AIIB - Asian Infrastructure Investment Bank
tendersglobal.net
The Asian Infrastructure Investment Bank (AIIB) is a multilateral development bank whose mission is financing the Infrastructure for Tomorrow – infrastructure with sustainability at its core. We began operations in Beijing in January 2016 and have since grown to 109 approved members worldwide. We are capitalized at USD100 billion and rated AAA by the major international credit rating agencies. Collaborating with partners, AIIB meets clients’ needs by unlocking new capital and investing in infrastructure that is green, technology-enabled and promotes regional connectivity.
The Information Technology Department (ITD) is looking for a Senior Digital Program Specialist for cybersecurity engineering. The cybersecurity function is the first line of defense to protect the Bank against cyber-attacks on AIIB’s entire digital landscape and to prevent financial losses and reputational damage to the Bank.
The Senior Digital Program Specialist will be an experienced and vigilant cybersecurity engineer who plays a leading role in the planning, design, deployment, and optimization of cybersecurity products and technologies to enhance security capabilities across the Bank. They should have an excellent understanding of cybersecurity standards and frameworks, extensive knowledge of how cybercriminals work, and a determination to never let them in.
The Senior Digital Program Specialist will help keep cybercrime at bay, using their expertise and engineering skills to keep enhancing the Bank’s cybersecurity infrastructures and systems. They should be passionate about providing high-standard cybersecurity services, have extensive knowledge of both external and insider threats, and dedicated to minimizing cyber risks. They will create and manage technologies to safeguard AIIB’s information and systems from cyber threats, based on AIIB’s security practices and industry-accepted frameworks and following AIIB’s policies and legal requirements.
Responsibilities:
- Lead the planning, design, deployment, testing, optimization, and integration of cybersecurity technologies, as well as manage product features and capabilities, to protect information and prevent unauthorized access and attacks against AIIB’s IT environment.
- As IT Service Owner, ensure the effective and efficient design and functionality of cybersecurity solutions.
- Collaborate with stakeholders to align security initiatives with business objectives.
- Manage cybersecurity product vendors to ensure prompt delivery of quality services, features, capabilities, bug fixes, etc. by developing and managing operational and quality metrics.
- Continuously review the maturity of cybersecurity measures and maintain the roadmap of cybersecurity solutions to lead the development of sound cyber protection capabilities.
- Contribute domain expertise for the development, implementation and updating of the cybersecurity framework, policies, standards, guidelines, baselines, processes and procedures.
- Ensure that any actions to address gaps or weaknesses are appropriately assigned and completed in a timely manner to maintain cybersecurity, supporting audits, and control testing on cybersecurity.
- Serve as the domain expert for cybersecurity prevention, response, and recovery.
- Lead and mentor junior team members, fostering their growth and development in the field.
Requirements:
- Minimum 8-10 years of direct experience of building and configuring cybersecurity technologies, including but not limited to SIEM, Anti-Malware, Firewall/IPS/UTM, Vulnerability Scanner, Endpoint Detection & Response, User and Entity Behavior Analytics, Web Application Firewall, Threat Intelligence, Honeypot, and other cybersecurity tools;
- Hands-on experience developing and validating security baseline configurations for operating systems, databases, web servers, and networking equipment;
- Strong technical analysis and problem-solving skills; experience of DevOps toolsets would be an advantage;
- Demonstrated successful cyber security use case management and optimization with relevant security tools;
- Demonstrated experience of security tools integration and orchestration for hybrid environment; Cloud environment working experience of Azure and AWS would be an advantage;
- Demonstrated solid knowledge of information security principles, practices and regulations, including knowledge of International Security Frameworks and Standards, such as NIST Cyber Security Framework, MITRE ATT&CK, CIS, ISO/IEC 27000 Series and COBIT;
- Excellent engagement, relationship, project and stakeholder management skills;
- Results-oriented, with a meticulous eye for detail, with the ability to multi-task and prioritize multiple deadlines in a fast-paced environment;
- Security industry certifications such as CISSP, CISM, CISA, CRISC would be an advantage;
- Excellent team player to create a positive, professional, and fun working environment;
- The working language of AIIB is English; fluency in oral and written English is a must;
- Master’s degree from a reputable university in relevant fields such as cyber security, computer science, and engineering. Alternatively, Bachelor’s degree in related fields along with relevant Certifications, in lieu of a Master’s degree, from a reputable university.
AIIB is committed to diversity, transparency and inclusion. We believe our strength comes from having a team with the right diverse skills, experiences and abilities selected through a merit-based competitive process. We actively encourage applications from people from both within and outside AIIB members, regardless of nationality, religion, gender, race, disability or sexual orientation.
Join in AIIB’s mission to promote sustainable infrastructure investments and to improve social and economic outcomes in Asia and beyond.
Previous experience and qualifications will determine the grade and job title at which successful applicants will enter AIIB.
To help us track our recruitment effort, please indicate in your cover/motivation letter where (tendersglobal.net) you saw this job posting.