Define appropriate policies, guidelines, standards, frameworks, processes and security configuration
baselines to enhance the IT control environment.
Primarily responsible for rolling out a comprehensive Information & Communication Technology Risk
Management framework that includes:
(a) IT Risk Management,
(b) Cybersecurity Risk Management (Identify, Protect, Detect, Respond, and Recover from
cybersecurity threats) and
(c) Information Risk Management.
Lead the implementation and rollout of the various security frameworks, including logical access rights,
information security awareness, Cybersecurity maturity assessment, Security Incident Response Plan.
Lead implementation and compliance with Swift CSP, PCI DSS and other ICT Risk-related regulatory
Define and implement metrics to monitor effectiveness of Cybersecurity controls for regular management
Excellent knowledge in cyberattack techniques and Cybersecurity control frameworks
Bachelor’s Degree in IT
CISSP, CISM, CEH or other related Certifications
Demonstrated technical proficiency across broad range of Cybersecurity technologies and controls.
Ability to keep up to date with latest IT technologies including risks associated with these technologies.
Knowledge in regulatory requirements governing Banking institutions.
Knowledge of Cloud computing and Cloud security control frameworks.
Experience in design, implementation and continuous monitoring of Cybersecurity and compliance
At least five years experience in a similar position.