Sunday , April 14 2024


Website CIB

Job Description:

To support the Information Security Analysis area to implement and follow the developed security risk assessment framework and methodology. This is achieved through conducting security risk assessments for the different business initiatives and projects by evaluating the threats and vulnerabilities, the level of current and residual risks against the set of security policies and guidelines to identify gaps and set the necessary security requirements and controls across different practices within the organization. Ensure the security requirements and measures are considered throughout the secure software development and acquisition life cycle of the different IT/Business Projects’ implementations, including the necessary security architecture and design assessments.

Job Responsibilities:

  •  Perform security risk assessments to align with the bank’s security policies and guidelines.
  • Maintain the security risk log and file the necessary risk acceptances or corrective action plans.
  •  Validate and review the business requirements and ensure the relevant security measures are catered for throughout the different phases of the
  • software development and acquisition lifecycle and the demand management process including security architecture and design assessments.
  •  Comply with all relevant CBE regulations, banking laws, AML regulations and internal CIB policies and code of conduct in order to maintain CIB’s sound legal position and mitigate any potential risks.
  • Follow the security risk assessment methodology to assess the different business initiatives and projects.
  • Participate in the bank-wide risk assessment and business impact analysis exercise to prioritize and classify critical business processes and supporting infrastructure from availability, confidentiality and integrity point of view.
  • Liaise with IT Security and Identity & Access Management teams to ensure the proper enforcement of the security policies and effective utilization of the security controls in alignment with business/security strategy and requirements.
  • Follow the day-to-day operations related to own jobs in the Information Security department to ensure continuity of work
  • Conduct security risk assessment for the identified vulnerabilities/issues resulting from the Vulnerability and Patch Management program or the different security third party/internal tests and scans to assess the severity of the security vulnerabilities, according to other temporal and environmental metrics.
  • Follow all relevant department policies, processes, standard operating procedures and instructions so that work is carried out in a controlled and consistent manner.
  • Coordinate with the relevant IT and Business teams to ensure the proper management of test data during development and test phases.

Job Requirements:

  • Good knowledge about ISMS implementation and Security Risk assessments
  •  Good communication skills
  • Good Time Management and Analytical skills
  • Good command of English and Arabic languages

Qualification & Experience:

  • Minimum 2 – 4 years of work experience in Information Security, IT Security or IT Audit
  • Bachelor’s degree of Engineering, Computer Science or equivalent
  • Recommended Certifications

Job Details:

Company: CIB

Vacancy Type:  Full Time

Job Location: Giza, Egypt

Application Deadline: N/A

Apply Here