Information Security Officer - Banking (225-805)

The Information Security Officer is a critical role within the banking sector, tasked with ensuring that the institution's data and systems are protected from external and internal threats. In today's digital age, banks are prime targets for cybercriminals, and maintaining robust security measures is of paramount importance. The Information Security Officer leads efforts to design, implement, and monitor a comprehensive information security program. This involves staying abreast of the latest security technologies and standards, as well as ensuring compliance with industry regulations. The role requires a strategic mindset, excellent problem-solving skills, and the ability to communicate effectively with both technical and non-technical stakeholders. By securing the bank's digital assets, the Information Security Officer plays a vital role in safeguarding customer trust and the bank's reputation.

Responsibilities

• Develop, implement, and manage an overall cybersecurity strategy for the bank.
• Conduct regular security audits and risk assessments to identify vulnerabilities.
• Ensure compliance with all relevant legal and regulatory requirements.
• Deploy and manage security technologies, including firewalls, encryption, and intrusion detection systems.
• Lead incident response planning and investigate security breaches promptly and effectively.
• Collaborate with IT department to secure the bank’s infrastructure and networks.
• Provide security training and awareness initiatives for bank staff and stakeholders.
• Maintain current knowledge of the latest security threats and best practices.
• Report on the current status of the bank's information security posture to senior management.
• Work with external partners and vendors to enhance the bank's security operations.
• Develop and implement security policies, standards, and guidelines.
• Oversee the development and maintenance of disaster recovery and business continuity plans.

Requirements

• Bachelor's degree in Computer Science, Information Technology, or related field.
• At least 5 years of experience in a similar information security role.
• Professional certifications such as CISSP, CISM, or CISA are highly desirable.
• Strong knowledge of cybersecurity frameworks and regulatory requirements in banking.
• Proficiency with security tools such as SIEM, DLP, and antivirus solutions.
• Experience with cloud security and managing cloud-based environments.
• Excellent communication skills for reporting to management and conducting training sessions.