MCB Islamic Bank Limited Jobs Unit Head Information Security Risk &VAPT
MCB Islamic Bank Limited Jobs Unit Head Information Security Risk &VAPT:
๐ช๐ฒโ๐ฟ๐ฒ ๐๐ถ๐ฟ๐ถ๐ป๐ด!
MCB Islamic Bank is inviting CVs for the position of โ๐จ๐ป๐ถ๐ ๐๐ฒ๐ฎ๐ฑ ๐๐ป๐ณ๐ผ๐ฟ๐บ๐ฎ๐๐ถ๐ผ๐ป ๐ฆ๐ฒ๐ฐ๐๐ฟ๐ถ๐๐ ๐ฅ๐ถ๐๐ธ & ๐ฉ๐๐ฃ๐ง” based in Lahore. Please only apply if you fulfill the criteria mentioned in the job details.
๐๐ผ๐ฐ๐ฎ๐๐ถ๐ผ๐ป
Lahore
๐ค๐๐ฎ๐น๐ถ๐ณ๐ถ๐ฐ๐ฎ๐๐ถ๐ผ๐ป
ยท BA/BS in Computer Science, Information Security, Information Systems, Engineering or related work experience
ยท Certifications: Information Security and risk management certification (e.g. ISACA/CRISC, ISC2 CISSP, CRISC, ISO, OSCP) is desirable but not a must
๐๐ ๐ฝ๐ฒ๐ฟ๐ถ๐ฒ๐ป๐ฐ๐ฒ
ยท Minimum 5 years of experience in Information Technology or Risk Management, out of which a minimum of 3 years with Information Security or Technology Risk Management
ยท Project management skills are nice to have as the activities involve coordination with internal stakeholders and the vendors
๐๐ผ๐ฏ ๐ฅ๐ผ๐น๐ฒ
ยท Strong Knowledge of IT Risk Management Process (ISO 27005, NIST etc.)
ยท Maintain Risk Register
ยท The candidate is expected to perform complex risk assessments of information system
ยท Ability to come up with risk metrics, to enhance our existing procedures is highly desired.
ยท Performs regularly scheduled security assessment, vulnerability scans and determine corrective actions.
ยท Ability to assess controls with respect to cloud applications as well as organization-wide controls
ยท Demonstrable understanding of the concepts of technology controls and information security controls
ยท The resource should be able to effectively communicate with cross-functional teams and external vendors, both written and oral communication is critical
ยท The candidate is required to act as a โGo toโ person for rest of the team.
ยท Execute Vulnerability Assessment / Penetration Testing of systems/networks and identifies where those systems/networks deviate from acceptable configurations or policy.
๐๐ฒ๐๐ถ๐ฟ๐ฒ๐ฑ ๐ฆ๐ธ๐ถ๐น๐น๐
ยท Experience of Static and Dynamic Web Application Testing & source-code review of the application
ยท Having good knowledge of compliance with industry standards such as PCI-DSS, ISO 27000 etc.
ยท Experience supporting the implementation of detective, preventative, and corrective security controls to embed the organizationโs security frameworks, policies, standards, and procedures effectively (ISO, NIST, PCI etc).
ยท Strong communication skills is a must.
๐๐ข๐ช ๐ง๐ข ๐๐ฃ๐ฃ๐๐ฌ
Qualified candidates may send their CVs along with recent salary slip at [email protected] by Jun 20, 2023 with the subject line CV for the position of ๐จ๐ป๐ถ๐ ๐๐ฒ๐ฎ๐ฑ ๐๐ป๐ณ๐ผ๐ฟ๐บ๐ฎ๐๐ถ๐ผ๐ป ๐ฆ๐ฒ๐ฐ๐๐ฟ๐ถ๐๐ ๐ฅ๐ถ๐๐ธ & ๐ฉ๐๐ฃ๐ง.
Note:
- Read the job details in image carefully.
- Apply only if your credentials match the job requirements.
- Candidates matching the job requirements will be considered.
- Only shortlisted candidates will be called for Test / Interview.
- Irrelevant/Incomplete applications will not be entertained.
- Apply before the last date.
- Applications received after last date will not be considered.
How to Apply: For More Details View The Image.