Information Security – Manager (Operations

7 - 10 years’ experience in Information Security or related field.

Skills Required for the Job:

In-depth knowledge and understanding of information security and technology infrastructure.

In-depth experiences in NESA requirements Implementation

In-depth experiences in developing information security policies in line with NESA Requirements

Detail oriented - Pays careful attention to the bank’s computer systems and watches for minor changes potentially indicative of a compromise.

In-depth knowledge and understanding of network troubleshooting, firewall administration, network protocols an

Duties and Responsibilities:

Assists in the development of the information security strategy and roadmap for all security technology domains

Research security standards, security systems and authentication protocols, making recommendations to IS management as appropriate

Reviews the architectural designs and makes recommendations for approval by IS management

Serve as an expert to Information Security management in the development, implementation, and maintenance of an information security infrastructure.

Monitor information security trends internal and external to the Bank and keep IS management informed about information security related issues and activities affecting the Bank

Monitor the bank’s networks for security breaches and investigate a violation when one occurs

Prepare reports that document security breaches and the extent of the damage caused by the breaches supporting IS management to respond to security incidents

Conduct vulnerability assessments and support contracted third party penetration testing.

Track identified and reported security weaknesses to their resolution

Research the latest information security trends advising IS management of leading practices to improve the bank’s security posture

Coordinate with all departments to ensure information security risks are considered in both ongoing and planned operations.

Establish credibility and maintain strong working relationships with groups involved in information security matters (Internal Audit, Fraud, Physical Security, IT, External Audit, etc.). After the audit/ review, ensure that exceptions are tracked to closure on a timely basis.

Review out-of-policy application access requests submitted by the user community and approve or reject, as appropriate.

Manage the DLP solution through implementation of policies and classification of data.

Advise the IS management on risk issues that are related to information security and recommend actions in support of the Banks wider risk management programs.

Assists to evaluate and draft updates to existing Information Security policies, standards, guidelines, procedures, processes and forms as needed.

Perform Third Party Risk assessments and identify any potential risk.

Manage Information Security applications as EDR, SIEM, data security solutions etc.

Understand potential threats, vulnerabilities, and control techniques and communicate the information to IT system & network administrators.

Assist Bank’s departments or units as necessary to investigate security breaches and pursue associated disciplinary and legal matters.

Support in the development and delivery of security awareness and training programs.

Review out-of-policy application access requests submitted by the user community and approve or reject, as appropriate.

Performs and evaluates information risk on a regular time schedule and promotes information security awareness within the Bank.

Contributes to team effort by accomplishing related results as needed.

Other duties as may be assigned by IS management.

Terms & conditions.  

• Joining time frame: 2 weeks (maximum 1 month)