The role has the primary responsibility of protecting Bank critical information assets and implementing adequate and cost-effective controls to counter the risk of information loss, theft and unavailability.
The successful candidate will design and implement security best practices across all departments. You will assume primary responsibility for securing and managing the security controls for critical banking and infrastructure applications and processes in the environment including core banking, internet banking, email, remote access and network access. You will perform periodic risk assessments and technical vulnerability assessments.
You will review and analyse security log monitoring reports, analyse security incidents, creating incident response plans, detailed incident reports, and recommend suitable corrective and preventive actions. In addition, you will implement industry standards and best practices like ISO 27001, ISO 31000, PCI DSS, COBIT.
You will demonstrate a minimum of 5 - 7 years’ experience in a major bank of which at least 3 years’ experience in the total scope of information security. You will possess a Bachelor/ Master's Degree preferably in Computer Science, Computer Engineering or related subjects in addition to a professional certification such as CISSP, GSEC, CISA.