Deputy Manager – Information Security
Direct Reporting:
-Chief Risk Officer
Education:
-Graduate/Masters Computer Engineering/Science
Experience:
-5 to 6 years of experience (1 to 2 years managing a team).
Job Description:
- Mitigate information security risks in line with industry practices, the risk appetite of the business & any legal, regulatory or contractual requirements.
- Ensure compliance of information security policy and ISMS.
- Manage external audits and assessments, oversee audit findings and management actions plans. Ensure corrective actions are taken.
- Develop and review Business Continuity and DR documents on a regular periodic basis for accuracy and completeness.
- Conduct regular DR drills to ensure the system availability and readiness of relevant teams.
- Co-ordinate & liaise with auditors & security assessors as necessary.
- Review and identify risk associated within the business processes and new projects and report it on timely for its resolution.
- Implement and oversee technological upgrades, improvements and major changes to the information security environment.
- Monitor their organization’s networks for security breaches and investigate violations when occurs.
- Assess the organization’s security measures, such as firewalls, anti-virus software and passwords, to identify any weak points that might make information systems vulnerable to attack.
- Perform technical security review of the systems with the help of tools, if applicable.
- Prioritize security coverage to ensure that strategically important data, such as commercial information or personal data, receives the highest levels of protection.
- Develop and direct implementation of security standards and best practices for the organization.
- Research the latest information technology security trends.
- Recommend security enhancements to relevant department.
- Assist system administrators in deploying security controls in the systems, if required.
- Ensure that Information security audits are conducted periodically or as needed
- Provide training for employees, explaining security risks and ISMS requirements and demonstrating good practices
Skills:
-Excellent verbal and written communication skills
City: Karachi
Last Date to Apply: Jaunuary15, 2022
Please send your resume at [email protected]
Comments are closed.