Christine Nabil Fahmy Iskander

Service Mgmt Global Process LeadFull Time

Process Analysis & Improvement ManagerFull Time

Information Security & Control OfficerFull Time

• Job Details:Responsible to provide operational and procedural input on a wide variety of information security issues. This role has also coordinating responsibilities regarding the administration of security manuals (policies, procedures, standards, guidelines, architectures, forms and other documents which serve the Information Security related initiatives, projects and security operations) 1. Maintains strong working relationships with Bank Departments involved with information security matters (Internal Audit, Legal, Compliance, etc.). Maintains communication channels with those responsible for the implementation of the selected protection mechanisms including individuals within Bank’s Departments (Information Owners, Security Coordinators) as well as business partners (outsourcing firms, consulting firms, etc.) 2. Coordinates, follow up and document all security improvement projects at the Bank. 3. Develops action plans, schedules, budgets, status reports, compliance reports and any other report may be required by the IT Strategy & Project Planning Committee. 4. Conducts Business Impact Assessments for the Bank regarding information security, in cooperation with the Information Owners. 5. Handel external audits data gathering with IT & Organosis or any other unit involved in the Audit scope. 6. Documents & report in particular security requirements of the regulatory authorities or other obligations which the Bank must adhere to. 7. Develops and build business cases for the Information security projects, including scoring and assessment of business value and benefits – coordinating with Business owners when applicable. 8. Evaluates the completeness of Business Continuity & Recovery Plans for the Bank and receives confirmation on their accuracy at regular intervals. 9. Develop the material needed for the security awareness and the training of the personnel and evaluation of training quality to conduct improvement plan of training. 10. Reviews the effectiveness of existing information security procedures and makes suggestions for the improvement of these same procedures. 11. Conduct information security operations performance analysis based on defined metrics and maintain proper reporting of Information Security status within the Bank.