BRAC Bank is one of the most sustainable banks in Bangladesh. Established with a view to financial inclusion, BRAC Bank is the pioneer of SME Banking in Bangladesh, delivering a full array of banking services to individuals and business entities. Its strong financials, along with the best credit rating from the top global and local rating agencies and numerous recognitions, speak of the bank's aspiration towards becoming the best bank in the country.

BRAC Bank is currently looking for an ambitious, intelligent, goal-oriented, enthusiastic individual for the following position in its Risk Management Division.

Chief Information Security Officer (CISO)

Employment Type: Full Time

KEY RESPONSIBILITIES:

  • Define and own a cybersecurity roadmap, budget, and key performance indicators focused on reducing cyber risk; 
  • Overall responsible for the cybersecurity strategy and initiatives of the bank; 
  • Create time-bound cybersecurity and risk management goals, articulate strategies, define metrics, and provide necessary updates to executive leadership and the board;
  • Ensure alignment between business strategy and Information Security Management Program direction;
  • Identify and implement security controls to protect systems, operations, and information using standard frameworks like ISO27001, PCI-DSS, and ISO 18788;
  • Mentor and lead the Information Security Team to progress skills and competencies;
  • Lead Security Incident Response and the ongoing and effective handling and remediation of security incidents;
  • Keep updates of developing security threats and proactively create strategies to understand and mitigate potential security problems that might arise from digital transformation initiatives;
  • Risk management and risk analysis for critical products and partners; 
  • Facilitate and conduct company-wide security awareness, education, and training regularly; 
  • Vulnerability management and remediation or mitigation of vulnerabilities in BRAC Bank systems, security-related policies, documentation, and procedures; 
  • Develop and maintain relevant information security policies and procedures;
  • Serve as an expert advisor to executive leadership in developing, implementing, and maintaining a strong information privacy and security program;
  • Act as the Point of Contact for communicating BRAC Bank's security posture with internal and external parties, including customers, regulators, and auditors.

KEY QUALIFICATIONS:

  • A Master’s degree in Information Security or relevant fields is preferred;
  • MBA with a major in Information Security Management and related professional credentials, e.g., CISA/CCSP, CISSP/CISM/CISSO, ITIL/COBIT/CRISC, CEH/CPEH, LPT/CLPT, PMP/LPM, etc. will be an added advantage;
  • Minimum 15 years of experience with at least 10 years in information systems/security management with system security as a primary responsibility and at least five years in a leadership role;
  • Strong executive presence to present recommendations compellingly to both internal and external stakeholders who are technical and non-technical professionals; 
  • Strong understanding of information security and the value of data for risk management;
  • A comprehensive knowledge of information protection standards, guidelines, and applied procedures (i.e., industry best practices);
  • Demonstrable expertise in related Security Frameworks such as NIST, ISO 2700X, CIS, and working knowledge of Security Operations Center, Defense In-depth, and ZTA;
  • Technical experience demonstrating comprehensive knowledge of information security and risk management and technology (audit compliance, regulatory compliance, business continuity, disaster recovery, vulnerability management, configuration management, web application security, intrusion detection, and prevention systems, firewalls, and endpoint security);
  • Ability to lead a dynamic team independently;
  • Be customer-centric, a team player, and keen to develop others.

BRAC Bank is a values-driven organization and believes in protecting all its stakeholders, including the employees and the community we work with, from all forms of harassment, abuse, neglect, exploitation, and discrimination. As an equal opportunity employer, BRAC Bank encourages applications from any gender-diverse individuals and persons living with disability. We consider personal persuasion as disqualification of candidature.

If you are interested in taking up the challenge, please 'Apply Online'. 

Only short-listed candidates will be communicated for the next stage as per the recruitment process. BRAC Bank reserves the right to accept or reject any application without assigning any reason whatsoever.
BRAC Bank does not charge any fee at any stage of the recruitment process.

Application Deadline:  12 January 2022