Unit Manager – Cloud Governance and Compliance (UAE National)

Job Details

ROLE PURPOSE:

  • Monitor cloud strategy, roadmaps, policies, standards, and target cloud services alignment with the implementation plan and linkage to the bank strategy.
  • Lead all Control and financial activities related to the Cloud Center of Excellence (CCOE) and manage its scope of work and functions.
  • Ensure alignment of cloud solutions with business objectives, assess current cloud usage, and develop an overall best practice roadmap.
  • Oversee the establishment of enterprise architecture controls, standards, and patterns specifically for cloud environments.
  • Adopt cloud best practices in cost efficiency, architecture, cybersecurity, compliance, and risk management.
  • Lead Cloud Financial Operations (FinOps) activities, including informing, optimizing, and managing the financial lifecycle of cloud services.
  • Collaborate with IT, business, and data management teams to understand data control needs and develop appropriate cloud control safeguards.
  • Monitor cloud platform utilization, stability, security, and compliance posture to maintain a robust cloud infrastructure.
  • Guardrail cloud operations by championing CCOE initiatives and enforcing established controls.

Specialist Skills / Technical Knowledge, Technical Competencies Required for this role:

  • Strong ITGC/ IRM Skills
  • Strong knowledge of Control assessments on Cloud environment
  • Strong knowledge of Security Controls / GRC Standards implementation in cloud environment
  • Experience in NIST/GDPR/Data privacy and network security assessment, IT Infrastructure risk assessment
  • Experience in Cloud Architecture landscape/ solution design review from GRC perspective
  • Experience in Information security / risk assessments for cloud services
  • Experience in Information security / risk assessments for vendor developed/ managed applications
  • Experience in conducting risk assessments (inclusive of business impact assessments, regulatory assessments
  • Candidate should have experience in managing end-to-end Information security, cyber security for Cloud Based environment (SaaS/PaaS/IaaS)
  • Experience in infrastructure and network security knowledge (Firewall, router, switches)
  • Strong understanding & implementation on ISO27001:2013
  • Good knowledge of ISO22301, SOC1/SOC2 / supplier assurance frameworks implementation in cloud environment.
  • Good understanding of financial modeling CAPEX, OPEX.

Preferred Certifications:

  • ISO27001 (lead auditor preferable)
  • CISA/CRISC /CISM/CISSP
  • CSSP/CCSK preferable
  • AWS and Azure certifications preferable