• Responsible for the oversight and governance of technology, information, and cyber risks across the Bank, and to ensure that information and technology assets are adequately protected.  

• Responsible for developing and implementing technology risk management, information security and cyber resilience policies and frameworks across the Bank. 

• Report on and advise Senior Management and the Board regarding prevailing and emerging technology and cyber risks, cyber threat landscape and effectiveness of the Bank’s technology and cyber risk management frameworks. 

• Advise on the development and implementation of the Bank's information and cyber security strategies, which align with the Bank’s goals and objectives and relevant regulatory requirements. 

• Ensure the security of customer data, which includes implementing appropriate control measures, and that these are supported with effective risk oversight and governance. 

• Conduct security risk assessments across the Bank, identify gaps and vulnerabilities, and provide recommendations and areas for improvement, where required. 

• Work with the First Line of Defense to advise on the resolution and/or remediation of cyber incidents, including responding to incidents, recovery and remediation actions, and communicating with relevant stakeholders and regulators. 

• Build and lead a team of security and technology risk professionals, and ensure that they are trained, mentored, motivated, and aligned with the Bank's overall strategy and goals. 

• Ensure that the Bank's information and cyber security practices comply with applicable regulatory requirements, including those related to data privacy, technology risk and information security. 

• Collaborate with business and functional units across the Bank, understand their information security needs and provide advice, and facilitate technology risk management and risk assessment processes. 

• Develop risk metrics to measure the effectiveness of the Bank’s information and cyber security programs, and support driving the maturity of the programs over time. 

• Drive the information and cyber security awareness programs for the Bank’s employees.  

Minimum Qualifications 

• Degree in Computer Science, Information Security or a related field with a minimum of 10 years of relevant work experience or more.
• Experience in the ITwithin Banking, Fintech, and/or Telecommunications sectors would be an added advantage.
• Experience with SOC, digital forensic, malware reverse engineering (optional), penetration testing and vulnerability management.