Implement, monitor, maintain, and continuously improve the Bank's Information Security Program and Policies, in line with legal, regulatory, and compliance requirements and industry standards (e.g. ISO 27001, NIST, and PCI DSS).
Establish and drive security best practice and governance across all third-party risk management activities of the Bank.
Oversee the implementation of the Bank-wide security education program and ensure that employees of the organization and, where relevant, contractors and third-party users are receiving appropriate information security awareness training and regular updates in organizational policies and procedures relevant to their job function.
Provide oversight on the management and implementation of projects and operational activities from inception to completion to ensure tasks are within budget and resource, adhere to high quality standards, support internal and external client requirements, and meet the intended benefits.
Qualifications
At least 5 years solid experience in information security governance;
Knowledge of information security principles and standards (ISO 27001:2013, PCI DSS v. 3.2, NIST)
