A minimum of 15 years of experiance in IT or similar domains with a minimum of 4 to 6 years in depth experience in IT Security systems and network security domain, and server/network management systems. Management experience is a plus. Knowledge of security standards (ISO 27000 series, NIST, COBiT)ResponsibilitesResponsible for information security activities including implementing policies, standards and procedures relating to data, system, and application security, incident management, awareness, operations and maintenance, governance, risk, compliance, and procurement, which protect the confidentiality, integrity, and availability of KAUST s IT infrastructure, components and information assets. Major responsibilities specifies data and information classification, sensitivity, and need to know requirements by information type Performs security risk, vulnerability assessments, and business impact analysis for medium complexity information systems.