Gerente de Seguridad de la Información
Bank of China México
Lokasi pekerjaan
Mexico City, CDMX
Detail Pekerjaan
Job Purpose
Support CISO in compliance for Information Security Banking activities for Bank of China Mexico.
Key Roles and Responsibilities
To comply with the regulatory task assigned to Information Security as the following:
Periodical Critical Systems Monitoring and reporting.
Monthly status Report elaboration for Upper Management.
Validate Compliance with the Information Security Policies, Procedures and Guidelines in place of the Institution, related either with local regulations or Head Office Guidelines.
Participate in the Incident Response Committee, coordinating members at defining mitigation activities until full containment, and event analysis and documentation of lessons learned. Also may elaborate Forensic analysis if necessary.
Elaboration and maintenance of the Information Security Procedures for the Bank.
Coordination with other support and business areas, especially with IT, in order to validate and monitor platform compliance
Attend Audit processes by internal and external entities, including Banking Regulators (CNBV; Banxico), including follow up and closure of on progress and past due issues.
Knowledge of CNBV and Banxico Banking regulation regarding Information Security (ANNEX 72, Electronic Banking, etc.)
Support the user management for systems on its Lifecycle, addition, change and deletion.
Manage activities with related areas for employee’s resignations.
Support the progress of the Plan Director de Seguridad with all related areas.
Manage the acquisition, delivery and payment procedures for Information Security Projects within the company.
Support the completion of special projects – SPEI/SPID
Support the analysis and implementation of current and new business projects, procuring the alignment with the Information Security Policies on place.
Management of Vulnerability Assessments and Pentesting activites with third parties and internal teams.
Coordination on the review and mitigation of vulnerabilities as detected in the technology platform of the company.
Elaboration of Periodical Technological Risk reports issued to peer areas and Upper Management.
Management and presentation of Key Risk Indicators in the special required Committees.
Coordinate the review and validation of Baselines for Windows and Linux Platforms.
Experincie and Knowledge:
Banking experience and knowledge of regulation applicable to Mexican Banks (CNBV, Banxico)
Certification in ISACA or ISC2 desirable (ie CISSP, CISA, CISM).
Knowledge with Information Security Best Practices (COBIT, ISO27001/ ISO27002)
We offer:
Competitive salary according to experience
Bank Benefits
Development in a Multicultural Environment
