions that generally benefit all parties.
6. Capacity for recognizing one's feelings and those of others for motivating ourselves and managing emotions well in ourselves and in our relationships.

Bachelor's Degree in Computer Science, Cyber Security, or any relevant field.

3 to 5 years’ experience in a similar role, preferably in the Telecom field.

If you meet the criteria and you are enthusiastic about the role, we would welcome your application. To complete the application you would need the following document(s):

• Design, implement, and maintain robust network security solutions, including firewalls, intrusion detection/prevention systems (IDS/IPS), VPNs, and security protocols.
• Monitor network traffic for security breaches and anomalous activities, utilizing SIEM and other security tools.
• Conduct regular vulnerability assessments and penetration testing to identify weaknesses in the network infrastructure.
• Develop and implement security policies, standards, and procedures to ensure compliance with industry best practices and regulatory requirements.
• Respond to and manage security incidents, including investigation, containment, eradication, and recovery.
• Collaborate with IT teams to ensure secure network configurations and timely patching of vulnerabilities.
• Provide security awareness training to employees.
• Stay updated on the latest cybersecurity threats, trends, and technologies.
• Manage and maintain security hardware and software, ensuring optimal performance and availability.
• Develop and execute incident response plans and disaster recovery strategies.
• Evaluate and recommend new security technologies and solutions to enhance the organization's security posture.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• At least 4 years of experience in network security, cybersecurity, or a similar role.
• In-depth knowledge of network protocols, TCP/IP, and common network security architectures.
• Hands-on experience with firewalls (e.g., Cisco ASA, Palo Alto), IDS/IPS, VPN technologies, and SIEM solutions.
• Understanding of vulnerability assessment and penetration testing methodologies.
• Relevant security certifications such as CISSP, CCNA Security, or CompTIA Security+ are highly desirable.
• Strong analytical and problem-solving skills with meticulous attention to detail.
• Excellent communication and collaboration abilities.
• Ability to work independently and as part of a team in a fast-paced environment.