Information Security – Manager (Operations

Skills

7 - 10 years’ experience in Information Security or related field.Skills Required for the Job:In-depth knowledge and understanding of information security and technology infrastructure.In-depth experiences in NESA requirements ImplementationIn-depth experiences in developing information security policies in line with NESA RequirementsDetail oriented - Pays careful attention to the bank’s computer systems and watches for minor changes potentially indicative of a compromise.In-depth knowledge and understanding of network troubleshooting, firewall administration, network protocols anDuties and Responsibilities:Assists in the development of the information security strategy and roadmap for all security technology domainsResearch security standards, security systems and authentication protocols, making recommendations to IS management as appropriateReviews the architectural designs and makes recommendations for approval by IS managementServe as an expert to Information Security management in the development, implementation, and maintenance of an information security infrastructure.Monitor information security trends internal and external to the Bank and keep IS management informed about information security related issues and activities affecting the BankMonitor the bank’s networks for security breaches and investigate a violation when one occursPrepare reports that document security breaches and the extent of the damage caused by the breaches supporting IS management to respond to security incidentsConduct vulnerability assessments and support contracted third party penetration testing.Track identified and reported security weaknesses to their resolutionResearch the latest information security trends advising IS management of leading practices to improve the bank’s security postureCoordinate with all departments to ensure information security risks are considered in both ongoing and planned operations.Establish credibility and maintain strong working relationships with groups involved in information security matters (Internal Audit, Fraud, Physical Security, IT, External Audit, etc.). After the audit/ review, ensure that exceptions are tracked to closure on a timely basis.Review out-of-policy application access requests submitted by the user community and approve or reject, as appropriate.Manage the DLP solution through implementation of policies and classification of data.Advise the IS management on risk issues that are related to information security and recommend actions in support of the Banks wider risk management programs.Assists to evaluate and draft updates to existing Information Security policies, standards, guidelines, procedures, processes and forms as needed.Perform Third Party Risk assessments and identify any potential risk.Manage Information Security applications as EDR, SIEM, data security solutions etc.Understand potential threats, vulnerabilities, and control techniques and communicate the information to IT system & network administrators.Assist Bank’s departments or units as necessary to investigate security breaches and pursue associated disciplinary and legal matters.Support in the development and delivery of security awareness and training programs.Review out-of-policy application access requests submitted by the user community and approve or reject, as appropriate.Performs and evaluates information risk on a regular time schedule and promotes information security awareness within the Bank.Contributes to team effort by accomplishing related results as needed.Other duties as may be assigned by IS management.Terms & conditions.  Joining time frame: 2 weeks (maximum 1 month)