DemirBank OJSC is seeking an Information Security Manager for its Risk Department

Having already long history and wide experience DemirBank is one of leading banks in the country. The bank was established on 6th of October 1989 as one of the first commercial bank in the country. As an employer, the Bank is investing in its human resources through contemporary trainings, providing excellent working atmosphere and building staff capacity in order to plant the seeds of more successful future. DemirBank offers world of career opportunities with competitive compensation and incredible benefits. Joining DemirBank you will also find more ways to advance your skills in a supportive environment, working alongside a diverse and talented team that thrives on creativity and collaboration.

Roles & Responsibilities

• Leads information risk management activities including IT security risk assessment, risk management, and manages the remediation of identified gaps and issues;
• Identifies measurements of program effectiveness and provides analysis to senior management;
• Develops processes and acquires tools for evaluating information security risk, and integrates those tools within the overall information security risk management process;
• Develops enhanced information security training, education, and awareness program including the development of training tools, tips, alerts, and training schedules;
• Manages and matures the information technology and information security governance program;
• Recommends, maintains, develops, and revises corporate wide information security, information technology, and identity theft program policies and procedures;
• Provides guidance and determines which components need to be in place for the information technology, information security and identity theft programs;
• Acts as a subject matter expert in relation to various technologies, IT Risk, control and security issues;
• Develops and manages ongoing business partnerships and communication for information security and identity theft program implementation, including regular activity reporting, with the user community;
• Interprets regulatory requirements and corporate policies, communicate these clearly alongside current status, and provide oversight of compliance as required;
• Builds and manages a culture focused on the pro-active awareness and improvement of the risk environment;
• Performs other miscellaneous duties as assigned.

Qualification and requirements:

• At least 3 year experience in IT risk field;
• Professional background in risk management in financial services is an added advantage;
• Tenacious individual with strong communication, problem-solving, relationship and consensus-building skills and a high degree of personal initiative and attention to detail;
• Technical consciousness;
• Well-developed verbal and written communication skills in both English and Azeri;
• High level of loyalty towards the employer;
• Experience in managing information technology/security projects to drive business process improvements required;
• Ability to drive action within the business units to ensure appropriate risk management;
• Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), and/or Certified Information Security Auditor (CISA) preferred.

DemirBank works in a competitive environment and seeks dynamic candidates who enjoy taking initiative and improving performance. Candidates are required to submit CVs/Application Forms until August 22, 2017. via e-mail at [email protected].

Please indicate the name of the position you are applying for in the subject line of the email (Information Security Manager). Otherwise the candidacy will not be considered in the review process of the applications collected.

Please be advised that only shortlisted candidates will be invited to the further stages of the recruitment procedure.