Assistant IT Auditor

Responsibilities:

• Design, implement, and manage secure network solutions to protect against advanced threats while supporting business needs.
• Monitor network traffic for unusual activity and potential threats using security tools and software.
• Conduct regular vulnerability scans and assessments on networks, systems, and applications.
• Analyze scan results to identify vulnerabilities and potential risks.
• Classify vulnerabilities based on severity and potential impact on the organization.
• Collaborate with IT and development teams to prioritize and remediate identified vulnerabilities.
• Develop and implement mitigation strategies to address vulnerabilities in a timely manner.
• Track and report on the status of remediation efforts to ensure timely resolution.
• Perform risk assessments to evaluate the potential impact of vulnerabilities on the organization.
• Develop risk mitigation plans and work with stakeholders to implement them.
• Continuously monitor and reassess the risk landscape to adjust mitigation strategies as needed.
• Manage and maintain vulnerability management tools and platforms.
• Stay updated on the latest vulnerability management tools and technologies.
• Develop custom scripts and tools to enhance vulnerability management processes.
• Ensure vulnerability management practices comply with relevant regulations and standards such as PCI-DSS, ISO 27001, and NIST.
• Contribute to the development and maintenance of security policies and procedures.
• Assist in audits and assessments related to vulnerability management.
• Create detailed reports on vulnerability findings, remediation efforts, and overall security posture.
• Communicate vulnerability status and risks to technical and non-technical stakeholders.
• Maintain accurate and up-to-date documentation of vulnerability management activities.
• Stay current with the latest cybersecurity threats, vulnerabilities, and trends.
• Continuously evaluate and improve vulnerability management processes and practices.
• Participate in security-related training and development activities.

Requirements:

• Minimum of Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Minimum of Four (4) years proven work experience in network and cybersecurity roles preferably within the banking or financial services industry, Fintech, and digital banking environment.
• Relevant certifications (e.g., CISSP, CISM, CEH, CCSP, CompTIA Security+)
• Proven experience in network and cybersecurity roles, preferably in the banking or financial services sector.
• In-depth knowledge of network protocols, firewall management, and intrusion detection/prevention systems.
• Strong understanding of financial regulatory requirements and industry standards related to cybersecurity.