Key Deliverables:

• Provide periodic and on-demand security assessment (VAPT) to IT infrastructures, systems, applications and websites.
• Perform Red Team activity to systems/applications.
• Logs all InfoSec related Incidents and track for closure of the incidents - manage and maintain Incident log Register
• Conduct research and gain awareness of latest information security trends.
• Liaise with different team members to deploy security controls recommended by vendors and Information security team.
• Support security incident responses that require to have further security analysis.
• Conduct threat hunting to identify threats in the organization.
• Participate in information security related initiatives and projects as assigned or other duties as assigned.
• Ensure alignment with regulatory and compliance frameworks.
• Help and advise the IT departments to stay up-to-date on the latest security issues and threats.

Qualifications:

• Degree in Information Security/IT or equivalent.
• Preferred Professional Information Security Certification or equivalent
• ITIL v3(Information Technology Information Library)
• CCNA
• ISO/IEC 2013:27001 Lead Implementer
• CEH (Certified Ethical Hacking)
• ISO 27005
• Web Application Penetration Testing

Skills/Knowledge:

• Effective Communication skills.
• Strong Risk Analysis skills.
• Attention to Details.
• Problem-Solving skills.
• Coordination skills.
• Teamwork skills.
• Reporting skills.
• Research skills
• Assessment skills.
• Sound Arabic & English Languages skills.
• Programming skills (e.g. Python, java, php…etc).

Experience:

• 4 to 8 years of relevant experience.

Business Understanding:

• Understanding of the bank’s information security policies, processes, and procedures.
• Understanding of Information Security terms and regulations.