Manager/Senior Manager, Information Systems & Vigilance Audit, ICC Division

Job Description

Title: Manager/Senior Manager, Information Systems & Vigilance Audit, ICC Division

Company Name: BRAC Bank PLC

Vacancy: --

Age: Na

Job Location: Anywhere in Bangladesh

Salary: --

Experience:

• 5 to 10 years

• Master/bachelor’s degree from a reputed university in Computer Science/IT/related fields

• 5 to 10 years

• At least 5 - 10 years of relevant experience

• Relevant professional certifications from ISACA, ISC2, IIA, EC-Council, RHCE, CEH, ITIL, etc.

• Experience in IT and banking IT Systems

• Sound analytical skills

• Knowledge of risk management and business continuity

• Stay up to date with the latest IT security and vulnerability management practices

• Sound knowledge in agile/DevSecOps process

• Quickly adapt to the dynamic and challenging environment

• Be customer-centric, team player, and keen to develop others

• BRAC Bank, a leading sustainable bank in Bangladesh, is committed to becoming the best bank in the country. It has pioneered SME Banking in Bangladesh and offers a comprehensive range of banking services to individuals and business entities. BRAC Bank stands out as a beacon of financial inclusion with solid financials, top credit ratings, and numerous accolades.

• BRAC Bank is currently looking for an ambitious, intelligent, goal-oriented and enthusiastic individual for the following position in its Internal Control and Compliance Division:

• Job Grade: SPO/AVP

KEY RESPONSIBILITIES:

• Perform end-to-end audits in IT, Information Security, and Cloud Security from initiation/risk assessment, planning, development of work programme and execution, and reporting

• Identify potential risks related to data security, IT processes, and compliance with regulatory requirements and industry standards

• Plan and design audit procedures and strategies based on the organization’s specific needs and objectives

• Conduct audits of IT systems, applications, and processes to assess their effectiveness, security, and compliance

• Maintain detailed records of audit findings, including vulnerabilities, weaknesses, and recommendations

• Ensure that the organization’s IT practices adhere to relevant laws, regulations, and industry standards (e.g., BB ICT and Cloud Guidelines, ISO 27001, PCI DSS)

• Provide recommendations and action plans to address identified vulnerabilities and improve IT security and efficiency

• Communicate audit findings and recommendations to relevant stakeholders, including management and IT teams

• Stay updated on emerging threats, technologies, and industry best practices to enhance the organization’s cybersecurity posture continually

• Keeping updated about banking knowledge, BB guidelines, circulars, auditing standards, changing/ amendment of law/regulations etc.

• Adequately analyze, assess, and evaluate the risk of IT and Information security systems and applications

• Conduct data analysis using suitable Computer-Assisted Audit Technique (CAAT)