Apply For This Job

Close
or

Job Description

Key Responsibilities:

 

We offer a challenging career in Web & Information Security; become part of the team passionate Telenor Bank Pakistan's strategic ambition of achieving the best in class information security compliance around all Mobile applications and platforms. Ensure the EasyPaisa App & IT/BSS/VAS/Enterprise platforms conform to the Telenor Group and World Standard security policies. Ensure that the security guidelines are followed while designing any new feature, applications, system and platform related to BSS, IT and Enterprise.

 

 

  • Work closely with Apps & Digital Development, Planning and Infrastructure teams to analyze, diagnose, debug and rectify security flaws with the Mobile Applications & API’s
  • Black Box, Grey Box security assessment of web application, Mobile application.
  • Security Assessment of Native/Hybrid Android and iOS applications.
  • Security assessment of Various SOAP and REST API
  • Real-time involvement with Digital application development team.
  • Assist the development team with source code to address the security requirements.
  • Review codes, assist the development team during the development and test the applications during the application development phase to meet the stringent business timelines.
  • Experience of identification and mitigation of vulnerabilities
  • Good knowledge of TCP/IP and other application and network level protocols.
  • Ability to provide remediation solution of vulnerabilities.
  • Security in SDLC (Application Security)
  • Expert level understanding of Security concepts.
  • Conduct vulnerability assessment and penetration testing and configuration review for web applications, mobile applications.
  • Conduct source-code review using automated and manual approaches
  • Keep oneself updated on the latest IT Security news, exploits, hacks
  • Prepare detailed reports as per eCW format
  • Strong experience with and understanding of software development methodologies.
    • To act as the designated specialist/expert on information security for BSS/IT/VAS/Enterprise Services to provide an expert specialist advice service, in accordance with International and Telenor Group security policies.
    • Engage and work closely with IT/BSS/VAS/Enterprise teams and related Project Managers to help identify and resolve technical security issues and conduct in depth security reviews of the systems, infrastructure and projects detailing findings.
    • To identify, assess and report IT Security risks and vulnerabilities in applications and infrastructure.
    • Develop designs around and within applications to ensure adherence to the security policies.
    • Carry out information security assessments of the existing and new features/applications/systems and develop action plans to address key risks arising from these assessments. Implement these action plans to improve the information security vulnerabilities.
    • Ensure that the systems are protected through proper access privileges and control structures.
    • Develop and implement ad-hoc audit programmes to test system and data security measures, review findings and improve those system and data security measures.
    • Produce detailed monthly reports for high risk projects.
    • Contributing to the development of IT security strategy and development roadmaps.
    • Work with business and IT teams to meet the obligations within Customer Data Security and Information and IT Security Policies.
    • Required Knowledge, Competencies, Skills and Experience: 
      • Establish secure services architecture to ensure that products and services developed in-house or through outsourced vendors meet Telenor Pakistan's security requirements.
      • Take independent initiatives to beef up processes in areas of security requirements gathering, security design principles, secure coding principles, security testing & security in contracts.
      Experience in Engaging all stakeholders (e.g. business users, analysts, developers, architects, testers, vendors, risk security teams) to fulfill the objectives & raise security awareness at all levels.

Job Details

Total Positions:
1 Post
Job Shift:
First Shift (Day)
Job Type:
Full Time/Permanent
Department:
Information Technology
Job Location:
Gender:
No Preference
Minimum Education:
Bachelors
Degree Title:
• Bachelor's Computer Sciences/Information Technology.
Career Level:
Experienced Professional
Minimum Experience:
5 Years (• 5 + years of experience in the field of information security in the IT domain with a deep knowledge of • CISSP/ CSSLP/ CISM/ GIAC/ CEH or equivalent qualification)
Apply Before:
Mar 10, 2018
Posting Date:
Feb 12, 2018
Show fewer details Read full job description

What is your Competitive Advantage?

Get quick competitive analysis and professional insights about yourself
Talk to our expert team of counsellors to improve your CV!
Try Rozee Premium

Telenor Microfinance Bank

Banking/Financial Services · 301-600 employees - Islamabad

Tameer is a Microfinance bank managed by a group of highly experienced bankers committed to go where no (commercial) bank has gone before. It is a private commercial Microfinance bank licensed by the State Bank of Pakistan under the Microfinance Ordinance 2001. Tameer distinguishes itself from ot ...Read More