Telenor Microfinance Bank Ltd Jobs July 2024

Telenor Microfinance Bank Ltd Jobs July 2024

Position: Head of Infrastructure Security

Job Location: Islamabad

Position Summary: The Head of Infrastructure Security is responsible for overseeing and managing the security of the company’s IT infrastructure. This role involves developing and coordinating implementation of the security policies, procedures, and practices to protect our systems from threats and vulnerabilities. The successful candidate will lead a team of security professionals, collaborate with technology and other departments, and ensure compliance with regulatory requirements.

DUTIES & RESPONSIBILITIES:

• Develop and implement comprehensive infrastructure security strategies, policies, and procedures.
• Lead and manage a team of infrastructure security professionals, providing guidance, mentoring, and support.
• Support risk assessments and vulnerability analyses to identify potential threats and weaknesses in the infrastructure.
• Design and implement security measures to protect against unauthorized access, data breaches, and other security incidents.
• Monitor and assist in responding to security incidents and breaches, conducting thorough investigations and implementing corrective actions.
• Collaborate with IT and other departments to ensure security is integrated into all aspects of the company’s operations.
• Oversee the management and maintenance of asset inventories, ensuring accurate tracking and reporting of all IT assets.
• Coordinate security projects with the IT department, ensuring timely and effective implementation of security solutions.
• Stay up-to-date with the latest security trends, technologies, and threats, and recommend improvements to existing security measures.
• Ensure compliance with relevant regulatory requirements, industry standards, and best practices.
• Develop and deliver security training and awareness programs for employees.
• Prepare and present regular reports on the status of infrastructure security to senior management.
• Audit and Review network security controls including but not limited to NexGen Firewalls, Web Application Firewall, Cloud Setups, DNS, Network Sandbox, Malware Protection, NAC, IPS, and VPN technologies in line with industrial best practices security architecture, guidelines, and compliance requirements

QUALIFICATION & EXPERIENCE (Essential for the job holder):

• Bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field. Master’s degree preferred.
• At least 8-10 years of experience in information security, with a focus on infrastructure security.
• Proven experience in a leadership or management role within a security function.
• Strong understanding of security frameworks, standards, and best practices (e.g., ISO 27001, NIST, CIS).
• In-depth knowledge of network security, endpoint security, cloud security, and security architecture.
• Experience with security tools and technologies such as firewalls, intrusion detection/prevention systems, SIEM, VPNs, and encryption.
• Excellent analytical, problem-solving, and decision-making skills.
• Strong communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams.
• Relevant certifications such as CCIE, CCNA, CCNP, CEH, or equivalent are highly desirable Apply

Position: Unit Head of CFT Desk

Job Location: Karachi

The primary responsibility of the incumbent is to contribute in formulation, execution and maintenance of Bank’s Counter Terrorism Financing program to manage the TF & PF risks in line with regulatory framework and ensure timely and necessary actions to mitigate TF risk posed through inherent vulnerabilities in the Bank’s customers, Products and services, delivery channels, geographical locations and technological systems and initiate necessary controls evaluations and enhancements.

Key Responsibilities

• To ensure Bank’s compliance with sanctions regimes defined under the UNSC resolutions as required by Security Council resolution 1267 /1373 and proscription of individuals/entities by the Ministry of Interior under relevant sections of Anti-Terrorism Act, 1997.
• To ensure coordination internally/externally and escalate where appropriate to timely block/unblock sanctioned individuals/entities as per directives received from SBP and other LEAs in accordance with applicable laws.
• Timely updation of lists of sanctioned individuals/entities to ensure no activity is performed on branch and branchless banking channels.
• Perform financial Crime Risk Assessment for Money Laundering, Terrorist Financing, Transnational Organized Crimes, Proliferation Financing and Transnational Terrorist Financing.
• Adhoc Reporting to SBP related to provision of information under different sections per law.
• Perform case studies for TF related incidents on a monthly/fortnightly basis and as and when required.
• Conducting outreach and awareness sessions on entity-wide TF risk for employees, customers, vendors and other related parties.
• Conduct timely assessment for identifying linkages to associates of sanctioned individuals and entities.
• To ascertain management for archival of physical documents and record keeping of MIS records.
• Carry out any other task assigned by the Head of Anti-Financial Crimes and Chief Compliance Officer.
• Incumbent shall be responsible to adhere by Telenor Microfinance Bank Behaviours & Values in all aspects of his/her work conduct.
• Ensure that a culture of risk and compliance management is implemented, and institute performance measures tied to individual risk and compliance responsibilities.

Qualifications & Experience:

• Bachelors/ master’s in commerce, Business Administration, Finance etc. ACCA preferably with relevant certification like ACAMS, CFE etc
• 6-7 years of relevant experience
• Communication Skills
• Problem-solving Skills
• Negotiation Skills Apply

Position: Network Security Analyst

Job Location: Islamabad

POSITION SUMMARY:

• To ensure that the network and servers infrastructure is appropriately identified and configured according to Information Security standards/requirements and secure before they are moved to the production environment.
• To coordinate with the network administrators in securing the environment and fixing the identified gaps.
• Conduct periodic reviews and prepare reports on assessments to be shared with the relevant stakeholders.
• To follow-up the relevant IT Infrastructure teams for mitigation of identified risks.

DUTIES & RESPONSIBILITIES:

• Ensure Network Assets identification, prioritization and configuration in line with Information Security requirements prior and subsequent to deployment on production environment
• Develop baseline security documents for the Information Assets in the Network and related Infrastructure and implement the gaps identified
• To periodically review/assess the configuration files and operating systems network devices and vendor supplied patches on network devices and network security appliances.
• Perform vulnerability assessments of all systems as per annual plans of network devices.
• To review the Privileged Accesses and report for security controls implementation.
• To review Infrastructure Asset Inventory and verify integrations with security appliances for log management/monitoring.
• Deploy an effective mechanism to monitor security policy violations and atypical activities on the network.
• To manage and act upon the requests to assess the Business integration requirements, network integrations, remote access and user access, and share the Information Security recommendations.
• To carryout vulnerability scans and/or penetration testing to identify the gaps in the systems. These assessments may be conducted manually or through automated Tool.
• To prepare the reports/presentations to share with the relevant stakeholders for mitigation of the risks.
• To interact with the network administrators on security education program and guide them on Information Security requirements and findings, advise them for fixing the gaps.
• To develop metrics program for secure network and systems configuration and data loss prevention program.
• To participate in Information Security Awareness Program of the bank.

QUALIFICATION & EXPERIENCE (Essential for the job holder)

• Minimum BS (CS or Engineering) from a reputable institute.
• At least 2 years of relevant experience Apply

Telenor Microfinance Bank Ltd Jobs July 2024