The Mohammed Bin Rashid University of Medicine and Health Sciences (MBRU; www.mbru.ac.ae) is part of the newly established Dubai Academic Health Corporation (DAHC). DAHC seeks to strengthen Dubai as a global leader in healthcare, medical education, research, and scientific innovation, to enhance the capabilities of Dubai’s healthcare sector. DAHC manages and operates all Dubai public hospitals, primary healthcare centers, specialized care centers, Dubai Dental Hospital; Al Jalila Children’s Specialty Hospital, MBRU and Al Jalila Research Foundation.

The Information Technology at MBRU is accepting applications for the position of Analyst – Information Security.

Job Purpose:

The role holder is responsible for conducting security control testing and reporting activities in accordance with internal controls, organizational policies & procedures. Develop and maintain security control matrices. Conduct risk assessments and Internal Access reviews.

Responsibilities:

• Implementing risk assessment framework, and security controls aligned to industry standards and ensuring documented and effective compliance that is aligned with organizational objectives.
• Evaluate IT risks and develop risk mitigation strategies and corrective actions.
• Provide recommendations to improve organizational security posture through process improvement, policy automation, and continuous evolution of capabilities.
• Document and report on security gaps and provide remediation guidance, prepare management reports, and track remediation activities.
• Conduct due diligence assessments on third-party vendors using MBRU Policies.
• Interviewing various stakeholders across the organization to determine security controls implementation and effectiveness by collecting and analyzing evidence and documenting findings and tracking to closure.
• Provide periodic presentations, awareness & training, and induction sessions on various aspects of Information Security for MBRU.
• Monitoring and Analysing SIEM Log Alert.
• Monitoring and Analyzing Microsoft Security Defender Alerts for Information Security Incidents.
• Conducting User Access Review on a Periodic Basis.
• Conducting Vulnerability Assessments on a periodic basis.
• Defines performance goals at the start of the year in discussion with the reporting manager and ensures that the goals are monitored and achieved during the course of the year.
• Takes ownership of his/her own learning agenda by identifying development needs in consultation with the reporting manager and working towards bridging the gaps through various means which go beyond just training.
• Understands the competencies relevant to his/her role and works towards displaying as well as developing these effectively.
• Keeps abreast of relevant professional/industry developments, new techniques, and current issues through continued education and professional networks.

Qualification:

• Bachelor’s in Computer Science or equivalent

Experience:

• A minimum of 3- 5 years of relevant experience in a similar role preferably in an academic setting

Only shortlisted will be contacted for an interview. Examples of our work can be seen at learn.mbru.ac.ae.