Information Security and Confidentiality Senior – Security Team | Central Risk Department

Egypt, Jordan, Lebanon, Saudi Arabia | Enabling Functions | Posted on 06-Nov-2023

Position Summary

Amman, Beirut, Cairo, Jeddah

Information Security and Confidentiality Senior – Security Team | Central Risk Department 

When you work for us, you commit to a career at one of the largest and most prestigious professional services firms in the world. Looking for a rewarding career? Take a closer look at Deloitte & Touche ME. You'll understand that Deloitte is a Tier 1 Tax advisor in the GCC region since 2010 (according to the International Tax Review World Tax Rankings). It has received numerous awards in the last few years which include Best Employer in the Middle East, best consulting firm, and the Middle East Training & Development Excellence Award by the Institute of Chartered Accountants in England and Wales (ICAEW).

In addition to our opportunities in audit, tax, consulting, and financial advisory, we offer a variety of careers in Internal Client Services (ICS) considered essential to the growth of the Firm. Whether in Human Resources, Finance or PR, a career in ICS with Deloitte & Touche ME will give you the opportunity to join a firm undergoing rapid expansion in a region of fast-paced growth. Your role will not just put your passion for creative solutions to the test, it will provide you with an environment to grow and build a career based on excellence.

Our Purpose

Deloitte makes an impact that matters. Every day we challenge ourselves to do what matters most—for clients, for our people, and for society. We serve clients distinctively, bringing innovative insights, solving complex challenges and unlocking sustainable growth. We inspire our talented professionals to deliver outstanding value to clients, providing an exceptional career experience and an inclusive and collaborative culture. We contribute to society, building confidence and trust in the markets, upholding the integrity of organizations and supporting our communities.

Our shared values guide the way we behave to make a positive, enduring impact:

·       Lead the way

·       Serve with integrity

·       Take care of each other

·       Foster inclusion

·       Collaborate for measurable impact

During your tenure as a Information Security and Confidentiality Senior, you will demonstrate and develop your capabilities in the following areas:

  • Manage the Firm’s Confidentiality Program effectively, champion the roll out and provide necessary subject-matter oversight to have in place a governance mechanism, which will promote successful delivery of the program and capabilities.
  • Lead our organization’s Confidentiality Program strategy and influence the necessary cultural changes across the organization.
  • Facilitate development and sharing of leading practices amongst Chief Information Officers (CIOs) and Confidentiality champions.
  • Monitor effectiveness of overall Confidentiality Program efforts.
  • Interpret local and regional regulations, which might impact the security posture and compliance of Deloitte Middle East.
  • Maintain the Information Security Management Systems (ISMS) documentation and keep them relevant, accurate and up to date.
  • Conduct periodic risk assessments to identify threats and vulnerabilities applicable to Deloitte Middle East.
  • Perform periodic reviews against information security requirements related to data classification, clear desk policy, etc., and identify non-compliance.
  • Conduct periodic training and awareness sessions to impart key messages to Deloitte Middle East staff. Support ongoing awareness through channels such as email newsletters and brochures.
  • Review the performance of the ISMS on a periodic basis against pre-defined Key Performance Indicators (KPIs) and report status to the Chief Security Officer (CSO).

Leadership capabilities:

  • Builds own understanding of our purpose and values; explores opportunities for impact.
  • Demonstrates strong commitment to personal learning and development; acts as a brand ambassador to help attract top talent
  • Understands expectations and demonstrates personal accountability for keeping performance on track
  • Actively focuses on developing effective communication and relationship-building skills
  • Understands how their daily work contributes to the priorities of the team and the business


  • Graduate degree from a reputable University in Information Technology, Computer Science, project management specialization or related fields.
  • 7+ years’ experience in information security, privacy and/or other technology-related experience.
  • Management experience in building and maintaining information security and privacy for large organizations.
  • Certified Information Security Manager (CISM) / Certified Information Systems Security Professional (CISSP).
  • ISO 27001 Lead Implementer / ISO 27701 Lead Implementer.