Chief Specialist – Infrastructure Systems Operations Monitoring

To lead and oversee the implementation and governance of infrastructure cybersecurity operations across RTA’s IT environment. This role is critical in maintaining a secure, resilient, and compliant digital infrastructure through advanced monitoring, risk mitigation strategies, and the enforcement of international security standards.

Key Responsibilities

• Lead the design, implementation, and continual improvement of IT security policies, procedures, and risk control frameworks aligned with international standards (e.g., ISO 27001, ISO 27701, ISR).
• Conduct and supervise in-depth security risk assessments, vulnerability analyses, and compliance audits across RTA's IT infrastructure.
• Deploy, monitor, and optimize security technologies including firewalls, endpoint protection, intrusion detection/prevention systems (IDS/IPS), DLP, SIEM, and encryption protocols.
• Collaborate with internal IT teams and cross-functional departments to embed security into IT infrastructure design, implementation, and operations.
• Establish and maintain incident response plans, oversee security incident management, and lead investigations into breaches or suspicious activities.
• Serve as the primary point of contact for regulatory compliance, audits, and liaison with external security agencies or partners.
• Mentor and guide junior cybersecurity team members; drive knowledge sharing and training initiatives to build internal capacity.
• Stay abreast of emerging threats, technologies, and best practices, and recommend proactive strategies to improve the RTA’s cybersecurity posture.

Qualifications & Certifications

• Education:
  Bachelor’s degree in Information Technology, Computer Science, or a related technical field from a recognized institution.
• Preferred Certifications:
  • CISSP (Certified Information Systems Security Professional)
  • CISA (Certified Information Systems Auditor)
  • CISM (Certified Information Security Manager)
  • ISO 27001 Lead Implementer or Auditor (optional but preferred)

Experience Requirements

• Minimum of 8 years of progressive experience in IT infrastructure security, cybersecurity operations, and regulatory compliance.
• Hands-on experience in managing enterprise-level infrastructure security, incident response, GRC frameworks, and security architecture design.

Key Competencies

• Advanced understanding of network security, application security, encryption, and cloud security architectures.
• Proficient in risk analysis, SIEM tools, penetration testing, vulnerability management, and endpoint security tools.
• Knowledge of relevant laws, directives, and regulations pertaining to information security (e.g., NESA, GDPR, UAE ISR).

• Strong analytical and decision-making abilities under pressure.
• Excellent written and verbal communication skills for technical and executive-level reporting.
• Leadership capability to drive security transformation and foster a culture of cyber resilience.
• Effective stakeholder engagement and cross-functional collaboration.

Strategic Impact

This role is instrumental in safeguarding RTA’s digital infrastructure, ensuring resilience against cyber threats, achieving compliance with national/international cybersecurity standards, and contributing to the overall IT and digital transformation strategy.