Head of Information Security

Job Description

Title: Head of Information Security

Company Name: A renowned Private Commercial Bank

Vacancy: Not specific

Job Location: Dhaka

Employment Status: Full-time

Educational Requirements:
∎ Master of Science (MSc) in Information Security, Master of Science (MSc) in Computer Science / Engineering
∎ Preferred Professional Certification: CISA, CISM, ISMS 27001 LA, CISSOC|CISO, ITILISO 20000, PCIDSS, CEHCHFI

Experience Requirements:
∎ At least 8 year(s)

Job Responsibilities:
∎ Providing leadership, vision and direction for Information Security initiatives that support and protect the company's business objectives and requirements
∎ Developing, maintaining and implementing policy & standards, comprehensive plan & security road map, budget, security program and architecture for information system security
∎ In-depth understanding of the IT environment in the organization, as well as the research landscape and regulations that pertain to organization
∎ Identifying internal and external information security risks and threats; performing risk assessments and cost benefit analysis to determine appropriate level of security measures for monitoring IT systems and other document processing systems
∎ Ensuring Business Continuity and Disaster Recovery Plan
∎ Performing risk evaluation, establishing and maintaining application & system security controls while also monitoring & testing security measures and performance of overall system
∎ Managing, maintaining and enhancing Security Operation Center (SOC) for the organization
∎ Ensuring periodic infrastructure security testing (Vulnerability Assessment), Penetration Testing, Security Compliance Auditing, Incident Management and assisting or coordinating implementation of security controls
∎ Ensuring periodic privilege review & monitoring, raising & mitigating system and application related project risk issues
∎ Understanding and translating pre-established policy, standards, compliance regulation, and formulating tactical and operational procedures
∎ Coordinating with internal, external and regulatory audit groups & third party auditors and outside vendors to provide necessary support, reports and track resolution of findings
∎ Creating educational and awareness programs and advising all levels in the organization on security issues, best practices, and vulnerabilities

Additional Requirements:
∎ Experience in the Information Security/Systems along with Application/Software as well as Network/Infrastructure Security and strong Security, Network, System Administration required (Banking experience is highly preferred)
∎ Experience in implementation of Security Program and Controls based on ISMS, PCI-DSS and COBIT standards will be advantageous
∎ Knowledge and Certification in Core Banking Assessment & Audit, IT Security in Banking, COBIT/CRISC etc. will be an added advantages
∎ The candidate must be familiar with security principals and concepts such as authentication/security protocols and OS security model, knowledge of cryptographic and public key infrastructure along with protocols is desirable.

Salary: Negotiable

Job Source: Bdjobs.com Online Job Posting.

Application Deadline: 23 Sep 2021

Company Information:
∎ 8 Sep 2021
∎ A renowned Private Commercial Bank
∎ Business : Private Commercial Bank

Category: Bank/Non-Bank Fin. Institution