JC733-Administrator Information Technology Security Control

• This role administers security controls management systems and appliances, functioning, and managing all the IT security applications. Manages the process of identifying and assessing the Security affecting information technology, organizes appropriate Security reporting. Ensures the bank is in substantial compliance with its internal operating policies and any external regulatory or contractual requirement
  Establishes security and compliance requirements framework that facilitates
  ongoing compliance with internal BSF IS policies and procedures, contractual
  and regulatory requirements


• Established security and compliance requirements
  Administers of security controls management systems and appliances,
  functioning, and managing all the IT security applications in accordance to
  BSF polices


• Satisfactory security controls management systems
  Supports the Information Technology Security Control Manager in regards to
  participate in process/procedures development and enhancements exercises
  Performs configuration and management of BSF security controls management
  tools
  Adheres to target Service Level Agreements, audit compliance, and management
  defined performance metrics


• Followed SLA for defined performance metrics
  Monitors all aspects of BSF security controls to ensure business continuity
  for the assigned security control while adhering to BSF policies


• Satisfactory monitoring of security controls processes

Responds to operational incidents escalated to the security controls area

• Escalated incidents resolved
  Responds to service requests on any security controls systems as per defined
  processes and workflows


• Service requests on security controls systems responded


• Managing security tools and support it, such as administration, health check, upgrades


• Satisfactory security tools management


• Co-ordinates with internal audit and compliance group on improvement on information technology controls and assists in addressing and closing audit reports and findings


• Audit reports and findings closed
  Work closely with Corporate Information Security Division (CISD) as Business
  Line. In regard to IT Security Controls administration and management.

ا لمهارات

• Bachelor degree in computer engineering, science or equivalent


• ‎2-‎3 years of experience in IT Security Controls administration


• 
  

  Relevant Certifications preferred: Certified Ethical Hacker (CEH), Certified Network Defender (CND), CCNA Security, CCNP Security, Security+, CySA+

  
  


• 
  

  Established experience in administering a wide range of security controls administration systems such as anti-virus systems, Anti-Malware appliances, Data Leakage Prevention, Database Monitoring, Web applications firewalls, classification solutions, SIEM administration, Proxy, Email Gateway security, Privilege Access Management, Intrusion Prevention System, Mobile Device Management, Network Admission Control…etc.

  
  


• Knowledge of a wide range of security controls, enterprise information security policies


• Knowledge of security controls principles, technologies, administration, workflows and technologies


• Experience in providing dashboards and other analytical information concerning controls security KPIs


• Established experience and knowledge of IT Security requirements as per banking local (SAMA's and NCA's) & international regulations in this regard


• Knowledge of controls for compliance with Payment Card Industry Data Security Standards (PCI DSS)


• Established knowledge of IT environments and technologies and their IT Security requirements


• Established knowledge of a wide range of security appliances and technologies and latest trends in this regards (IPS, IDS, Firewalls and etc.) as well as identity management systems and concepts


• Demonstrates an analytical and systematic approach to problem solving.


• Good problem solving and analytical skills


• Good presentation and interpersonal skills


• Good written and verbal communication skills in English and Arabic