RESPONSIBILITIES:
•Improvement of information technology and information security (IT & IS) risk management frameworks
•Development of internal documents on IT & IS risk management
•Execution of Kazakhstan Regulators requirements on IT & IS risk management
•Assessment and monitoring of IT & IS risks
•Analysis of IT & IS processes
•Coordination of information asset classification process
•Development of IT & IS risk registers and heat map
•Participate in the development of action plans for information technology and information security risks treatment
•Participate in the assessment of information technology and information security risks in new initiatives
•Preparation of management reports
REQUIREMENTS:
•Higher economic or technology education
•Experience of at least 3 years in information technology and information security risks or audit
•Knowledge of the regulatory legal acts of the Republic of Kazakhstan related to information technology, information security and risk management in banks
•Knowledge of information technology and information security processes, methodologies/standards ITIL, COBIT, ISO 27001/27005/22301
•Responsibility, good communication and interpersonal skills
•Proficiency in English at upper– intermediate level or higher
•Proactivity, independence
CONDITIONS:
•Almaty city, Esentai Tower
•According to the Labour Code of Kazakhstan
•Medical Insurance on special conditions
•Paid annual leave above the norm prescribe in legislation - 25 business days