Information Security Officer (IS)

Sanima Bank Limited , Kathmandu — Posted 1 year ago

Major Responsibilities:

  • Monitor the bank’s information systems for security issues.
  • Investigate security breaches and other cyber security incidents.
  • Document the cyber incidents and assess the damage.
  • Analyze security breaches to identify root cause.
  • Perform vulnerability assessment and penetration testing.
  • Work with different team to perform tests and uncover network and system vulnerabilities.
  • Suggest IT team with appropriate solutions to fix detected vulnerabilities to maintain a high-security standard.
  • Test and evaluate security products.
  • Execute and monitor the in housed phishing activity.
  • Ensure the implementation of security standards and best practices.
  • Delivery of cyber security awareness training for colleagues.
  • Support to install security software to enhance security posture of the bank.
  • Stay up-to-date on information technology trends and security standards.
    Other Specification

    Requirements & Qualifications:

    1. Education: Bachelor’s degree in computer science, information security, or a related field. Relevant certifications such as Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM) are beneficial.
    2. Experience: Prior experience in information security, preferably within the banking or financial sector. The specific years of experience required may vary depending on the seniority level of the position.
    3. Knowledge of Information Security Standards: Familiarity with international information security standards and frameworks, such as ISO 27001, NIST Cybersecurity Framework, or PCI-DSS. Understanding of banking industry-specific regulations and requirements.
    4. Technical Skills: Proficiency in implementing and managing information security controls, including firewalls, intrusion detection systems, access controls, and encryption technologies. Knowledge of network security, secure coding practices, and vulnerability assessment tools.
    5. Risk Assessment and Incident Response: Strong understanding of risk assessment methodologies and incident response procedures. Ability to identify vulnerabilities, assess risks, and develop mitigation strategies. Experience in handling and responding to security incidents.
    6. Communication and Collaboration: Excellent communication skills to effectively communicate information security concepts to stakeholders at all levels. Ability to collaborate with cross-functional teams, including IT, risk management, and compliance departments.
Details
Finance and Banking Industry
Full-time Job Type
Senior Job Level
Job post expired. Apply anyway, we'll forward your CV.