Job Description

Role (Overall Accountability) He is responsible for the following: o Administration, operations management, device monitoring, and technical support of the Security Systems of the bank pertaining to the Test and Development environment. o Assisting the security operations team in evaluating, testing, and implementing new security products, projects, and services. o Supporting IT Security Projects' team members. The Security Systems referenced here comprise, but not limited to, the following system under the Test and Development environment: o Firewalls o Web Application Firewalls o Web Filtering o Unified Threat Management o DDOS Mitigation o Network & Firewall Compliance Tools o Network Monitoring o Intrusion Prevention Systems o Consolidated Endpoint Security, comprising: o Anti-Virus o Data Leak Prevention o Disk Encryption o Threat Prevention o Device Control o Endpoint Detection and Response o Adaptive Threat Prevention o Application Control o Change Control o File Integrity Monitoring o Multi Factor Authentication System o Database Activity Monitoring o File and Folder Encryption o Data Classification o Content Scanning Solution Official Information Technology Department IT Security Operations This Document is classified as Official Page 2 of 3 Principal Accountabilities o Installation, administration and monitoring of bank's security systems, and other new technologies that will be implemented in the future. o Backup, patch, update, and upgrade the security systems of the bank, while adhering to the Change and Release Management procedures implemented in the bank. o Perform system health checks for all Security devices on periodic basis. o Ensure that a detailed impact analysis of any change request is carried out and viable and tested solution is recommended. o Review and update management and procedure documents to ensure that all changes in the processes and systems are adequately documented and up to date. o Manage AMC renewals for all IT security systems, devices and infrastructure. o Coordinate with the auditors (internal, external, and CBO) and assisting them in performing their duties while auditing the security systems. o Participate and lead new projects and initiatives related to IT security. o Monitor security systems' capacity utilization and plan for enhancements proactively. o Monitor Internet usage and report exceptions. o Generate MIS reports for all security components. o Ensure availability of all security systems on 247 basis. o Supervise and ensure that all DR failover and failback tests are carried out successfully. o Coordinate with his superiors in resolving issues and complaints. o Coordinate with internal teams and external vendors to resolve issues and/or to implement system changes. o Ensure regular updates on progress are conveyed to superiors. o Ensure high quality deliverables and work products are provided and meet commitments for the schedule on satisfying the bank's user needs. o Must build a strong sense of commitment among all his team members to meet the user satisfaction levels. o Ensure that appropriate corrective and preventive actions are undertaken and resolve problems as soon as they arise. Key Interaction Individual / Entity Purpose All users in the Bank For security administration and support. Official Information Technology Department IT Security Operations This Document is classified as Official Page 3 of 3 Personnel Specifications Must be a graduate in Computer Science, Information Systems or equivalent IT disciplines, with 4-6 years of experience in the IT Security discipline. The candidates should have strong technical background in the following areas: o Master's Degree in Cyber Security is a plus. o Certifications in Cyber security/ IT Security / Risk - CISSP, CISM, CISA, GIAC, CEH, CRISC etc is a plus. o Must have good knowledge of Standards such as ISO 27001, ISO 27005, PCI-DSS, CoBIT etc. Product certification such as CCNP, PCNSE, is preferable. o Product trainings/certifications based on other technologies such as Juniper, RSA, Proxy and IPS devices is preferred. o Hands-on experience on installation, administration, trouble shooting and user support of security products such as firewall/VPN, IDS/IPS, proxy servers, content filtering SW etc. o LAN/WAN networking technologies, communication topologies and TCP/IP and other Network protocols, etc. o Intranet, Internet and other web technologies. o Windows/Unix/Linux operating systems and internetworked environments. o OS and DB hardening procedures (Windows/Unix/Linux and Oracle/SQL etc.) o Documentation MIS preparation and reporting. o Good communication and presentation skills with good command of spoken and written English. o Good interpersonal relations with pleasing personality. Signature of the staff Date Signature of the line manager Date

Job Type: Full-time

Pay: RO700.000 - RO1,400.000 per month