Title: Officer (G-3) - Information Security (Information Technology Division)
Company Name: ONE Bank PLC
Vacancy: 01
Age: At least 26 years
Job Location: Dhaka
Salary: --
Experience:
Master of Science (MSc)/Bachelor of Science (BSc) in Computer Science & Engineering or Information and Communication Technology or a related discipline.
Strong willingness to learn, develop, and build a career in Cyber Security, SOC Operations, Information Security, and IT Governance.
Ability to work efficiently in a fast-paced, security-sensitive, and compliance-driven banking environment.
Knowledge of Security Monitoring, Incident Management, Information Security, and Cybersecurity principles, along with relevant standards, frameworks, and policies.
Hands-on experience with SIEM tools, including log monitoring, analysis, correlation, and incident investigation.
Experience working with security solutions such as PAM, VA/PT tools, EDR, DLP, and FIM to support security operations and risk management activities.
Strong understanding of networking concepts, Windows/Linux operating systems, databases, programming fundamentals, and web application technologies.
Professional certifications such as CEH, CSA, or equivalent cybersecurity certifications will be considered an advantage.
Perform 24×7 security monitoring on a roster/shift basis, monitor SIEM alerts and security events, conduct initial incident analysis, and escalate security incidents as required.
Monitor and manage security technologies including SIEM, PAM, EDR, DLP, FIM, IDS/IPS, and Vulnerability Management solutions to detect and respond to cyber threats.
Investigate suspicious activities, review logs from multiple sources, support incident response activities, and assist in vulnerability assessment, penetration testing, and remediation efforts.
Prepare security reports, maintain incident documentation, ensure compliance with the Bank’s security policies and regulatory requirements, and coordinate with relevant teams to resolve security issues.
Stay updated on emerging cyber threats and security best practices, participate in cyber drills and awareness programs, maintain confidentiality of sensitive information, and perform other cybersecurity-related duties assigned by management.