information security asistant manager

We are looking for an "Information Security Assistant Manager" for our client operating in the banking sector.

To improve organization’s Information Security policies and procedures according to local regulation, Bank of China global requirements and international standards,
To manage IT assets and risk with cyber security subject matter expertise,
Develop, improve and control data protection process of organization,
Review change management process with respect to information security aspects,
To organize and carry out security inspection, health check, enhancement and hardening,
To improve completeness, continuity, availability and traceability of monitoring mechanism in the organization,
To review the security events/log monitoring according to bank’s log management procedure and act as administrator of log management tools,
To act as a member of security event response team of the bank,
To report security incident, risk and trends to Information Security Management,
To establish security baseline of hardware and software in the organization,
To assess organization’s infrastructure and data to identify vulnerabilities caused by weaknesses or flaws in software and hardware that could expose the infrastructure to a security breach,
To evaluate the effectiveness of existing security measures, such as firewalls, password policies and intrusion-detection systems,
To manage privilege accounts and access right management,
Track the action plans of penetration test and vulnerability scan findings,
To act as Antivirus and IDS/IPS policy owner. To manage the policy of organization’s antivirus platform,
To monitor advancements in information security technologies and adapt new technology to enhance security according to bank’s situation,
To monitor changes in legislation and industry standards that affect information security,
To initiate, facilitate, and promote activities to foster information security awareness within the organization,
To monitor information security programs to ensure the organization is fully compliant with group’s global security policy and relevant procedures,
To manage information security tools and software management by providing Level 1 and Level 2 support.

Minimum 8 years of experience in information security in banking industry,
University Degree, (Computer science, Mathematics, Engineering preferably)
Solid knowledge of Information Security Technology, methodology and international standards,
Good knowledge of banking regulations of Turkey,
Hands on experience on Network Security, SIEM, Data Protection and Database Security Monitoring tools,
Certifications such as CISA, CISSP, CEH are a plus,
Experience in cyber security best practices and frameworks,
Self-motivation with strong analytical, planning and organizing skills,
Ability to gather, analyze and evaluate information from various sources,
Ability to communicate with individuals at all levels of the organization,
Good written and verbal communication skills,
Proactive in identifying, designing and implementing enhanced working practices,
Advanced level of spoken and written in English,
No military obligation for male candidates.