Job Summary

The incumbent will be primarily responsible in providing support of the Information Security solutions. This includes provide first and second line support and maintain key technology solutions designed to protect the firm from cyber security attacks. The incumbent will be the focal point for end user escalations for security technology issues they may be experiencing.

Main Responsibilities

A. Shareholder & Financial: - Promote cost consciousness and efficiency and enhance productivity, to minimise cost, avoid waste, and optimise benefits for the bank. - Implements KPI’s and best practices for Security Technologies Services - Act within the limits of the powers delegated to the incumbent. - Support to maintain KPI’s and best practices for AVP – Cyber Security Technologies & Services

B. Customer (Internal & External): - Provide 1st level support to key technical security solutions in line with business strategies and objectives of the group - Support operational process, procedures and guidelines, aligned to good practise for service management, problem and incident management, change management and configuration management. - Support end users with installation and troubleshooting of GIS provided and supported security products on their devices. - Review of IT and business requests for change requests to security controls (for example: firewall change reviews) - To assist customers in all their queries on Bank’s product and seek solution to their requests. - Maintain activities in accordance with Service Level Agreements (SLAs) with internal departments/units to achieve improvements in turn-around time. - Build and maintain strong/effective relationships with related departments/units to achieve the Group’s objectives. - Provide timely/accurate data to external/internal Auditors, Compliance, Financial Control and Risk when required.

C. Internal (Processes, Products, Regulatory): - Support the design and implementation of the QNB's information security program. - Develop, implement and administer technical security standards, as well as a suite of security services and tools to address and mitigate security risk. - Examine impacts of new technologies on the QNB's overall information security profile. - Establish processes to review implementation of new technologies to ensure security compliance. - Responsible to ensuring that any audit issues or identified regulatory gaps are addressed timely.

D. Learning & Knowledge: - Possess an understanding of business processes and controls in all related operational areas. - Must have an expert understanding of information security issues, best practices, and a working knowledge of IT systems. - Create education and training program within the team and advise operating units at all levels on security issues, best practices, and vulnerabilities. - Proactively identify areas for professional development of self and undertake development activities. - Seek out opportunities to remain current with all developments in professional field. - Ensure speedy resolution of unresolved grievances or conflicts within the team members. E. Legal, Regulatory, and Risk Framework Responsibilities: - Comply with all applicable legal, regulatory and internal compliance requirements including, but not limited to, Group Compliance Policies and Procedures (AML & CTF, Sanctions Policy, Data Protection Policy, Fraud Control Policy, Whistle Blowing Policy, Conflict of Interest and Insider Dealing Policy). - Understand and effectively perform your role under the Three Lines of Defence principle to identify measure, monitor, manage and report risks.

F. Other: - Ensure high standards of data protection and confidentiality to safeguard commercially sensitive information. - Maintaining utmost confidentiality concerning customer and internal bank information obtained during the course of business and provide such information on a need to know basis only to Senior Management of QNB, Audit and Compliance functions, and relevant Regulators. - Maintain high professional standards to uphold QNB's reputation and to strengthen its market leadership position. - All other ad hoc duties/activities related to QNB that management might request from time to time.

Education and Experience Requirements

- Bachelor’s degree preferably in computer science, computer engineering or related subjects.

- At least 6 years of relevant experience, preferably within a highly rated international bank or large corporate in an information security engineering capacity.

- Professional certification such as CISSP is mandatory

- Security engineering certifications and qualifications in Microsoft operating systems (such as MCSA, MCSE, et al) or Linux (such as RHCP, et al) are mandatory