Senior Executive, IT Security

Job Purpose Summary
The job of IT Security Executive consists of maintaining and enhancing the overall IT security architecture of the Bank by managing and monitoring network security, tools and system security. To implement the security policy to ensure the compliance of Group IT Security Policy and SBV requirements.
Additional responsibilities of the role include IT risk management, audit preparations and other "Protect the Bank" activities.
Key Responsibilities and Accountabilities
Functional (job responsibilities)
• Participates in projects and provide advice on security and compliance requirement based on basic security control checklists
• Performs self assessment on regular basis and highlight any weaknesses
• Monitors phishing attempts and escalate to bring down the scam sites
• Coordinates investigation related to network security incidents and follow-up on action plan till resolution.
• Coordinates Network Security Review and Penetration Test exercise
* Security Administration:
• User IDs administration for system, network and application
• Security software licensing, monitoring and renewal
• Evaluates, notify and monitor security patches
• Reviews new project related to system, network, application and database security requirement
• Response to audit findings and risks findings
• Implement policies and procedures
• Updates and monitors Anti Virus definition
• Performs Self Assessment on system security
• Coordinates/conducts security awareness exercise
* IT Risk:
• Overall management of IT risks
• Ownership of IT risk register
• Conduct IT Security awareness training
• IT Security and compliance
* IT Risk mitigation plans and reporting
* Managerial (team/group responsibilities)
- Notifies management on potential security problems which are not adequately addressed by existing control mechanisms
- Escalate potential security issues to Group IT Security for further remediation or recommendation
Organizational (organizational responsibilities)