IT Risk Manager At EG bank
Member of the bank Information Security Steering Committee “ISSC”, to approve, follow, advice, and plan the actions and closure of the Information security risks gaps that should be closed and mitigated.
Manage and Develop an IRM plan and report on the progress made against defined target.
Prepare, Review and communicate the annual IT risk budget inherited from the ORM budget.
In charge of the development, communication and review of the bank Information Risk Management “IRM” Framework Manual, and ensure its effective application and enforcement.
Ensure risk assessments are performed and updated periodically, based on the bank systems technical assessment review “IT Risk profile” performed through the classification of the identified risks.
Report IRM compliance status to senior management HORM/ DCRO/ CRO.
Ensure cooperation with external auditors and consultants during independent security and risk audits review, and ensure rectification of observed non-conformities through coordination and follow up with different departments.
Approve IRM requirements in IT systems acquisition and development projects and systems security testing for pre-implementation approval.
Maintain relationships with law enforcement agencies and other government authorities such as CBE and CERT as necessary to ensure cooperation with respect to incident response and handling, when required.
Monitoring IT risk incident response process.
Participate in the investigation of IT and security breaches; make recommendations to management for corrective and preventive actions.
Perform other related tasks as requested by management