Job Description - VULNERABILITY MANAGEMENT OFFICER/SENIOR OFFICER (240001ZF)
Job Description
VULNERABILITY MANAGEMENT OFFICER/SENIOR OFFICER - ( 240001ZF )
Description
1. Manage & operate the vulnerability scanning and application scanning tools and ensure that it is properly functioning all the time.
2. Coordinate with the respective stakeholders to conduct regular network scans (active and/or passive) to identify security gaps and vulnerabilities across all the bank’s critical assets.
3. Run scheduled vulnerability scans using the provided tools and identify areas of vulnerability that need remediation to ensure on-going remediation of vulnerabilities on CIB’s technology environment across its different layers.
4. Communicate with the respective stakeholders within IT group to ensure remediation of the open gaps/vulnerabilities within the identified periods based on criticality.
5. Report exceptions on the vulnerability remediation activities for further escalation to ensure proper closure, and ensure reporting outstanding vulnerabilities to information security management team for initial risk assessment and reporting to Security & Technology Risk Management.
6. Maintain a tracking mechanism for all vulnerability management related issues, and other security assessments, testing and validations in a structured mechanism to ensure regular reporting and tracking of action items until closure.
7. Ensure conducted vulnerability and baseline scans as part of new server provisioning cycle, CBE alerts validations.
8. Liaise with Security Operations Center team to ensure conducting vulnerability scans based on threat intelligence/threat hunting reports
9. Ensure conducting the required vulnerability scans for annual compliance with SWIFT and CBE regulations and other regulations / mandates as applicable.
10. Maintain all needed documentation supporting Security Vulnerability Management, to ensure on-going tracking and documentation.
11. Monitor the developed compliance use cases to support the different security controls and compliance requirements and communicate violations to the relevant teams.
12. Directing threat modelling activities to identify potential security vulnerabilities and implementing approaches to address them
Qualifications
Qualifications & Experience
o Bachelor’s degree of Engineering, Computer Science, Information Security or equivalent.
o Officer: Minimum 3 - 6 years of experience in IT Security, Risk or Compliance
o Senior Officer: Minimum 5-7 years of experience in IT Security, Risk or Compliance
Recommended Certifications
o Certified PCI-DSS Professional
o EC Council – CEH
Skills
o Good command of English and Arabic language
o Good Communication skills
o Good Analytical skills
o Good Time management
o Good Teamwork Spirit
Primary Location
: Egypt-Giza-SMART VILLAGE BLDG. 3
Job
: Back Office
Organization
: COO
Shift
: Day Job Job Type : Full-time Employee
Refer a friend for this job
Tell us about a friend who might be interested in this job. All privacy rights will be protected.
