Description
1. Information Security Risk Management: Identifying and assessing information security risks within the bank's operations and technology infrastructure.
2 .Developing risk treatment plan to mitigate and address identified risks and fine tune based on the risk posture
3. Vendor and Third-Party Risk Management: Assessing and managing the security risks associated with third-party vendors and service providers that have access to the bank's systems or data.
4. Tracka and monitor statuatory and regulatory requirments from regulatory circulars and advisories
5. Establish and run a vulnerability management and penetration testing program
6. Develop/update IS Policy/procedure and track compliance
7. Conduct periodic Cyber awareness programs and phishing simulations to increase the employee awareness
8. Ensure compliance to ISO 27001 and PCIDSS standards
Responsibilities
1. Manage compliance and risk team members
2. Recruit , lead, mentor and retain a team of information/cyber security professionals
3. Set objective and goals for the next level team members
4. Periodically assess the performance and conduct appraisal
5. Provide timely feedback on team performance
6. Mentor team members to excel in their role
Qualifications
Experience Range : 15 to 20 Years
Qualifications :
B.Tech
