Job Summary:
Assist the Division Head in developing strategies, tactical plans and programs for the establishment and maintenance of the Bank’s information security governance framework. Formulate and recommend information security policies and procedures to meet the bank’s information security objectives and ensure effective implementation. Perform security data analytics to ensure Information Security Governance achieve its objectives, information security risk is managed at Bank acceptable levels, security systems functions effectively and efficiently as well as for management reporting. Manage department resources and performance.
Specific Duties & Responsibilities:
- Assist the Division Head in finalizing the Information Security Management and Governance tactical plans and programs.
- Manage the formulation, recommendation and review of information security policies, standards, guidelines, procedures and internal ISD procedures to meet the bank’s information security objectives.
- Identifies information security policy gaps and develops/assists in policy, standard, guidelines and procedures documentation.
- Leads the annual budget preparation, monitoring and managing the resources, budget and expenses.
- Establishes and manages the implementation of an Information Security Advocacy, Awareness and Training program to include the latest information security threats, issues, best practices, methodologies, standards and advisories.
- Establish the security analytics practice to analyze and consolidate risk data and security tools performance for monitoring and managing the information security risk exposure at Bank acceptable levels.
- Develops and manages the implementation of the security metric management program to improve various information security processes.
- Manages the accurate and timely reporting of information security risks and metrics to management and appropriate stakeholders.
- Works with other ISD Departments to ensure closure of audit and compliance exceptions
- Liaises with other units of the Bank on their information security governance, risk and compliance related duties, responsibilities and practices.
- Monitor, manage compliance to ISD applicable BSP regulations and consolidate ISD response to BSP compliance and reportorial requirements.
- Proactively works with the Information Security Division Head in implementing programs for the continuous improvement of the bank’s information security plans and strategies.
- Manages utilization of resources within his/her department and performance of department officers and staff.
- Performs other information security related duties and responsibilities as directed by the Head of the Information Security Division.
[Not translated in selected language]