VACANCY ANNOUNCEMENT
Company: Janata Bank
Position Title: Information Security Officer
No. of Vacancy: 1
This position serves as a key member of Information Security team of the Bank who works to provide security testing for Core Banking Application, networks, servers and other third-party applications. The Information Security Officer (ISO) should be a skilled professional who shall be the focal point for information security compliance related activities and understands and knows how to look for weaknesses and vulnerabilities in applications and networks.
Job Description
• Ensure adequate IT and IT Security policies/procedures are in place and ensure adoption and enforcement of Information Security policies, procedures and standards across the Bank.
• Maintain appropriate security measures and mechanisms to guard against unauthorized access to electronically stored and /or transmitted patient data and protect against reasonably anticipated threats and hazards.
• Conduct functionality and gap analysis to determine the extent to which key business areas and infrastructures comply with statutory and regulatory requirements.
• Evaluate and recommend new information security technologies and counter-measures against threats to information or privacy.
• Oversee and/or assist in performing on-going security monitoring of Banks’ information systems.
• Ensure adequate trainings and awareness is provided to staff on IT security.
• Ensure that Disaster Recovery and Emergency operating procedures are in place.
• Carry out penetration testing, but in a lawful and legitimate manner to assess the security posture of the bank.
• As a security team member, s/he will serve as an adversary to find vulnerabilities in applications and network systems in order to protect the organization against possible threats.
Job Requirement
• Familiar with vulnerability assessment processes, penetration testing techniques and audit procedures.
• Experience in performing application and infrastructure penetration tests both manually and automatically.
• Experience in writing proof-of-concept exploits.
• Ability to work for executing and improving work processes to ensure achievement of business goals.
• Experience with information security control practices and frameworks.
• Extensive understating of cryptographic concepts and applied cryptography.
• Excellent written and verbal communication skills.
• Excellent applied critical thinking and troubleshooting skills.
• Ability to work independently and in a team environment.
• Experience in leading projects and team activities.
• Consult on high-level strategic initiatives, highly technical and detailed regulatory compliance projects.
• Experience in managing web application architectures, firewall, IPSec, VPNs, WLANs, Database implementation and management.
Education & Experience
• At Least Bachelor’s Degree in Computer Engineering/Science/Application or equivalent.
• Minimum 1 year of work experience in Information Technology Security or Compliance.
• Certification on White Ethical Hacking and IT Security is preferred.
Age:
• For Junior Officer Level, age should not exceed 35 years as on 20th September 2018.
• For Officer and Senior Officer Level, age should not exceed 37 years as on 20th September 2018.
Last date to apply: 20th September 2018.
