The Manager IT Security that we are looking for, will be responsible to plan, organize and lead a team to deliver cost effective and efficient IT security controls to protect and defend systems and information assets (i.e. business and customer data) against any internal and external threats (e.g. unauthorized access, cyber-attacks, etc.).
Core responsibilities Develop and implement IT Security Management Framework for the Bank’s Technology Infrastructure that provides assurance on security of the business and customer data. Develop, implement, and maintain policies, procedures, processes, standards, and guidelines for technology infrastructure security. Practice technology security asset management, including maintenance of security component inventory, life cycle management, and related documentation. Provide “ownership” of security incidents and problems thru final resolution for the Bank’s Firewalls, IDS/IPS, Malware systems. Assess, approve, and administer all network and systems security related equipment, hardware, and software upgrades (for Firewalls, IDS/IPS, Malware systems). Manage operational costs; Perform cost-benefit and return on investment analyses for proposed security solutions to aid management in making implementation decisions. Manage relationships with vendors and respective service level agreements. Conduct research and make recommendations on security products, services, protocols, and standards in support of security service continuous improvements. Provide technology security statistics and reports to aid in management decisions. Direct, manage, develop and provide guidance to a team of security specialists; conduct performance reviews and corrective action. Contributes to team effort by accomplishing related results as needed. Desired Skills and Experience Demonstrated leadership and personnel management skills. Good understanding of the organization’s goals and objectives. Strong interpersonal, written, and oral communication skills Ability to present technical data in a comprehensive, yet clear manner. Excellent knowledge of technology security landscape (Network security, systems and endpoint security, IT security frameworks and standards such as ISO27001). Hands-on experience technology security setups, configuration and troubleshooting (networks, systems and end points). At least 5 years of relevant work/management experience. Work experience in managing, monitoring and setup IT security in enterprise environment. Bachelor degree in Computer Science or related academic field. Preferred Security professional certification ISO27001, CISSP, Ethical Hacking; Other IT professional certifications such as ITIL, Prince2, PMP will be an added advantage.