BRAC Bank is one of the most sustainable banks in Bangladesh. Established with a view to financial inclusion, BRAC Bank is the pioneer of SME Banking in Bangladesh, delivering a full array of banking services to individuals and business entities. Its strong financials, along with the best credit rating from the top global and local rating agencies and numerous recognitions, speak of the bank's aspiration towards becoming the best bank in the country.
BRAC Bank is currently looking for an ambitious, intelligent, goal-oriented, enthusiastic individual for the following position in its Risk Management Division:
Manager, System Security and Risks, Information Security
Employment Type: Full Time |
|
|
KEY RESPONSIBILITIES:
- Contribute to the information security vision and programming, including policy creation, training, risk assessment, and security incident response to ensure information assets and technologies are adequately protected;
- Design security architecture and developing detailed cyber security designs;
- Responsible for a secured cyber digital transformation;
- Deliver new security technology approaches and implementing next-generation solutions; be a part of the digital road map and projects as needed as determined by the scope and related to the job function;
- Responsible for working in a Cyber Fusion Center (CFC) environment;
- Maintain security systems and providing threat and vulnerability analysis as well as a security advisory to IT/other stakeholders;
- Draft and implement policies, procedures, and baselines to ensure compliance and security best practices;
- Develop and implement business continuity plans to ensure service is continuous when a change programme is introduced or a security breach occurs or if the disaster recovery plan needs to be triggered;
- Actively look for security vulnerabilities and perform a continuous risk assessment and security reviews; analyze and respond to previously undisclosed vulnerabilities; e. g. VAPT, configuration review, ACM review, etc.;
- Stay up to date with security news, keeping an eye out for the latest vulnerabilities and remedies emerging in the field;
- Support a 24/7 coverage schedule when needed as part of a rotation including weekends; perform other information security job-related duties as assigned.
KEY QUALIFICATIONS:
- University degree in Information Security, Cyber Security, Computer Science, or related fields is required;
- One or more of the following Professional certifications are expected: e. g. CPEH/CEH/CHFI, GCIA/GCIH, CPT/LPT, CISSO/CCISO/CISM/CISSP, CISA/ISO 27001;
- Minimum 6 years of working experience in Information Security as primary responsibility, or a minimum of 8 years of Information Systems experience with Infrastructure as a primary responsibility and strong Network/Infrastructure security focus as a secondary job duty required;
- Experience in implementing/managing security programs and controls;
- Knowledge on various security methodologies and processes, and technical security solutions;
- Ability to understand and translate pre-established information security policy, standards, and compliance regulations and produce tactical, operational procedures;
- Familiar with security principles and concepts;
- Understand and apply assessment components to security controls that measure performance, reliability, and compliance;
- Knowledge and experience with NIST, OWASP, PCI-DSS, ISO 27001, and COBIT desired;
- Experience in implementing/managing security programmes and controls;
- Drive innovation by analyzing and interpreting data to test and inform a new initiative or approach;
- Accountable for successful completion of multiple, individual projects simultaneously;
- Communicate effectively by contributing significantly to the development and delivery of a variety of written and visual documents for diverse audiences;
- Manage change and demonstrate adaptability by embracing change and adjusting priorities or processes and approach as needs dictate;
- Take responsibility for successes and failures related to individual and team-based project work assignments; actively presents suggestions for solution(s), if objectives are not met;
- Proficient in customer centricity, self-propelled.
BRAC Bank is a values-driven organization and believes in protecting all its stakeholders, including the employees and the community we work with, from all forms of harassment, abuse, neglect, exploitation, and discrimination. As an equal opportunity employer, BRAC Bank encourages applications from any gender-diverse individuals and persons with disability. We consider personal persuasion as disqualification of candidature
If you are interested in taking up the challenge, please 'Apply Online'.
Only short-listed candidates will be communicated for the next stage as per the recruitment process. BRAC Bank reserves the right to accept or reject any application without assigning any reason whatsoever.
BRAC Bank does not charge any fee at any stage of the recruitment process.
Application Deadline: August 15, 2022 |