Registered Users
1,883,031
Posted Jobs
103,802

JOB SPECIFICATION

Minimum Qualification: Computer Sciences graduate (4 Years) from HEC recognized university with certification in information security (CISM or CISSP) especially in business applications and networks.

Experience:  2 – 4 years’ experience  

Knowledge / Skills:

  • Demonstrated aptitude for learning new technologies.
  • Strong analytical skills, critical, creative thinking, problem solving and report writing skills.
  • Prior experience with the banking sector systems and networks.
  • Familiar with standards, access control systems, application systems, application development methods, operating infrastructure, IT disaster recovery techniques and IS audit.

JOB SUMMARY

This position is responsible to provide support to Day-to-day Information Security activities, administration of various bank security systems, implement information security procedures and proactively assesses potential items of risk and opportunities of vulnerability in the network and ensure the protection of information systems from unauthorized access or use.

KEY DUTIES & RESPONSIBILITIES

  • Oversee the creation and maintenance of information security policies, lead security risk assessment efforts, and own the awareness and training programs for bank.
  • Manage the information security function in accordance with the established policies and guidelines.
  • Ensure that appropriate technical and administrative security controls exist across all information technology resources and data.
  • Manage user access level to various applications including core banking system.
  • Assist in conducting risk assessment exercises to ensure the security of the network and systems.
  • Generating and reviewing the daily Security Reports.
  • Maintaining secrecy, integrity and availability of corporate data.
  • Provide periodic reporting on information security issues to department management.
  • Access Control administration to various security control systems.
  • Liaise IT-security related issues with IT team and conduct relevant troubleshooting and investigation.
  • Facilitates and directs the timely dissemination of security information.
  • Coordinates the assessment of computer systems security risk, investigates and develops contingency plans by undertaking risk analysis, security investigations, surveys and threat assessments.
  • Directs, manages, plans and administers the operational and administrative activities associated with the running of IT security.
  • Reviews the development, testing and implementation of security plans, products and control techniques.
  • Studies the proliferation of viruses and prevent hacker intrusion.
  • Conducts active penetration tests; discover vulnerabilities in information systems.
  • Oversee the IT disaster recovery planning.
  • Keep abreast of latest security and privacy legislation, regulations (from regulator perspective), advisories, alerts and vulnerabilities.