Information Security Officer.- HR-ISO-07-13
Reporting to the Head of Risk and Compliance, the successful candidate will be responsible for providing continuous independent assurance on the bank’s information security as regards confidentiality, integrity and availability of the IT infrastructure, processing systems and related resources in line with the Information Security Policy as well as assisting in ensuring that IT systems, infrastructure and processes are in compliance with the set standards and policies. The key result areas of this position will include:
• Develop and maintain the Bank’s Information Security Policy framework and Governance structure in line with best market practice and CBK Regulations.
• Carry out Information Security reviews along the various phases of projects lifecycles as detailed in the bank’s Project Management framework.
• Manage the implementation of IS into the day-to-day operations and culture of the Business.
• Provide interpretation of the Information Security policies to the Business.
• Ensure information security solutions are consistent with the Information Security Policies &Standards and corporate architectural directions/directives and oversee deployment.
• Lead business in development of corrective action plans as a result of gap assessment findings, and/or technical security assessment results.
• Carry out risk assessment of the information assets of the organization. Recommend controls in light of the value vs. threat vs. vulnerability vs. cost.
• Assist with ongoing investigations into the abuse of systems and infrastructure as and when mandated by the Head of Risk.
• Participate in the design, set up, implementation and testing business continuity and disaster recovery installations within the bank
Knowledge and skills:
• Bachelors degree in Information Technology or a Business related field.
• Certified Information Security Manager Certification (Required)
• Certified Information Systems Auditor Certification (Preferred).
• Certified Information Systems Security Professional (Preferred)
• 3 years banking experience in information technology control or related field within a large and highly computerized environment.
• Good understanding of Information Security and control objectives.
If you believe you are the right candidate for any of the roles, please submit your application with a detailed CV, stating your current position, current remuneration, e-mail and telephone contacts, quoting the reference number to reach us on or before July 12th 2013. All applicants should be in soft and through the following link indicated below.
Or to recruitment@gulfafricanbank.com
Information Security Officer
Reviewed by Unknown
on
9:24:00 AM
Rating: