Job Title Security Engineer
Department Information Technology
Reporting to Unit Head – Network Security
Main Role (Overall Accountability):
He/she is responsible for the following:
The Security Systems referenced here comprise, but not limited to, the following:
Principal Accountabilities:
• Installation, administration and monitoring of bank’s security systems, and other new technologies that will be implemented in the future.
• Backup, patch, update, and upgrade the security systems of the bank, while adhering to the Change and Release Management procedures implemented in the bank.
• Perform system health checks for all Security devices on periodic basis.
• Ensure that a detailed impact analysis of any change request is carried out and viable and tested solution is recommended.
• Review and update management and procedure documents to ensure that all changes in the processes and systems are adequately documented and up to date.
• Manage AMC renewals for all IT security systems, devices and infrastructure.
• Coordinate with the auditors (internal, external, and CBO) and assisting them in performing their duties while auditing the security systems.
• Participate and lead new projects and initiatives related to IT security.
• Monitor security systems’ capacity utilization and plan for enhancements proactively.
• Monitor Internet usage and report exceptions.
• Generate MIS reports for all security components.
• Ensure availability of all security systems on 24*7 basis.
• Supervise and ensure that all DR failover and failback tests are carried out successfully.
• Coordinate with his superiors in resolving issues and complaints.
• Coordinate with internal teams and external vendors to resolve issues and/or to implement system changes.
• Ensure regular updates on progress are conveyed to superiors.
• Ensure high quality deliverables and work products are provided and meet commitments for the schedule on satisfying the bank’s user needs.
• Must build a strong sense of commitment among all his team members to meet the user satisfaction levels.
• Ensure that appropriate corrective and preventive actions are undertaken and resolve problems as soon as they arise.
Personnel Specifications:
Must be a graduate in Computer Science, Information Systems or equivalent IT disciplines, with 3-4 years of experience in the IT Security discipline.
The candidates should have strong technical background in the following areas:
• Master’s degree in cyber security is a plus.
• Certifications in Cyber security/ IT Security / Risk - CISSP, CISM, CISA, GIAC, CEH, CRISC etc is a plus.
• Must have good knowledge of Standards such as ISO 27001, ISO 27005, PCI-DSS, CoBIT etc. Product certification such as CCNP, CCSEA is preferable.
• Product trainings/certifications based on other technologies such as Juniper, RSA, Proxy and IPS devices is preferred.
• Hands-on experience on installation, administration, trouble shooting and user support of security products such as firewall/VPN, IDS/IPS, proxy servers, content filtering.
• LAN/WAN networking technologies, communication topologies and TCP/IP and other Network protocols, etc.
• Intranet, Internet and other web technologies.
• Windows/Unix/Linux operating systems and internetworked environments.
• OS and DB hardening procedures (Windows/Unix/Linux and Oracle/SQL etc.)
• Documentation MIS preparation and reporting.
• Good communication and presentation skills with good command of spoken and written English.
• Good interpersonal relations with pleasing personality.
With assets worth over USD 20 billion, Bank Muscat is the flagship financial services provider in Oman with a strong presence in Corporate Banking, Retail Banking, Investment Banking, Islamic Banking, Treasury, Private Banking and Asset Management. The international operations consist of a branch each in Riyadh (Kingdom of Saudi Arabia), Kuwait and a Representative Office each in Dubai (UAE) and Singapore.
