Share this Job

Deputy Manager, Cybersecurity - GISGD

Req ID:  4721
Job Description: 

Duties and Responsibilities

 

Key Performance Areas

1.         Cyber Security Testing

  • Conduct and manage cybersecurity vulnerability assessment and penetration testing
  • Conduct and manage Compromised Assessment
  • Conduct and manage Red Team exercise
  • Conduct and manage Cyber Drill including Table-Top exercise
  • Conduct and manage Phishing Simulation exercise
  • To report the results of the Cyber Security Testing to the Management
  • To track the findings of Cyber Security Testing until fully remediated or Closed.

 

2.         Cyber Security Threat Intelligent

  • Monitor for threats and vulnerabilities
  • Must be aware of new threats to the stakeholders.
  • Provide analysis of threat intel which maybe relevant to the bank
  • Escalate of current Threat Intelligent where required
  • Provide report when required by CISO

 

3.         Cyber Security Awareness Program

  • To support a bank wide information security education and awareness campaign.
  • Provide information /cyber security training and education to stakeholders.
  • To provide tracking to the current cyber security programs that has been conducted

 

Requirements:

  • Degree in Information Technology or any related fields.
  • 7 years job experience in information security or 5 years job experience in Financial and Banking sector
  • Experience in IT / Information Security industry preferred
  • Experience in Banking operation with deep knowledge of banking system integration
  • Able to conduct penetration testing and security assessment
  • Experience with threat modeling and web application security assessments
  • Experience with secure networking best practices
    • 5+ years experience using Open Source Penetration Test Platform such as Kali Linux
    • 3+ years experience using common vulnerability assessment tools (ie: Nmap, Nessus, Qualys, Rapid7)
    • 3+ years experience using common wireless assessment tools (ie: Acrylic, Netstumbler, Aircrack-NG, Reaver)
    • 1+ years experience using common application security testing tools (ie: Fortify,  AppScan, WebInspect, Burp.)
  • Experience in security-related topics,  including but not limited to authentication, entitlements, identity management, data protection, data leakage prevention, validation checking, encryption, secure communication, and secure data storage
  • Able to analyze and develop cybersecurity policies, guidelines, and procedure manuals.
  • Pleasant personality proactive and able to work independently.
  • Ability to multitask, highly numerate and great attention to details.