Information Security Officer

VITAS Palestine, is a private microfinance company shareholding limited liability company, that seeks to hire Information Security Officer At the Head Office in Ramallah.

The purpose of this position is to manage, support and coordinate all Information Security (IS) activities, programs, and initiatives for the Bank. The Information Security Officer is responsible for bringing the institution’s information security risks under explicit management control through implementation, maintenance, effective monitoring, and management of all relevant aspects of the Information Security Management System (ISMS) in Vitas Palestine.

Main Responsibilities are:

Identify, Assess and remediate Technology and Information Security risks for Mission and Business Critical Systems, and continuous monitoring and updating, if necessary, the Risk Register.

• Creation, deployment and implementation of Information Security Policies & Procedures, and Guidelines if necessary, and provide IT Security Advisory services and guidance:

At least: Acceptable Use Policy, Access Control Policy + Matrix, Cyber & InfoSec Policy, Incident Management

• Develop and promote the Cyber Culture across the Institution through various dedicated and targeted Awareness campaigns and continuous validation of the culture through periodical tests.

At least awareness campaign on key Info and Cyber Sec, incl. Data Protection, Phishing, Ac Use Policy.

• Design, Implement and execute key controls mitigating the identified cyber and infosec, incl. data privacy, risks for Mission and Business Critical systems.

At least in the following areas: Network Syslog, Database logs, Privileged Access logs, Staff Onboarding/Leave/Exit, User Access Control.   

جميع الحقوق محفوظة لموقع جوبس.

• Minimum Bachelor degree in IT 
• At least 2 years of full-time work experience in IT in preferably a bank or financial services, Telecom or any related field.
• A good knowledge of information security management or related functions (such as IT audit or IT Risk Management), will be and added advantage.
• A good understanding of project management
• A good understanding of technical IT roles such as IT architecture, development or operations, with a clear and abiding interest in information security and or system controls.

If you are excited about these opportunities and believe you have the skills and experience, we are looking for, we encourage you to apply. Please submit your updated resume to [email protected] no later than the 24th of Feb 2024 stating the name of the vacancy you are applying to in the title of the email.