Title: Senior Manager/ Manager, GRC and Data Security
Company Name: BRAC Bank Limited
Vacancy: Not specific
Job Location: Anywhere in Bangladesh
Employment Status: Full-time
Educational Requirements:
∎ Graduate from a reputed university in a relevant subject and related fields is required;
∎ Certifications in CISM/ CISSP/ CCISO, CISA/ LI27001, CEH/ CPEH, CPT/ LPT, ITIL/ COBIT/ CMMC/ GIAC, and CRISC/ CGEIT preferred;
Experience Requirements:
∎ At least 10 year(s)
Job Responsibilities:
∎ The purpose of this role is to ensure governance, risk management and compliance of ICT/ information security initiatives, and data security within the bank through:
∎
∎ Contribute to the information security vision and programming to include policy creation, training, and risk assessment to ensure information assets and technologies are adequately protected;
∎ Implement security controls, risk assessment framework, and programs that align to regulatory requirements, ensuring documented and sustainable compliance that aligns and advances BRAC Bank's business objectives; contribute to data security and privacy; manage data security tools;
∎ Evaluate risks and develop security standards, procedures, and controls to manage risks; improve bank's security positioning through process improvement, policy, automation, and the continuous evolution of capabilities;
∎ Implement processes, such as GRC (Governance, Risk, and Compliance), to automate and continuously monitor information security controls, exceptions, risks, and testing;
∎ Update security controls and provide support to all the stakeholders on security controls covering internal assessments, regulations, protecting Personally-Identifying Information (PII) data, Payment Card Industry Data Security Standards (PCI DSS), ISO, and Payment partners (Visa, Mastercard, JCB, SWIFT, etc.);
∎ Perform and investigate internal and external information security risks and exceptions; assess incidents, vulnerability management, scans, patching status, secure baselines, penetration test results, phishing, and social engineering tests and attacks;
∎ Document and report control failures and gaps to stakeholders; provide remediation guidance and prepare management reports to track remediation activities;
∎ Train, guide and act as an internal resource on Information Security functions to other departments; interact in both oral and written communications with all levels of internal stakeholders and work with internal/external auditors and outside consultants as appropriate on required security assessments and audits; manage the security awareness training programs and strategies to address awareness and training for all stakeholders;
∎ Knowledge of best practices and technological advancements; perform other duties as assigned to ensure the smooth functioning of the department and reputation of the bank.
Additional Requirements:
∎ At least 10 years of experience in an information security environment with 5+ years in a supervisory or management role; governance, risk, and compliance leadership experience are strongly preferred;
∎ Knowledge of information security risk management frameworks, and compliance practices, including ISO 27005, ISO 22301, ISO 27001/2, GDPR, and NIST 800-30;
∎ Ability to understand and translate pre-established policies, standards, and compliance regulations and produce tactical, operational procedures;
∎ Ability to understand and apply assessment and audit components to security controls that measure performance, reliability, and compliance;
∎ Knowledge of banking systems is preferred;
∎ Excellent client-facing and internal communication skills;
∎ Positive-minded and adaptive to change;
∎ Expert in customer centricity and self-propelled.
Job Source: Bdjobs.com Online Job Posting.
Application Deadline: 25 Jun 2022
Company Information:
∎ 20 Jun 2022
∎ BRAC Bank Limited
∎ Business : BRAC Bank, the pioneer of SME Banking in Bangladesh, delivers a full array of banking services to individuals and business entities. Its financial results, along with the best credit rating from the top-rated global and local agencies and multiple best financial report awards, speak of the bank`s aspiration, transparency, and teamwork towards becoming the best bank in the country.
Category: Bank/Non-Bank Fin. Institution
:
Source: bdjobs.com