Responsibilities:

• Provide input and security consultation in a project-based environment as well as assisting operational of IT Security components with functional security requirements.
• Evaluate new projects and applications as they relate to security architecture and design; audit existing deployments and analyse gaps against security practices and standards
• Conduct application vulnerability assessment, secure code review, and security penetration testing for new projects, enhancement projects, and periodic assurance to comply security policies and regulatory.
• Implement and operate DevSecOps on projects/applications that use DevOps process.
• Track, enforce, and consult to resolution the closure of security risks including review plans and monitor progress or remedial actions according to security requirements, security design, application vulnerability, and penetration testing issues.
• Periodically review security requirements to align with Bank’s policies and regulations.
• Support periodic security audits.
• Manage third parties involved in IT Security Advisory and Assurance.

Qualifications:

• Bachelor's or Master’s Degree in Computer Science, Engineering, Information Systems or equivalent
• Minimum 3 years in IT Security Advisory, Security Assurance, Threat Hunting plus experience working in or closely with IT Application, Enterprise Architect, and IT Risk management.
• Knowledge of Security Framework and Concepts, Compliance, Risk and Regulations, PCI DSS, OWASP, COBIT
• Experience in performing comprehensive and authoritative technical analysis of the security readiness and compliance of applications
• The ability to oversee pentesting to find vulnerabilities in all elements of a security system, understand security vulnerabilities, secure code review and remediation.
• Data and information management, including classification, retention and destruction. It also means keeping corporate and personal data both private and secure while needed, and destroyed when it is no longer needed.
• Knowledge of all applicable laws and compliance frameworks to enforce compliance.

Remark: The Bank requires the verification of criminal records prior consideration for employment to ensure secured and maintain standards of the organization