To establish and maintain the enterprise information security strategy towards the adequate protection of the Bank's information assets and strategic alignment of cybersecurity framework with overall business objectives.

.

• Conduct comprehensive information security risk assessments of technology and digital assets to ensure prompt identification of security risks and implementation of risk management & mitigation plans.
• Lead the design of enterprise security systems to protect information assets against risk of unauthorized access, misuse, loss, operational discontinuity, and damage.
• Develop and Implement Information Security Policies, Standards, Procedures and Guidelines in line with best practice. - Develop comprehensive information security due diligence checklist for third party risk assessment.
• Oversee the development and implementation of a comprehensive information security awareness plan for the bank.
• Engage external security consultants to conduct independent vulnerability assessment and penetration testing for the bank.
• Manage the activities of the Information Security group to ensure full support, direction and compliance with departmental and organizational expectations and objectives. 
• Collaborate on IT and Digital projects to address security issues throughout the project lifecycle.
• Perform quarterly vulnerability assessment of the bank’s network for proactive identification and remediation of security vulnerabilities.
• Ensure that the bank achieves and maintains compliance to ISO 27001 and PCI DSS certifications.

BSc in Computer Science or related discipline with appropriate information security professional certifications e.g., CCISO, CISM, CEH, CISA, ISO 27001 LI, ISO 22301 LI