Manager, Governance & Cyber Security; Microfinance Programme

Job Description

Title: Manager, Governance & Cyber Security; Microfinance Programme

Company Name: BRAC

Vacancy: --

Location: Dhaka

Experience:
∎ At least 3 years

Published: 4 Jun 2025

Education:
∎ Bachelors in CSE/ CS/ IT/ EEE or equivalent from any reputed educational institute.

Requirements:

Additional Requirements:
∎ Minimum 3 years of working experience in a relevant field.
∎ Expertise in Cybersecurity frameworks, IT Governance, Cybersecurity architectures and solutions, Advanced Information Securities etc.
∎ Proven ability of Documentation/ Policy writing.
∎ Demonstrated capacity to influence leadership team and clients.
∎ Proficient in communications and interpersonal skills.
∎ Minimum 3 years of working experience in a relevant field.
∎ Expertise in Cybersecurity frameworks, IT Governance, Cybersecurity architectures and solutions, Advanced Information Securities etc.
∎ Proven ability of Documentation/ Policy writing.
∎ Demonstrated capacity to influence leadership team and clients.
∎ Proficient in communications and interpersonal skills.

Responsibilities & Context:
∎ The purpose of this role will be to streamline & stabilize new and existing IT Governance & Cybersecurity functions. Manage in designing, publishing & enforcing IT policy, standards, and procedures / guidelines in accordance with internal policies, and applicable regulations to support Microfinance’s vision of secured and reliable digital adaptation. Collaborate with business and technical stakeholders in the implementation of Internet Security governance controls, and to continually improve the information security posture of the organization through effective policy making to follow which will secure all the data asset of 8.2 million clients in Microfinance programme.
∎ Design and roll out new/ existing Information/ Cyber Security frameworks and guidelines as per requirements.
∎ Design and develop cybersecurity architecture, security policies and any supporting documents for complex systems and networks.
∎ Deliver security programs, strategies, and frameworks with associated KPIs.
∎ Develop and review technical architectures and conduct systems and network security strategic planning.
∎ Develop and conduct cybersecurity technical and vulnerability assessment for complex systems.
∎ Manage the information security steering committee, covering presenting policies, and gathering/ incorporating stakeholders’ feedback on policies.
∎ Ensure periodic review of information security policy framework is carried out.
∎ Establish project governance, providing key reporting/ input into project and business reviews in line with agreed methods and principles.
∎ Prepare and maintain project schedules, including dependencies, resource plan and risks.
∎ On-board, lead and manage a multi-functional Core Team, ensuring project objectives are fully understood and achieved.
∎ Manage and participate in relevant cross functional projects and activities.
∎ Ensure the safety of team members from any harm, abuse, neglect, harassment, and exploitation to achieve the program’s goals of safeguarding implementation. Act as a key source of support, guidance, and expertise on safeguarding for establishing a safe working environment.
∎ Practice, promote and endorse the issues of safeguarding policy among team members and ensure the implementation of safeguarding standards in every course of action.
∎ Follow the safeguarding reporting procedure in case any reportable incident takes place and encourage others to do so.
∎ Microcredit Regulatory Authority (MRA) certificate number- 00488-00186-00065
∎ BRAC is an international development organisation founded in Bangladesh that partners with over 100 million people living with inequality and poverty globally to create sustainable opportunities to realise potential.
∎ BRAC Microfinance provides people who cannot access traditional financial banking services with access to a suite of financial services, including loans, savings and microinsurance. We provide an alternative to high-interest loans from informal lenders, supporting families to invest in income-generating activities, build assets, and reduce vulnerability to health shocks and natural disasters. Passionate about finance beyond formal banking systems? Join the BRAC Microfinance team to help build a more financially-inclusive society, where everyone can access finance when they need it - safely, responsibly and sustainably.
∎ Working at BRAC is not like any other job. It is a platform where you can bring about real change for people who need it the most. We are not just dreaming of a better world, we are building it. Join us to find the way.
∎ Location: BRAC Head Office
∎ Job Purpose
∎ The purpose of this role will be to streamline & stabilize new and existing IT Governance & Cybersecurity functions. Manage in designing, publishing & enforcing IT policy, standards, and procedures / guidelines in accordance with internal policies, and applicable regulations to support Microfinance’s vision of secured and reliable digital adaptation. Collaborate with business and technical stakeholders in the implementation of Internet Security governance controls, and to continually improve the information security posture of the organization through effective policy making to follow which will secure all the data asset of 8.2 million clients in Microfinance programme.
∎ Key Responsibilities
∎ Design and roll out new/ existing Information/ Cyber Security frameworks and guidelines as per requirements.
∎ Design and develop cybersecurity architecture, security policies and any supporting documents for complex systems and networks.
∎ Deliver security programs, strategies, and frameworks with associated KPIs.
∎ Develop and review technical architectures and conduct systems and network security strategic planning.
∎ Develop and conduct cybersecurity technical and vulnerability assessment for complex systems.
∎ Manage the information security steering committee, covering presenting policies, and gathering/ incorporating stakeholders’ feedback on policies.
∎ Ensure periodic review of information security policy framework is carried out.
∎ Establish project governance, providing key reporting/ input into project and business reviews in line with agreed methods and principles.
∎ Prepare and maintain project schedules, including dependencies, resource plan and risks.
∎ On-board, lead and manage a multi-functional Core Team, ensuring project objectives are fully understood and achieved.
∎ Manage and participate in relevant cross functional projects and activities.
∎ SAFEGUARDING RESPONSIBILITIES
∎ Ensure the safety of team members from any harm, abuse, neglect, harassment, and exploitation to achieve the program’s goals of safeguarding implementation. Act as a key source of support, guidance, and expertise on safeguarding for establishing a safe working environment.
∎ Practice, promote and endorse the issues of safeguarding policy among team members and ensure the implementation of safeguarding standards in every course of action.
∎ Follow the safeguarding reporting procedure in case any reportable incident takes place and encourage others to do so.

Compensation & Other Benefits:
∎ Festival Bonus, Contributory Provident Fund, Gratuity, Performance Bonus, Health and Life Insurance, Maternity/ Paternity Leave, Wellness Centre Facility, Day Care Facility, and others as per policy.

Employment Status: Full Time

Job Location: Dhaka

Apply URL::

Apply Procedure:

Company Information:
∎ BRAC
∎ BRAC Centre, 75 Mohakhali, Dhaka-1212
∎ BRAC is an international development organisation founded in Bangladesh that partners with over 100 million people living with inequality and poverty globally to create sustainable opportunities to realise potential.

Address::
∎ BRAC Centre, 75 Mohakhali, Dhaka-1212
∎ BRAC is an international development organisation founded in Bangladesh that partners with over 100 million people living with inequality and poverty globally to create sustainable opportunities to realise potential.

Read Before Apply: Please apply only who are fulfilling all the requirements of this job

Application Deadline: 14 Jun 2025

Category: IT/Telecommunication