MAIN ROLES & RESPONSIBILITIES
• Establish and maintain policy framework for controlling access of database and applications for management of highly privileged users;
• Establish and maintain access control of applications for bank users;
• Conduct regular control highly privileged database user’s actions;
• Investigate databases and applications for potential threats and known vulnerability;
• Monitor all types of database activity, including control who, when, where and how accessed the databases;
• Control of PL/SQL codes and scripts, DB queries created in bank;
• `Establish and control process of database encryption;
• Investigate non-authorized/non-authenticated access requests and database attacks using specialized tools and systems;
• Investigate anomalies in user behavior (in time of access, source of access, etc.);
• Audit of information security events (failed connect attempts, failed logins, etc.) in database and application systems;
• Together with appropriate IT unit build and regularly update multi-level database and application protection systems for enhanced prevention against cyber-attacks;
• Initiate process of establishing and using new database and application security systems in bank;
• Participate in implementation process of new database and application security systems;
• Control backup process of database and applications;
• Control of change management process in applications;
• Manage and control physical and logical key management process.
REQUIREMENT
• Base knowledge in IT Security, Database (Oracle etc.) and Operational systems (MS, Linux);
• 3 years’ experience in Bank sector (IT);
• University Degree in Related area.
Candidates are requested to send their Application Forms/CVs to [email protected] until October 08, 2015. Please indicate the name of the position (Information Security Expert in Database and Application) you are applying for in the subject line of the email. Otherwise the candidacy will not be considered in the review process of the applications collected.
Please be advised that only shortlisted candidates will be invited to the further stages of the recruitment process.
