Head of IT Security

The role encompasses providing comprehensive support to the Head of ITD and Leadership for IT Security department, by offering clear communication and assistance across all IT departmental functions. Responsibilities include ensuring the alignment of IT operations with business strategies, executing IT Technology Strategies, and forecasting IT resource availability for timely solutions within the approved budget. It involves defining strategies to minimize system changes for enhanced stability, managing IT costs, overseeing vendor relationships, and supervising the tactical aspects of the IT Transformation Program. Additionally, the role extends to the management of IT security, covering areas such as Cyber Security Operations and Other Security Operations Support & Securing Sytem. The incumbent plays a pivotal role in maintaining IT stability by assuring adherence to processes and implementing robust IT security measures throughout the organization.

To ensure initiatives, project and deliverables are utilizing allocated approved OPEX and CAPEX budget prudently and efficiently.

To ensure compliance on procurement process including tender/project award, maintenance renewal activities and payment of invoices.

Manage budgeting, financial control & review services for IT Department.

To advise and assist on IT Technology solution for IT deliverables cost effective manner.

Responsible for IT delivery and execution of innovation initiative for Bank’s IT Security in order to improve productivity and customer experiences towards assisting business user on meeting the business objectives.

Responsible for the continuous support of Bank’s IT operation and digital services on meeting productivity standard and customer satisfaction in assisting towards business user on meeting the business objectives.

Oversees the application technology solution with customer focus in mind.

Define and strategize IT Security deliveries and changes to the systems hence improving the stability of the operation and business environment.

Oversees the Development, update, and maintenance of IT Security Checklist and policy together with other IT teams.

Ensure and advise on the creation and execution of project/RFC work plans/timeline and management of revisions as appropriate to meet changing needs and requirements.

Attend relevant project meetings to manage review of deliverables prepared by team to ensure all project goals have been achieved.

Ensure and advise on technical issues and mitigation/action plan.

Ensure important documents including timeline, requirement, test plan, test scripts and sign offs are complete, current, and stored appropriately.

Advise/manage awareness in order to ensure adherence to IT Security & Infrastructure policy and procedure.

Bachelor’s degree in computer science or equivalent and relevant industry experience.

10 years’ experience in IT security, with 5 years in a management role.

Experience in Cyber Security and IT Vendor Management.

Well-versed in Risk Management in Technology (RMiT) policy.

Demonstrated decision making and leadership skills managing teams.

Computer Office Literacy (MS Office, MS Projects, Visio)

Has worked in a cross functional team.

Expected to have excellent time management skills.

Expected to have excellent oral and written communication skills.

Ability to elicit cooperation from senior management, clients, and other departments.

Self-starter, able to work under own initiative.

Highly organized, highly numerate

Visual thinker – will maintain roadmaps and summarize complex information for senior audiences.

Able to deal with ambiguity, understand stakeholders’ requirements and develop appropriate material. Credible with senior stakeholders

Comfortable with detail but also able to distil the message.

Looking for improvements in current practice.

Experience in managing and developing staff.

Use excellent team facilitation and coordination skills to foster a team spirit.

This position requires very minimal supervision from senior management staff and is expected to be performed completely independently using a high level of decision making on a regular basis.