Title: Senior Manager/Unit Head, GRC and Data Security
Company Name: BRAC Bank Limited
Vacancy: Not specific
Job Location: Anywhere in Bangladesh
Employment Status: Full-time
Educational Requirements:
∎ Graduate from a reputed university in Information Security, Cyber Security, Computer Science, or IT-related fields is required;
∎ Certifications in CISM/ CISSP/ CCISO, CISA/ LI27001, CEH/ CPEH, CPT/ LPT, ITIL/ COBIT/ CMMC/G IAC, and CRISC/ CGEIT preferred;
Experience Requirements:
∎ At least 10 year(s)
Job Responsibilities:
∎ Contribute to the information security vision and programming for policy creation, training, and risk assessment to ensure that information assets and technologies are adequately protected;
∎ Implement security controls, risk assessment framework, and program that aligns with regulatory requirements, ensuring documented and sustainable compliance that aligns and advances BRAC Bank's business objectives;
∎ Contribute to data security and privacy and manage data security tools;
∎ Evaluate risks and develop security standards, procedures, and controls to manage risks;
∎ Improve the bank's security positioning through process improvement, policy, automation, and the continuous evolution of capabilities;
∎ Implement processes, such as GRC (Governance, Risk, and Compliance), to automate and continuously monitor information security controls, exceptions, risks, and testing;
∎ Update security controls and provide support to all stakeholders on security controls covering internal assessments, regulations, protecting Personally-Identifying Information (PII) data, Payment Card Industry Data Security Standards (PCI DSS), ISO, and payment partners (Visa, Mastercard, JCB, SWIFT, etc.);
∎ Perform and investigate internal and external information security risks and exception assessments;
∎ Assess incidents, vulnerability management, scans, patching status, secure baselines, penetration test results, phishing, and social engineering tests and attacks;
∎ Document and report control failures and gaps to stakeholders;
∎ Provide remediation guidance and prepare management reports to track remediation activities;
∎ Train, guide, and act as a resource on Information Security functions to other departments within the bank;
∎ Interact in verbal and written communications with all internal stakeholders and work with internal/external auditors and external consultants as appropriate on required security assessments and audits;
∎ Manage the security awareness training programs and strategies to address awareness and training for all stakeholders;
∎ Knowledge of the best practices and technological advancements;
∎ Perform other duties as assigned.
Additional Requirements:
∎ At least 10 years of experience in an information security environment with more than 5 years in a supervisory or management role;
∎ Experience in governance, risk, and compliance leadership is highly preferred;
∎ Knowledge of information security risk management frameworks and compliance practices, including ISO27005, ISO 22301, ISO 27001/2, GDPR, and NIST 800-30;
∎ Ability to understand and translate pre-established policy, standards, and compliance regulations and produce tactical, operational procedures;
∎ Ability to understand and apply assessment and audit components to security controls that measure performance, reliability, and compliance;
∎ Knowledge of banking systems is preferred;
∎ Expert in customer-centricity, results-oriented, and self-propelled.
Job Source: Bdjobs.com Online Job Posting.
Application Deadline: 24 Sep 2022
Company Information:
∎ 13 Sep 2022
∎ BRAC Bank Limited
∎ Business : BRAC Bank, the pioneer of SME Banking in Bangladesh, delivers a full array of banking services to individuals and business entities. Its financial results, along with the best credit rating from the top-rated global and local agencies and multiple best financial report awards, speak of the bank`s aspiration, transparency, and teamwork towards becoming the best bank in the country.
Category: Bank/Non-Bank Fin. Institution
:
Source: bdjobs.com