Purpose of Role:

Key Accountabilities:

• Creates job aids, exercises, and simulations in collaboration with the Manager and Talent Acquisition & Development team to increase awareness of the bank’s information security incident and problem management processes within the Bank and ensure the practice is embedded across the enterprise to protect the Bank’s information assets.
• Assists with coordinated activities / actions required to respond to data breaches and pre-emptive cybersecurity, collaborating with key stakeholders responsible for incident management across the Bank to ensure breaches are contained, the Bank’s information assets are protected, and regulatory compliance is maintained.
• Collates relevant breach evidence in accordance with established protocols and good practice to ensure records are maintained and that the Bank’s standards, processes and policies are aligned to mitigate against breaches in the future.
• Supports the implementation and maintenance of all security monitoring and compliance tools through the updating of databases, writing / updating procedures, checking understanding and adherence, implementing various tools, working with vendors, and assisting with project management activities         to ensure the Bank’s approaches are update, accurate and aligned to best practice.
• Monitors the Bank’s network and intrusion detection analysis using various computer network defence (CND) tools along with the alerts from sensors to ensure the protection of the Bank’s information assets via the appropriate response based on process and appropriate escalations where required.
• Keeps  abreast of financial industry regulations and practices related to network security and cyber incidents across the region to facilitate research of emerging threats and vulnerabilities and ensure gaps are identified and mitigating actions implemented to ensure the Bank is protected from.
• Collects & evaluates   information required to investigate and remediate alerts received from various sources to ensure that the Bank’s assets are protected, and any breaches are speedily detected and contained. 
• Supports incident responses, including mitigating actions to contain activity and facilitates forensics analysis as necessary whilst ensuring formal documentation of incident reports to ensure that the Bank’s assets are protected, and any breaches are speedily detected and contained.   g questionnaires, proposing EWL strategies, portfolio level reporting, etc.
• Assists the team to maintain and grow strong relationships with existing clients with a view to protecting the Bank’s existing client base, maximising revenue generation from these relationships.
• Keeps updated on products and processes and any changes to ensure effective and efficient service to clients. Keeps abreast of industry-related information to opportunity spot and deliver value-add content for clients.

Critical Knowledge/Experience Required:

• At least two years’ experience in information security, primarily in information security incident & problem management
• At least one years’ experience in another IT function, e.g IT audit
• At least one years’ experience with regulatory compliance and information security management frameworks, e.g., IS027000, COBIT, National Institute of Science and Technology (NIST), etc.
• Practical experience with security incident management tools
• Current knowledge of technologies and technology-based solutions dealing with information / cyber security incidents.
• Understanding of information security incident response practices, computer forensics, current cybersecurity threats to the financial services
• Knowledge of tools and techniques for effective use of a broad range of factors, assumptions, frameworks and perspectives when solving problems.
• Knowledge of NIST, Centre for Internet Security (CIS) and IT Controls.
• Undergraduate degree in Computer Science, Information Security, or a related field and one or more of the following or related professional certifications:
• GIAC Certified Incident Handler (GCIH)
• GIAC Certified Intrusion Analyst (GCIA)
• GIAC Certified Forensic Analyst (GCFA)
• GIAC Certified Forensic Examiner (GCFE)
• Certified Information Systems Security Professional (CISSP)
• Certified Information Systems Auditor (CISA)