About Tap

Tap Payments is revolutionizing online payments across the MENA region by connecting businesses with simple, unified payment experiences. We need exceptional talent to help us on this journey.

The Cybersecurity Team

Do you get all excited when you hear terms like vulnerability assessment, penetration tests, security verification processes, or intrusion detection? If so, you are in the right place. Our Cybersecurity Team spends every waking (and sleeping) minute detecting security threats before they happen. Join the band and help us build ultra-secure payments technology for our customers.

As a Tapster you will:

•  Take ownership of cybersecurity programs related to security policies, vendor risk and compliance management, regulatory audits and compliance management, metrics, risk and performance indicators, management reporting, security awareness and training
• Be responsible for the development of security risk management using continuous self-assessments and executive reporting
• Ensure that robust information security programs and strategies are developed and maintained for compliance with the organisation's information security policies, applicable laws, regulatory requirements and best practices.
• Develop and maintain the information security strategy for the organisation and ensure alignment with the enterprise strategy and goals through robust risk management of IT business.
• Coordinate the activities of the CyberSecurity Steering Committee and ensure that the activities and decisions of the committee are documented, implemented and monitored for compliance.
• Monitor projects (change initiatives) to identify and fix security gaps as well as improve system availability and usability.
• Work closely with business partners to understand business drivers and market requirements and provide leadership to the technology group in order to create the required protection for the solutions in the required timeframes.
• Coordinate the development, maintenance and monitoring of security policies and procedures across the organisation while ensuring that such policies conform to regulatory standards and other relevant information security frameworks such as the SAMA Cybersecurity Framework, NCA, NIST (National Institute of Standards and Technology), COBIT (Control Objectives for Information and Related Technologies), and ISO/IEC 27K series.
• Carry out other duties, as assigned based on the demands of the business and growth of the role.

What you will bring to the party:

•  6-8 years experience in leading a cybersecurity or similar function
• Degree in Engineering or Computer Science
• Certification in CISSP, CISM, CISA, OSCP, CEH, and/or other technical certifications
• Track record of leading distributed teams and leading delivery of complex, multi-faceted technology assessment and compliance initiatives
• Experience managing large cybersecurity teams with a global presence
• Deep experience in understanding regulatory and industry standards such as PCI, SOX 404, GLBA ISO standards, FFIEC exams, NIST framework, SSAE, etc
• Hands-on leadership experience in authoring security policies, developing standards, and deploying GRC solutions to effectively manage and measure on the cyber risk posture
• Technical ability to understand and solve complex cybersecurity challenges, with a track record of leading the delivery of complex, multi-faceted technology initiatives
• Excellent written and verbal communication skills, having worked with executive management
• Experience in presenting security risks to non-technical executives
• Attested ability to establish and sustain effective, professional relationships with product and business managers; work closely with business partners to understand business drivers and market requirements; and provide leadership to the technology group in order to create the required protection for the solutions in the required time frames.
• High degree of technical complexity and conservancy and familiarity with complex global information security infrastructures
• Experience with a wide array of security platforms, protocols, tools, and technologies.
• Knowledge of/experience with international compliance requirements/standards
• Fluency in spoken and written English is essential, Arabic is a plus

   

Are you ready to shape the future of payments in MENA?