Careers

Assistant Director (OG-2) - Cyber Operations & Response

Key responsibilities of the incumbent will include, but not limited to, the following:

  • Continuously monitor security alerts and events from various sources, including Security Information and Event Management (SIEM), File Integrity Monitoring (FIM), security controls, threat intelligence platforms and systems.
  • Implement and fine-tune detection rules to improve the accuracy of alerts and minimize false positives.
  • Analyse threat intelligence feeds to identify emerging threats and vulnerabilities that may impact the Bank’s IT assets.
  • Maintain documentation related to security tools, including configuration settings, usage guidelines, and maintenance procedures.
  • Manage and administer security tools and technologies, ensuring optimal configuration and performance.
  • Regularly review and assess SOC processes, identifying areas for improvement and efficiency gains.
  • Collaborate with vendors, consultants, and service providers to ensure the delivery of security services and tools aligns with the Bank’s requirements.
  • Develop and maintain incident response plans and procedures, ensuring they are regularly tested and updated.
  • Maintain the Cyber Incident Management Framework, perform regular reviews, arrange management approvals, and conduct training for relevant internal stakeholders.
  • Conduct simulations of response activities and tabletop exercises to enhance preparedness and resilience of the Bank against cybersecurity incidents.
  • Coordinate the response to security incidents, ensuring timely containment, eradication, and recovery efforts.
  • Conduct pre-incident preparation exercises and post-incident reviews to identify lessons learned and improve future response efforts.
  • Prepare and present regular reports on security incidents, trends, and the overall security posture to management.
  • Conduct initial triage of security incidents to assess severity and determine necessary escalation and coordination with external incident response service providers.
  • Perform other relevant tasks as assigned by the management.
Loading……

Deputy Director (OG-3) - IS Governance

Key responsibilities of the incumbent will include, but not limited to, the following:

  • Contribute to the development of the Bank’s cybersecurity strategy, aligning it with Vision-2028’s business objectives to enhance the Bank’s cybersecurity resilience.
  • Review, update, and maintain internal cybersecurity policies, frameworks, and standards to ensure coverage of applicable legal requirements and industry best practices, while ensuring relevance, accuracy, and effectiveness of cybersecurity artefacts.
  • Respond to queries regarding the interpretation of governance artefacts, providing clarity and actionable guidance to IT, Audit, and business departments.
  • Conduct gap assessments and assist with compliance and audit processes to ensure adherence to internal cybersecurity policies, standards, and best practices.
  • Manage exceptions to cybersecurity requirements, prepare approval cases, and act as a subject matter expert to provide feedback.
  • Provide support during the implementation phase of policies and evaluate the impact of recommended changes.
  • Oversee the classification of the Bank’s information assets to enhance data protection, selection of appropriate risk controls, and improved risk management strategies.
  • Prepare the department’s annual business plan, including budget preparation, with facilitation and coordination with internal stakeholders.
  • Manage strategy execution, business plan activities, and budget tracking and reporting.
  • Contribute to the design, development, and implementation of cybersecurity awareness and training programs to foster a strong culture of security within the Bank.
  • Conduct bank-wide cybersecurity phishing simulation campaigns on a regular basis, including management and administration of the simulation system.
  • Facilitate cross-departmental discussions to assess the feasibility and impact of new cybersecurity policies, balancing IT operational availability, business needs, and required security protections.
  • Perform other relevant tasks as assigned by the management.
Loading……

Compensation

Competitive compensation package, as per State Bank rules.

Joint Director (OG-4) - Information Security Governance Division

The incumbent will be responsible to develop, review and regularly update Bank’s Cyber Security and Data Protection Policies, Frameworks, Standards and associated SOPs and ensure implementation and compliance.
Key responsibilities of the incumbent will include:

  • Lead the development of the Cyber Security Strategy and ensure its timely implementation.
  • Develop a Cyber Security maturity model in line with international standards and measure the Bank’s security posture against it for continuous improvement.
  • Review and update IT Security Policies, Cyber Security Framework, and standards on a regular basis in coordination with all relevant stakeholders.
  • Review and update the Data and System Classification Policy and Framework, coordinating with stakeholders to ensure effective implementation and continuous monitoring through tools and processes.
  • Plan, develop, and execute the Bank-wide Cyber Security Awareness Program, including regular review and update of training and awareness content for both classroom and online delivery, and report program status to management.
  • Ensure departmental compliance obligations are met by maintaining coordination and submitting timely updates on compliance items related to audit observations and decisions of the Board and Management Committees.
  • Coordinate with IT and other stakeholders for the implementation of cybersecurity strategic projects, monitoring progress and reporting regularly to the CISO.
  • Ensure the department’s Business Plan is developed and submitted on time, including quarterly status reporting.
  • Supervise the execution of Bank-wide simulated phishing campaigns on a regular basis and report relevant statistics with recommendations to management.
  • Coordinate with stakeholders to ensure necessary actions are taken on security advisories received from external sources and manage departmental communications and broadcasts.
  • Manage coordination with internal training departments, including annual training needs assessments, identification of skill gaps, and communication of training nominations.
  • Collaborate with the Human Resource Department (HRD) on matters related to job descriptions, manpower planning, recruitment, and performance management.
  • Perform any other tasks as assigned by Senior Management.
Loading……

Compensation

Competitive compensation package, as per State Bank rules.

Application Procedure

Interested candidates meeting the above-stated eligibility criteria may submit their applications online on careers Last date of application submission is February 17, 2025. Applications, which are not in accordance with defined requirements in the advertisement, will not be entertained. Only shortlisted candidates will be contacted.

We are an Equal Opportunity Employer. Females, candidates from minorities, transgender persons and persons with disability are encouraged to apply.

Any candidate who misinforms, attempts to influence the recruitment process in any manner, tries to obtain support for his/her candidature by inappropriate means or tampers with evidence of his/her age, educational and other certificates, shall be disqualified from the current and any future recruitment process at the Bank; even if the candidate is otherwise eligible.