WhatsApp Channel

Unit Head IS Compliance / Governance & IT Security Awareness at MCB Islamic Bank

Full Time Lahore E-Commerce | Software Developer | Back-end Developer | Front - End Developer | Game Developers | Oracle | QA | IT - ๐ˆ๐“ | ๐๐ž๐ญ๐ฐ๐จ๐ซ๐ค | ๐’๐ฒ๐ฌ๐ญ๐ž๐ฆ | ๐‚๐ฅ๐จ๐ฎ๐ | ๐ƒ๐ž๐ฏ๐Ž๐ฉ๐ฌ | ๐ƒ๐๐€ | ๐•๐ข๐ซ๐ญ๐ฎ๐š๐ฅ๐ข๐ณ๐š๐ญ๐ข๐จ๐ง | ๐๐ž๐ญ๐ฐ๐จ๐ซ๐ค ๐€๐ซ๐œ๐ก๐ข๐ญ๐ž๐œ๐ญ | ๐•๐Ž๐ˆ๐

Weโ€™re Hiring!

MCB Islamic Bank is inviting applications for the position of โ€œUnit Head IS Compliance / Governance & IT Security Awarenessโ€.

Location : Lahore

Education : Bachelors or Masterโ€™s degree in Computer Science, Information Security or a related field.

Experience & Competenciesย 

โžก๏ธ Minimum 5-8 years of progressive experience in Information Security Governance, Risk & Compliance with at least 2 years in a leadership or supervisory role within banking or financial institution.

โžก๏ธ Strong background in risk assessment methodologies, compliance reporting, and regulatory liaison.

โžก๏ธ Excellent leadership, analytical, and problem-solving skills, with the ability to engage with senior stakeholders, regulators, and auditors.

โžก๏ธ Effective communication and presentation skills, with the ability to translate complex technical and regulatory requirements into actionable insights.

โžก๏ธ Professional certifications such as CISM, CISSP, CRISC, or ISO 27001 Lead Implementer / Lead Auditor (required).

โžก๏ธ Demonstrated expertise in ISO 27001 ISMS implementation, PCI DSS compliance, and SBP regulatory frameworks related to information security and risk management.

Job role & Responsibilitiesย 

โžก๏ธ Lead the Information Security Governance, Risk & Compliance (GRC) unit to ensure effective implementation of the bankโ€™s ISMS and regulatory compliance programs.

โžก๏ธ Develop, implement, and maintain cybersecurity policies, standards, and procedures aligned with ISO 27001, SBP IT Governance & Risk Management Framework, SBP Cybersecurity Framework, and PCI DSS.

โžก๏ธ Ensure continuous compliance with SBP regulatory requirements, PCI DSS controls, and other applicable security standards.

โžก๏ธ Maintain the Information Security Risk Register and prepare periodic risk dashboards and reports for the Department Head โ€“ IS GRC and CISO.

โžก๏ธ Lead incident post-analysis and ensure lessons learned are incorporated into governance and control enhancements.

โžก๏ธ Collaborate with IT, Risk, Compliance, and Business units to ensure alignment of GRC activities and enterprise-wide risk governance.

โžก๏ธ Supervise and mentor team members within the IS GRC unit, fostering a culture of accountability, compliance, and continuous improvement.

โžก๏ธ Engage with external stakeholders, including auditors, regulators, and business partners, to address compliance requirements and maintain positive relationships.

โžก๏ธ Developing and delivering cybersecurity training programs for employees to raise awareness about cybersecurity best practices and promote a culture of security within the organization.

โžก๏ธ Work with IT and security teams to ensure compliance with applicable information security standards and regulations, such as ISO 27001, NIST, GDPR, etc.

 

 

Apply for this job
Share this job