Our banking client in Bermuda is seeking a Senior Information Security Officer.
On behalf of our banking client, we are recruiting a highly qualified individual to fulfil the role of Senior Information Security Officer.
The Senior Information Security Officer is responsible for guaranteeing compliant execution of the organisation’s information security standards. The role will consist of multiple internal consulting services, which include, but are not limited to the following: policy maintenance, solution design reviews, standard interpretation, firewall rule-set administration, system deployments and data governance. The role will assess and evaluate the risk posture of the business, providing technical guidance for the overall delivery and support of the network environment. The role will also provide technical services on various platforms such as firewalls, load balancers, authentication systems and network routers/switches. This position reports to the Chief Information Officer.
Role and Responsibilities
In co-ordination with the staff, software vendors, consultants and clients the Senior Information Security Officer will:
Provide deep subject matter expertise, technical advice and programme management
Research and evaluate enterprise network and security products
Participate in the strategic design process to translate security and business requirements into processes and systems
Participate in the enterprise IT risk management process
Assist in the development of IT-related policies, procedures, guidelines and standards
Manage and track the provisioning of the security solutions for the organisation
Design, install and configure network applications in accordance with enterprise standards
Coordinate and lead site installation and vendor deployment activities
Prepare troubleshooting procedures for restoring the network to optimal performance levels, as well as monitor network devices and applications and adequately respond to network security incidents
Provide fault management for the network and support performance management functions
Person Specification
University degree in the field of computer science, information technology, or electronics with 7 - 10 years’ applicable work experience in networking and/or network security
Individual should hold one of the following certifications, Certified Information System Security Professional (CISSP); Certified Information Security Auditor (CISA); Certified Information Security Manager (CISM) or equivalent Information Assurance Certification
The Project Management Professional (PMP) certification would be an asset
Experience working in the banking industry
Excellent understanding of project management principles
Experience operating and leveraging a SEIM
Experience installing and configuring firewalls, IDS/IPS, switches, routers, load balancers and other network devices
Strong understanding of TCP/IP, Routing and L2/L3 Switching
Experience documenting technical standards, guidelines and standard operating procedures (SOPs)
Strong knowledge of IT risk management, IT governance and associated risk and control standards (CoBIT, COSO, ITIL, etc.)
Excellent understanding of project management principles
Demonstrated ability to apply IT in solving business problems
In-depth knowledge of applicable laws and regulations as they relate to IT