Chief Information Security Officer

Founded in 2018, G42 is a leading artificial intelligence and cloud computing company. It underpins the UAE’s national data, cloud, and AI strategy and has a global expansion footprint. Through its operating companies, G42 offers AI-powered solutions and products developed and deployed on a common technology platform to its customers across the public and private sectors, delivering commercial and societal impact. Core42 provides the common cloud infrastructure and compute platform for G42 businesses and numerous public and private sector companies.

The CISO reports to the Core42 Chief Legal Officer and oversees cybersecurity governance across the Core42 enterprise. The CISO is responsible for evaluating current cybersecurity practices across the enterprise and recommending and implementing enhancements agreed upon by executive leadership. The CISO will work closely with the G42 Office of Compliance and Technology Risk to ensure that cybersecurity risks are appropriately identified and managed in accordance with G42 security and privacy requirements.

• Overseeing cybersecurity governance, risk, and compliance (“GRC”) for the Core42 enterprise;
• Working with the G42 Office of Compliance and Technology Risk to implement cybersecurity controls responsive to G42 security and privacy requirements;
• Reporting on progress against industry standard Key Risk and Performance Indicators cybersecurity objectives to the Core42 Chief Legal Officer and G42 Office of Compliance and Technology Risk;
• Providing independent advice and oversight to technical implementation teams;
• Developing and implementing cybersecurity policies and procedures;
• Providing independent audit and assurance of cybersecurity controls across Core42 systems and networks;
• Leading the development of the Global Data Privacy program;
• Overseeing the Security Operations Center (SOC);
• Overseeing the Identity and Access Management (IAM) program:
• Overseeing the incident response and forensic investigation process; and
• Overseeing the enhancement of the Security Development Lifecycle (DevSecOps);
• Building a cybersecurity risk measurements program.

• 15-20 years of experience in cybersecurity leadership roles with increasing responsibility and span of control;
• Bachelor’s Degree in Information Technology or Computer Science;
• MA/MSc in Information Technology, Cybersecurity, or Computer Science;
• Industry-leading cybersecurity certifications (CISSP, CISM, CISA, CASP+, Security+);
• Experience in designing and implementing cybersecurity programs in a regulated industry;
• Experience working in a fast-paced startup, preferable in software development and/or artificial intelligence;
• Comprehensive understanding of cloud technologies with specific knowledge in Microsoft Azure and OpenStack;
• Working understanding of AI models and their development and use (training and inference);
• Working understanding of High-Performance Computing (“HPC”)
• Experience developing and implementing cybersecurity policies and procedures;
• Experience conducting independent audits and assurance of cybersecurity controls;
• Experience working with development teams and securing the development process (DevSecOps); and
• Experience with Digital Forensics and Incident Response (“DFIR”) best practices.