Senior Cyber Security GRC Analyst

Purpose and Summary:

To primarily ensure Bank acts in accordance with its internal policies, external compliance requirements, and risk appetite through the alignment of strategy with organizational objectives.
To ensure the operational environment remains secured, managing risk to acceptable level by analyzing risk probability, impact and prioritizing control implementation.

Key Deliverables:

Develop, implement, and maintain Information Security policies, standards, and frameworks in line with regulatory demands and new international standard practices.
Overseeing Information Security compliance to ensure adherence to the bank’s security policies and standards.
Preparing MIS Trackers, Reports and Dashboards for the management.
Perform Information security risk assessment against industry standard security framework/policies for IT/IS risks
Document, Approve and Progress the Implementation of the Information Security Awareness Program Employees & Customers.
Develop and report on program execution KPIs to the ISWG (IS workgroup) on monthly, quarterly and annual basis.
Maintain the CBO, SWIFT & PCI-DSS compliance tracking. Produce the reports and dashboard. Ensure to share the report and dashboard with the ISWG (IS Workgroup) on monthly basis. Ensure timely closure, escalation of the action items and track / record activities in auditable format
Report any violation to approved security policies and provide recommendations.
Logs all InfoSec related Incidents and track for closure of the incidents and maintain risk register.
Conduct research and gain awareness of latest information security trends.
Liaise with different entities on security events or global threats.
Liaise with different team members to deploy security controls recommended by vendors and by Information security team.

Qualifications:

Skills/Knowledge:

Experience:

Related Jobs