Responsibilities

• Ensure the implementation of information security policies, controls, and processes in line with Branch requirements.
• Update documentation and manuals on policies, controls, and processes.
• Perform security risk assessments, third-party risk assessments, and ensure compliance with MAS Technology Risk Management guidelines.
• Enforce data protection principles by safeguarding confidentiality, integrity, and availability of systems and information.
• Conduct regular system reviews, patch management, and hardening practices.
• Review and analyze security and access logs.
• Lead or support project initiatives related to Information Security.
• Plan and execute remediation of identified security vulnerabilities.
• Perform gap analysis on MAS advisories and monthly FINTEL notifications.

Requirements

• Bachelor’s Degree or Diploma in Information Technology or a related discipline from a recognized institution.
• Possess a minimum of 3 years of IT Security experience, preferably in banking or vendor environments.
• Demonstrate strong knowledge in IT Security tools and platforms: MASTERSAM, CyberArk, Morphisec, Trend Micro, Symantec, M365 Security, Firewalls, Proxy, Tenable Nessus, and Network Segmentation.
• Apply technical expertise in IT infrastructure systems: Windows Server OS, Red Hat Linux OS, Active Directory, Microsoft Exchange, VMware, network switches/routers, and AS400 systems.
• Exhibit solid understanding of cybersecurity practices: system hardening, vulnerability management, and security controls aligned with industry standards.
• Utilize project management methodologies with proven ability to lead and deliver IT security projects.
• Demonstrate vendor management skills: evaluating, onboarding, and managing third-party service providers for compliance and performance.
• Hold relevant certifications (highly desirable): CISSP, CISM, CISA, M365 Security.