Job Description
The CIB Egypt is currently recruiting for the role of Information Security Analyst
To support the Information Security Analysis area to implement and follow the developed security risk assessment framework and methodology. This is achieved through conducting security risk assessments for the different business initiatives and projects by evaluating the threats and vulnerabilities, the level of current and residual risks against the set of security policies and guidelines to identify gaps and set the necessary security requirements and controls across different practices within the organization. Ensure the security requirements and measures are considered throughout the secure software development and acquisition life cycle of the different IT/Business Projects’ implementations, including the necessary security architecture and design assessments.
Duties and Responsibilities
Your main responsibilities in this role include the following:
Follow the security risk assessment methodology to assess the different business initiatives and projects.
Perform security risk assessments to align with the bank’s security policies and guidelines.
Validate and review the business requirements and ensure the relevant security measures are catered for throughout the different phases of the software development and acquisition lifecycle and the demand management process including security architecture and design assessments.
Coordinate with the relevant IT and Business teams to ensure the proper management of test data during development and test phases.
Assist in updating the different Security KRIs and RCSA exercise to maintain a repository of the identified risks and develop an action plan to mitigate those risks.
Maintain the security risk log and file the necessary risk acceptances or corrective action plans.
Participate in the bank-wide risk assessment and business impact analysis exercise to prioritize and classify critical business processes and supporting infrastructure from availability, confidentiality and integrity point of view.
Conduct security risk assessment for the identified vulnerabilities/issues resulting from the Vulnerability and Patch Management program or the different security third party/internal tests and scans to assess the severity of the security vulnerabilities, according to other temporal and environmental metrics.
Liaise with IT Security and Identity & Access Management teams to ensure the proper enforcement of the security policies and effective utilization of the security controls in alignment with business/security strategy and requirements.
Support the implementation of the strategic security projects to ensure proper alignment with the set security strategy and roadmap.
Job Requirements
Bachelor’s degree of Engineering, Computer Science or equivalent
Minimum 2 - 4 years of work experience in Information Security, IT Security or IT Audit
Good knowledge about ISMS implementation and Security Risk assessments
Recommended Certifications
CISSP
Good command of English and Arabic languages
Good Time Management and Analytical skills
Good communication skills
Job Details
Company: Commercial International Bank - CIB
Employment Type: Full-time
Job Location: Smart Village, Egypt
