ICT Security Officer
Posted:28/02/2019 -Closing Date:28/03/2019
ICT Security Officer is responsible for establishes, manages and administers Bank's ICT security policy and procedures to ensure preventive and recovery strategies are in place, and minimize the risk of internal and external security threats.
- Head Office, Phnom Penh (1 post).
Duties and Responsibilities
- Design, implementation, documentation and publishing the ICT security policies within bank.
- Advise on ICT security issues and make recommendations for action.
- Monitor and manage significant security issues/breaches, taking remedial action where possible
- Ensure that all new implementations of solutions are compliant with the ICT security requirements; ensuring best practice is always followed.
- Monitor and ensure that appropriate levels of security exist in the following ICT areas but not limit to PC’s, client server, LAN, WAN, broadband networks, web environments, firewalls, IP telephony, disaster recovery, financial … etc.
- Ensure the confidentiality and integrity of data at rest or while in transit between end point devices, servers and other systems including any data at rest on hosted, third party systems where ICT have been involved.
- Arrange and manage the design and execution of vulnerability assessments, penetration tests and security audits.
- Prioritize ICT risks and manage projects based on severity of risk and noncompliance.
- Ensure compliance with appropriate IT Policies.
- Investigate, respond and report on ICT security incidents.
- Perform other tasks to further ICT security that can be assigned by line manager.
Skills and Specifications
- Bachelor degree of IT, Computer Science or other related field.
- 2 years experience implementing and maintaining the security policies for Cisco and/or other firewalls devices.
- Holding any ICT Network (CCNA/ CCNP) related training certification is plus.
- Experienced in monitoring tools such as Solarwinds, Cacti, Syslog.
- Have a good understanding of networking and routing protocols, including TCP/IP.
- Proven experience in Unix / Linux system administration.
- Knowledge of Oracle, Microsoft SQL Server and MySql database.
- Knowledge of IT auditing processes.
- Good in analytical skills.
- Good verbal and written English skills to present to senior management.
How to apply
Interested and qualified applicants should submit only their updated covering letter and CV stating the position you apply for with current photo (4x6) via the Application form below.