Enable job alerts via email!

Assistant Manager Information Security

Ahli Bank

Muscat

On-site

OMR 18,000 - 24,000

Full time

Yesterday
Be an early applicant

Generate a tailored resume in minutes

Land an interview and earn more. Learn more

Start fresh or import an existing resume

Job summary

Ahli Bank is seeking an Information Security Officer responsible for overseeing the Governance, Risk, and Compliance activities. The position requires expertise in Information Security frameworks and oversight of cybersecurity operations, ensuring compliance with international standards like ISO 27001 and PCI DSS. The ideal candidate will have a Bachelor’s degree and at least 5 years of experience in the field, capable of supporting various operational tasks in a dynamic banking environment.

Qualifications

  • Bachelor’s degree in Computer Science, Information Security, or related field.
  • Minimum 5 years of relevant experience in Information Security implementation, Governance, or Operations.

Responsibilities

  • Support the Information Security Office in implementing and overseeing Governance, Risk, and Compliance activities.
  • Ensure compliance with regulatory frameworks and internal policies.
  • Monitor implementation of the Information Security Framework in accordance with standards.

Skills

Governance
Risk Management
Compliance
Information Security

Education

Bachelor's degree in Computer Science
Bachelor's degree in Information Security

Job description

Summary of the Role
Responsible for supporting the Information Security Office (ISO) in the implementation and oversight of the Bank’s Governance, Risk, and Compliance (GRC) activities, while assisting in security monitoring and operational tasks related to cybersecurity. The role ensures ongoing alignment with regulatory frameworks, international standards (e.g., ISO 27001, PCI DSS), and the Bank’s internal security policies and procedures.


Key Objectives
Governance, Risk, and Compliance (GRC)
• Monitor implementation of the Information Security Framework in accordance with ISO 27001 and other relevant standards.
• Ensure regular risk assessment is carried out against all third party, outsourced, cloud services and controls are properly applied.
• Assist in preparing, monitoring and submitting MIS reports and key risk indicators (KRIs) related to Information Security.
• Coordinate with internal stakeholders to ensure all change requests are reviewed in accordance with Information Security guidelines.
• Maintain and update records of information security-related policies, procedures, and documentation.
• Ensure completion of all security health checks of ISO tools.

Operational Support
• Oversee access control lists and ensure proper user permissions are in place.
• Ensure Business Continuity (BCM) tools and Information Security solutions are functional at the Disaster Recovery (DR) site.
• Review contracts, annual maintenance agreements, and renewal schedules for security tools and systems.
• Support the audit process by coordinating responses and action plans for Information Security-related findings.
• Participate in security incident investigations and assist in root cause analysis and response documentation.

Awareness & Training
• Organize Information Security awareness programs across the Bank.
• Provide training materials and knowledge-sharing sessions for staff to build security awareness.
• Ensure Training and awareness related to Information security is planned, developed, and delivered to users.

Compliance Monitoring
• Ensure timely submission of deliverables for audit and regulatory compliance.
• Support periodic internal reviews and contribute to the improvement of SOPs.
• Track implementation status of remediation plans for identified vulnerabilities and audit observations.

Other Responsibilities
• Perform additional duties as assigned by the Head of Information Security or Risk Management.
• Maintain version control for Information Security documentation and ensure alignment with approved procedures.

Candidate Specifications:
• Bachelor’s degree in Computer Science, Information Security, or a related field.
• Minimum 5 years of relevant experience in Information Security implementation, Governance, or Operations.
Get your free, confidential resume review.
or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.