Senior Information Security
Banque Misr
Total years of experience :16 years, 9 Months
Assesses information risk and facilitates remediation of identified vulnerabilities with the Bank network, systems and applications. Reports on findings and recommendations for corrective action. Performs vulnerability assessments as assigned utilizing IT security tools and methodologies. Performs assessments of the IT security/risk posture within the IT network, systems and software applications, in addition to assessments within the Vendor Management Program. Identifies opportunities to reduce risk and documents remediation options regarding acceptance or mitigation of risk scenarios. Facilitates and monitors performance of risk remediation tasks, changes related to risk mitigation & reports on findings. Maintains oversight of IT and vendors regarding the security maintenance of their systems and applications. Provides weekly project status reports, including outstanding issues. The IT Security/Risk Analyst assists in all IT audits, IT risk assessments and regulatory compliance Key responsibilities Management of IT security and IT risk (e.g., data systems, network and/or web) across the enterprise. Address questions from internal and external audits and examinations. Develop policies, procedures, and standards that meet existing and newly developed policy and regulatory requirements according to PCI-DSS Facilitate IT security/risk training curriculum. Serve as project manager/lead within IT security projects. Promote awareness of applicable regulatory standards, upstream risks and industry best practices across the Bank. Technical Tasks. Monitoring Security logs and Alerts. Create, review, and maintain correlation rules for all platforms monitored by SIEM solutions. Administer and maintain Data loss Prevention System. Administer and maintain Control compliance suite systems (IT GRC).. Approve authorization production changes, transports, and Change Management. Vulnerability Management Windows Configuration Assessment. Follow-Up and respond to External Audit reports like CBE, KPMG and CAO.