Chief Information Security Officer

We are seeking a motivated and proactive Chief Information Security Officer to assist in developing and maintaining our organization's information security strategy and ensuring that information security policies and procedures are adhered to across all departments. As a Chief Information Security Officer, you will play an integral role in leading, managing and monitoring security risks, protecting sensitive data, and ensuring compliance with applicable security regulations.

Job Responsibilities:

1. Collaborate with the IT & Risk team to help develop and implement the company’s information security strategy. Ensure alignment with organizational goals and industry best practices.
2. Support the identification and assessment of security risks. Help prioritize vulnerabilities and assist in implementing solutions to mitigate risks related to infrastructure, applications, and data.
3. Assist in monitoring security systems and tools to detect potential threats or incidents. Participate in responding to security breaches and incidents, including conducting initial investigations and generating reports.
4. Help maintain and update security policies and procedures to ensure compliance with central bank's policies.
5. Support audits and assessments related to information security.
6. Assist in documenting security processes, incidents, policies, and risk assessments. Prepare and deliver reports on the status of the organization’s security posture to senior leadership.
7. Work closely with IT, development, and operations teams to ensure security is integrated into the systems development life cycle and infrastructure. Provide support in troubleshooting and resolving security-related issues.

Job Requirements:

1. Bachelor’s degree in Information Security, Computer Science, or a related field. Relevant certifications (e.g., CISSP, CISM, CompTIA Security+) are a plus.
2. More than 10 years of experience in information security or IT-related fields.
3. Familiarity with information security principles, risk management, firewalls, encryption, and endpoint protection tools. Basic understanding of security frameworks (e.g., NIST, ISO 27001).
4. Strong ability to identify and assess security threats and vulnerabilities. Analytical mindset for investigating and resolving security incidents.
5. Good written and verbal communication skills. Ability to create clear and concise reports and communicate technical issues to non-technical stakeholders.
6. Ability to work effectively in a team environment and collaborate with cross-functional teams.
7. Strong troubleshooting and problem-solving skills in security-related issues and incidents.