About QNB QNB Group, the largest Financial Institution in the Middle East and Africa are looking to hire a Cyber Risk Assessments Analyst, to meet the expansion needs of our office in QNB - Qatar//Doha. QNB has enjoyed continued success with Net Profits of QAR 10.8 billion (USD3 billion) in 2018 (up by 6%) and increased Total assets to QAR 853 billion (USD 234 billion). The Group now employs over 29,000 employees in 1,200 locations, with an ATM network of more than 4,300 machines.
Role Summary: The incumbent will undertake risk assessments to ensure IT applications and infrastructure systems using in QNB comply with IT Security Policies and Standards, any relevant regulatory requirements as well as industry best Cyber Security practices. The incumbent will also be participating in Red Team activities that will continuously assess the security of QNB.
Ability to use established methodologies, conduct technical reviews and penetration testing activities of business applications and infrastructure projects e.g. technical risk assessments of internet facing applications, workstation and server build platforms, databases, networking, and virtualisation technologies.
Undertake security risk assessments of QNB systems. Assessing the effectiveness of the systems ,the security architecture design, compliance to IT security policies and relevant standard
Provide subject matter expertise for the enhancement of cyber security posture of the organization.
Develop close relationships with IT and business teams. Understand and manage their requirements for Group risk services.
Assist other teams in the Risk organisation with technical IT Security reviews and provide guidance as a subject matter expert for cyber security.
Provide Ad-hoc consultancy for risks of new technologies and propose with potential solutions.
Identify opportunities and develop new ideas that will lead to improvements.
Adapt/change behaviour or plans to better achieve the target/objective.
Analyse a complex problem and identify potential solutions by exploring and analysing diverse alternatives, including, where applicable, risks and potential business impact. Ability to make the right decisions based on the necessary information and to take measures accordingly.
Liaise with external consultants appointed from time to time to assess the adequacy and effectiveness of the Group's information security efforts.
Bachelor/ Masters Degree preferably in a scientific, computing, mathematical or engineering degree or equivalent experience.
At least 4 years' experience in undertaking technical security assessments of complex IT solutions including penetration testing
Experience in undertaking red team activities is beneficial
Professional certification such as CISSP, CISM, CISA is mandatory
Previous Banking or Big 4 Consultancy work experience is mandatory
Strong knowledge of penetration testing tools and techniques of application and infrastructure components.
Strong knowledge of network topologies, logical access controls and firewalls technologies.
Strong knowledge of operating systems (Wintel, Solaris and Linux)
Having an understanding or experience in identifying zero day exploits
Having experience in designing and risk assessing multi-forest Active Directory domains
Programming experience (ASP, PHP, C#, etc)
Ability to work under pressure
Strong client focus
Note: you will be required to attach the following: 1. Resume / CV
Internal Number: 6216558
About Qatar National Bank (QNB)
eFinancialCareers is a career site specializing in financial services.