Team Member, IT Security / Information SecuritySupport in governance, risk and compliance oversight activities by providing effective challenge to strengthen the management of technology, information, and cyber risks, including risk mitigation programs.
Perform regular risk monitoring and prepare management reports on the organization's risk posture.
Assist in reviewing and enhancing controls for existing banking services in response to emerging technology, information, and cyber risks.
Provide risk advisory services, offering recommendations for risk mitigation strategies related to technology, information, and cyber risks, especially for new banking services, fintech initiatives, outsourcing arrangements, and regulatory or legal requirements.
Support bank-wide initiatives to manage compliance with legal and regulatory requirements (e.g., BNM RMiT, MCIPD, PDPA).
Collaborate with business units to assess cyber and information security risks before launching new applications or services.
Support and enhance the bank-wide technology, information, and cyber risk awareness and training programs.
Stay up to date on emerging technologies, associated risks, industry trends, and regulatory requirements related to technology, information, and cybersecurity.
IT Security Team
Key Responsibilities:
Ensure compliance to IT Security requirements on application, appliances, and network security before the project is implemented and review exceptions for issues related to IT Security Requirements.
Monitor and daily review critical application, appliances, and critical network devices audit logs covering security violations, incidents, and access.
Review security parameter settings/configuration for all applications, servers, databases, and security devices on a periodic basis.
Perform hardening activities for servers, databases, and security devices.
Ensure updates and security patches are deployed for infrastructure and systems.
Qualifications:
Business Continuity and Information Security Management skills
Cybersecurity and Information Security expertise
Experience in Application Security
Strong analytical and problem-solving abilities
Excellent communication and leadership skills
Relevant certifications (e.g., CISSP, CISM) are a plus
Bachelor's or Master's degree in Information Technology or related field#J-18808-Ljbffr