Sr. Inforation Security Officer
Societe Generale Bank Jordan SGBJ
Total des années d'expérience :13 years, 1 Mois
Manage and Implement Cyber security & ISO 27k regulatory requirements in the Company environment
Manage and Implement IT Governance program ( COBIT 5)regulatory requirements in the Company environment
Manage and Develop Business continuity and disaster recovery plan
Develop information security programs, policies and procedures, and successfully executing these programs that meet the bank objectives
Accountable for the development and management of the IS budget.
Ensure management information reports from the IS meetings highlight key risks and action
Create, Implement and enforce Information Security Policies, Procedures, and controls.
Perform planning, implementation and tracking of assigned security projects.
Perform risk assessment for each functional area in Ahli-microfinance company.
Translating the information security requirements into specific security controls for network, application, database, operating systems, etc.
Maintain & Develop ISO 27001 Certification.
Maintain & Develop disaster recovery and Business continuity plan
Participate in Create and develop access privileges manual.
Real Time Monitoring, Detection, Analysis & Response for security events using SEIM & IDS solutions.
Conduct monthly Vulnerability Assessment (VA) against Ahli-microfinance company servers, user PCs and databases.
Identification and reporting of audit issues and recommendations.
Perform auditing on the IT department, including other departments that work along with Information Systems.
Evaluate controls and compliance with internal policies and procedures
Lead and perform a variety of IT audit reviews, including, Applications, Infrastructure, and Systems Development
Partnering with the Financial Audit Team to assist with the approach of testing other IT dependent controls
IT Projects - Security Involvement