Executive Information Security

KEY RESPONSIBILITIES

• Develop and assist with the implementation, adoption, review of Information Security Policies, Procedures and Standards
• Assist in Business Continuity and Disaster Recovery planning and execution
• Monitor contracts and agreements for compliance to Information Security and CBSL directions
• Implementation of regulatory and legal requirements in terms of information security
• Conduct the information security risk assessment program
• Maintain ISO27001:2013 and PCI-DSS certifications
• Comply with the latest SWIFT Customer Security Program (CSP) framework by reviewing the existing controls and implementing new requirements by coordinating with respective stakeholder 
• Perform periodic vulnerability assessments and liaise with respective teams to ensure the vulnerabilities are fixed
• Review application and system hardening activities.
• Assist interactions with vendors, regulators and auditors as required

EXPERIENCE & QUALIFICATIONS

• Bachelor's Degree in Information Security or Bachelor's Degree in Computer Science/Information Technology
• A minimum of 3 years of Information Security experience
• One of the following qualifications - (ISC)2 Systems Security Certified Practitioner (SSCP), (ISC)2 Certified Information Systems Security Professional (CISSP), GIAC Information Security Professional (GISP), or ISACA Certified Information Systems Auditor (CISA) preferred
• Sound understanding of PCI-DSS, ISO27001, ISO 31000, SWIFT CSP, NIST, GDPR and MITRE ATT&CK, OWASP Top 10 etc.
• Knowledge of TCP/IP, computer networking, routing, switching, Patch Management, Vulnerability Assessment and log correlation technologies
• Good analytical skills, excellent interpersonal skills and communication skills

Apply via SpotJobs
Please click APPLY NOW button to upload your CV via SpotJobs