Job Description

Job Responsibilities:

Review & maintain the Risk profile according to the bank's Cyber Security Risk appetite. Identify information security controls necessary to remediate identified risks and follow up remediation with the concerned business lines. Assess information security risks for IT assets and propose appropriate measures to eliminate/reduce risk. Coordinate with Information Security teams to manage the risk assessment activities. Engage InfoSec Teams in all new initiatives and projects to handle InfoSec risk assessment for new projects/technologies with concerned stakeholders. Follow up on Audit reports along with audit Findings/Recommendations by Internal Audit/External Audit, CBE and ensure remediation with the related parties. Ensure maintaining Global InfoSec Risk Register for all assessed IT assets & follow up on open risks until closure. Review the cases performed by the InfoSec Governance & Compliance Teams from risk perspective side. Participate in the Change Advisory Board (CAB) meeting. Work on standard and ad-hoc threats providing InfoSec risk assessment as needed. Conduct Risk Assessment on notified threats and/ or vulnerabilities received from (Cyber Security, CBE, Vendors). Engage in new bank's projects to identify, assess, and evaluate the inherent InfoSec Risk. Participate in updating the annual risk policy. Report to the Team Leader / Associate / Manager the challenges, business issues, breached SLAs, and internal team concerns. Ensure adhering to policies and procedures in order to guarantee that the bank's business in conducted in compliance with Local Laws, CBE, the bank's Rules and Regulations, as well as, International Standards. Ensure the correct functioning and implementation of Permanent Supervision system, compliance, money laundering and workplace success guidelines whenever & wherever possible.

Job Requirements:

Bachelor's Degree in Computer Science or Electronics & Communication Engineering or a related field from a reputable university. Minimum 4 years of experience for the Senior Analyst and 2 years of experience for the Analyst in the banking sector and information security field, including the following backgroud:
. Risk assessment, identification and mitigation
. Security controls, security baseline, technology best practices.
. Has an integration knowledge across different security technologies and systems.
. Security control enforcement, measure of effectiveness and proposing compensating controls.

CBE regulations.
Job Type: Full-time

Work Location: Remote