About the Role
The Cyber Security Officer is responsible for implementing robust cyber security controls, proactively managing cyber risks, and ensuring compliance with MMA regulations, ISO 27001, and global banking security standards.
This position plays a key role in safeguarding customer data, critical systems, and digital banking platforms.
Key Responsibilities
• Implement and maintain the Bank’s Information Security framework, policies, and controls in line with regulatory requirements and industry standards.
• EMonitor security events using SIEM/SOC tools, detect and respond to incidents, and conduct root cause analysis.
• Manage user access, enforce least privilege and segregation of duties, and monitor privileged activities.
• Conduct vulnerability assessments and penetration testing, track remediation, and monitor emerging cyber threats.
• Oversee security technologies including firewall, WAF, IDS/IPS, EDR, and DLP, ensuring secure configurations and patching.
• Develop and maintain Incident Response and Disaster Recovery plans, and conduct simulations and drills.
• Assess and monitor vendor security posture, including compliance with contractual and regulatory requirements.
• Deliver cyber security awareness programs, including phishing simulations, to promote a strong security culture.
• Maintain security documentation, risk registers, and prepare reports for management, committees, and regulators.
Requirements
• Bachelor’s degree in IT, Cyber Security, or related field
• Certifications such as CISSP, CISM, CEH, ISO 27001 Lead Implementer/Auditor preferred
• Minimum 5 years in cyber security or information security
• Experience in banking or regulated environments preferred
• Exposure to audits and regulatory compliance is an advantage
• Strong knowledge of ISO 27001, NIST, CIS Controls