[Tirana Bank]

Tirane

Tipi

1. me orar te plote

Fusha | Profili i punes

1. IT | TIK | Informatike Ekonomike

Gjuha

1. anglisht

Eksperienca

VACANCY ANNOUNCEMENT ​

Balkan Finance Investment Group, BALFIN Group, is one of the most significant and successful investment groups in the Western Balkans region. The activities of the BALFIN Group include the development and management of real estate, retail, mining industry, banking, tourism, energy, logistics, etc.

TIRANA BANK, one of the leading banks in Albania and member of BALFIN Group, is seeking to welcome a qualified candidate to join the Risk Management Department in the following position:

Overall Job Definition
Information Security and Business Continuity Senior Officer responsibilities include managing information security risks and compliance related to information security standards, business continuity planning and crisis management. The role also directs the adoption and implementation of policies and procedures within the Bank.
Main Responsibilities:

1. Information Security Governance: Develops and maintains the Information Security Framework, including but not limited to:

• Development and implementation of security policies, standards, guidelines and procedures to ensure ongoing maintenance of security.
• Management of risk identification process, analysis, and mitigation controls identification.
  In collaboration with the Head of the Unit, conducts risk assessments and defines strategies in order to address identified risks and prioritize options to mitigate risk to levels acceptable to the institution.
• Ensures that risk identification, analysis and mitigation controls are integrated into application life cycle, change management processes and introduction of new technologies and products.
• Assessment, develops and maintains a level of security concept that is appropriate to the organization on basis of business requirements, considering international information security standards and guidelines as well as local legal and regulatory requirements
• Ensures that the design, operation, use and management of information systems are in compliance with security standards and guidelines and the implementation and effectiveness of security measures
• Oversees (security) incident response planning as well as the investigation of security breaches, and assist with disciplinary and legal matters associated with such breaches as necessary.
• Manage and develop the awareness program to ensure promotion of safety and security awareness of employees using appropriate and effective measures (trainings, brochures, tests, etc.).

1. BCM strategy and governance: Develops and manages of BCM organization for the Bank, including but not limited to:

• Development of Business Continuity Management Methodology in order to assure availability of business processes and underlying infrastructure (IT and physical).
• Creation and maintenance of standards and guidelines derived from local regulations and best practices (international standards).
• Identify in conjunction with the Bank’s units the most significant risk scenarios which apply to the operation of the Bank and agree which are to be used as the basis for continuity plan
• Lead the business impact analysis exercise through engagement with all relevant stakeholders, with the aim of identifying the needed resources for continuity of daily operations.
• Identify business/operations continuity strategies which will be applied to the continuity scenarios and coordinate the development of these into continuity plans which can be invoked in response to the scenarios.
• Coordinates and provides oversight of documentation and maintenance of business continuity plans of the bank,
• Coordinates the regular testing of IT disaster recovery plans (jointly with colleagues from IT Department) and business continuity plans.
• Designs, coordinates and oversees Crisis Management procedures to ensure the Bank’s state of readiness and preparedness at all times.

• Acts as an advisory role on Emergency Response and Crisis Management matters and ensures that the plan readiness of the Bank is updated, tested and improved over the time at operational, tactical and strategic levels.
• Perform periodic reviews of established Business Continuity Programme.

Competencies / Skills:

• University degree, computer science or similar. CISSP or other security certification/accreditation (GIAC, CISM, CISA, BS25999/ISO22301 Lead Implementer/Lead Auditor) desirable

• Advanced verbal and written communication skills.
• Deep knowledge of current technological trends and developments in the area of information security.
• Excellent knowledge of information security management and risk evaluation/assessment
• Solid understanding of Bank processes and business continuity processes
• Practical and analytical skills
• Working experience and knowledge of banking information systems as well as of the international standards on information security and local rules and regulations is preferred.

The interested candidates can send their CV until June 25[SUP]th[/SUP], 2021 to the link.

Please note that only applicants, who fulfil the above mentioned criteria, will be contacted.

Your personal data, which are sent voluntary as a response to this job vacancy announcement, are collected and processed, manually and/or electronically, by Tirana Bank SA, in order to evaluate your compatibility with this job vacancy, are accessed only by authorized persons of the Bank and will be stored until the finalization of the candidate selection process. The subjects of personal data can exercise their rights as provided by Law No. 9887, dated on 10/03/2008 “For the Personal Data Protection”, amended, at Tirana Bank SA, as well as at the Commissioner for the Right of Information and Protection of Personal Data.