Monitor the networks for security breaches and investigate a violation when one occurs.
Secure implementations of Prevention tools and systems to mitigate Vulnerabilities such as Ransomware attacks, DOS/DDOS , Phishing Emails etc.
Conduct penetration testing on Applications , Web Services , API's Internally and Externally through the vendors as part of Cybersecurity requirements of CBK, CBB, and CBE
Develop and write security information security policies and procedures documents for compliance and audits with banks.
Hardening process and enforcement to Critical systems of business such as Database , Application servers , Web Servers etc.
Complete PCI DSS Audits , Reports , mitigations and compliance requirements for yearly certifications in KW and BAH.
Reviewing and prioritizing vulnerability scans as per the schedule.
Create Cybersecurity Risk Response Scenario plans and tests.
Provide security awareness and knowledge to all levels to the Client which are related to the risks of common and social engineering attacks like phishing emails, unknown URL’s, Unknown Sender ID, Financial payment requests etc.
Engage in the tools for DLP that eliminate the risk of information leaks or any third- party risks, or any unauthorized access for data leak points and leak credentials.
Perform PT (Grey Box, Black Box) and VA tests External and internal for assessment as part of an overall checklist for cybersecurity risk assessments required for CBB and PCI.
Create overall cyber security risk management framework based on NIST to formulate cyber security strategy and cybersecurity policies based on the regulatory and quality requirements provided by CBB.
Ensure risk management practices and activities with Risk officer and IT Steering Committee with internal and external risk management entities.
Create a cyber incident framework that includes cyber incidents, roles and responsibility charters, and other required governance document to be submitted to CBB as per mandates.
Coordinate with Risk officer , MLRO and incident response team for reporting cyber threats and cyber security risk treatment.
Management of patches through Nessus Pro while keeping security protocols up to date.
Data Classification and DLP Solutions to be implemented.
SIEM deployment and Logging along with proper time synchronization for CBE with log masking.
Establish New robust cybersecurity risk management framework to comprehensively manage the cyber security risk and vulnerabilities.
Also ensure that the cybersecurity risk management framework encompasses, at a minimum, the following components
Cyber security risk management approach, tools and methodology
cyber security risk management framework developed in accordance with the National Institute of Standards and Technology (NIST) Cyber security framework.
Report Mechanism for Senior management, and the boards, to receive comprehensive reports, covering cyber security issues such as the following: Key Risk Indicators/ Key Performance Indicators;Key Risk Indicators/ Key Performance Indicators;Status of staff Information Security awareness; Updates on latest internal or relevant external cyber security incidents;Results from penetration testing exercises.
Controls or solutions to secure, control, manage and monitor privileged access to critical assets, (e.g. Privileged Access Management (PAM);
Controls to secure physical network ports against connection to computers which are unauthorised to connect to the network or which do not meet the minimum-security requirements defined (e.g. Network access control); and (d) Identity and access management controls to limit the exploitation and monitor the use of privileged and non-privileged accounts
SIEM deployment and Logging
Cyber security risk assessment
latest cyberthreats,Incident handling
Tools for DLP ,Perform PT (Grey Box, Black Box),risk management framework based on NIST to formulate cyber security strategy and cybersecurity policies.
Penetration testing on Applications , Web Services , API's Internally and Externally