Manager Information Security

4 weeks ago


Karachi, Sindh, Pakistan HRSI Full time

About the job Manager Information Security

COMPANY OVERVIEW:

Our client, a Karachi-based, State Bank of Pakistan (SBP) regulated Electronic Money Institution (EMI), seeks to appoint an experienced professional for the following role:

As Manager Information Security, you will be responsible for establishing and enforcing security protocols that safeguard Cerismas information systems, digital assets, and customer data.

Key Areas of Responsibilities

  • Develop & Implement Information Security Strategy Design and execute a comprehensive information security roadmap aligned with Cerismas digital infrastructure, business model, and regulatory obligations
  • Cybersecurity Risk Management Identify, assess, and mitigate cybersecurity risks across infrastructure, applications, APIs, mobile platforms, and third-party integrations
  • Regulatory Compliance & SBP Alignment Ensure full compliance with SBP guidelines and international security frameworks (e.g., ISO 27001, NIST), and act as the point of contact for regulator-driven security reviews
  • Security Architecture & Operations Oversee the design, configuration, and monitoring of security systems including firewalls, endpoint protection, SIEM, encryption, and identity/access management tools
  • Incident Response & Threat Management Develop and lead the incident response process, including detection, containment, investigation, recovery, and post-mortem reporting
  • Security Audits & Penetration Testing Coordinate regular internal and third-party audits, vulnerability assessments, and penetration testing to ensure system hardening
  • Employee Awareness & Policy Enforcement Establish security awareness programs, train internal staff, and enforce information security policies across all departments
  • Collaboration with Internal Audit & IT Work closely with Internal Audit, Technology, and Compliance teams to ensure consistent enforcement of risk controls and secure infrastructure design

Education

  • Minimum 16 years of education, preferably, Masters from a renowned and HEC recognized university or institution/equivalent foreign degree holder institution, in any/or combination of the disciplines
  • Professional certifications such as CISSP, CISM, CEH, or ISO 27001 Lead Implementer/Auditor are highly desirable

Experience

  • Information Security Expertise Minimum 5 years of relevant experience in information security or cybersecurity roles, preferably within fintech, digital banking, or regulated financial institutions
  • Regulatory & Standards Knowledge Strong understanding of SBP cybersecurity guidelines, ISO 27001, NIST, and relevant global information security frameworks
  • Incident Management & Threat Response Demonstrated experience in handling security incidents, vulnerability assessments, and threat intelligence operations
  • Security Operations & Architecture Hands-on experience with firewalls, IDS/IPS, antivirus, endpoint protection, IAM, encryption, and secure network architecture

Key Requirements

  • Technical Cybersecurity Proficiency Deep technical knowledge of cybersecurity tools, infrastructure protection, and digital risk management in consumer-facing platforms
  • Regulatory & Audit Readiness Proven track record of preparing for and managing regulator-led audits, and aligning cybersecurity operations with legal and compliance standards
  • Risk & Policy Management Ability to define, implement, and enforce cybersecurity policies, standards, and control frameworks organization-wide
  • Cross-Functional Collaboration Strong interpersonal skills to work closely with technology, audit, risk, and compliance teams to embed a culture of security
  • Adaptability in Fast-Paced Environments Demonstrated ability to manage evolving security risks in dynamic, high-growth fintech ecosystems

Age

The candidate should preferably be not more than 35 years of age as of last date of submission of application.

If you have the required experience and educational qualification to take up the challenging role, you are requested to apply by July 03, 2025 at http://jobs.hrs-int.com/

Only shortlisted candidates will be contacted.
www.hrs-int.com

#J-18808-Ljbffr

  • Karachi, Sindh, Pakistan Bit-Development Full time

    Get AI-powered advice on this job and more exclusive features.Direct message the job poster from Bit-Development.devBuilding High-Impact Tech Teams | Talent Acquisition Expert | Tech & Non-Tech Recruiter | Head Hunter | HR Manager | Strategic Recruitment Partner |Information Security ManagerReporting to: Chief Technology OfficerExperience: 10+ yearsLanguage:...


  • Karachi, Sindh, Pakistan Sjggroup Full time

    Manager Infrastructure and Information SecurityManager Infrastructure and Information SecurityPosition titleManager Infrastructure and Information SecurityDescriptionWe are seeking an experienced and highly motivated Manager – Infrastructure and Information Security to lead the design, development, and execution of our IT infrastructure and cybersecurity...


  • Karachi, Sindh, Pakistan VRG (Pvt) Ltd. Full time

    Job Description:Dear All,We are looking to hire Asst. Manager - Information Security – Financial ServicesJob description:Working with all business units to determine possible risks and risk management process, acquiring the correct technology and analyzing IT security threats and their mitigation.Ensuring the newly acquired technology complies with the SBP...


  • Karachi, Sindh, Pakistan beBeeSecurity Full time $900,000 - $1,200,000

    Job OverviewWe seek a seasoned Information Security Manager to lead our security team in driving effective information security strategies and practices.Key Responsibilities:Lead and mentor a team of information security professionals, fostering collaboration, professional development, and knowledge sharing.Implement robust security controls, risk assessment...


  • Karachi, Sindh, Pakistan beBeeManager Full time 800,000 - 1,200,000

    We are seeking a seasoned IT professional to lead our Infrastructure and Information Security initiatives. This role involves designing, developing, and executing strategies for secure, scalable, and efficient technology operations.Key Responsibilities:Develop and implement comprehensive enterprise information security and IT risk management...


  • Karachi, Sindh, Pakistan Faysal Bank Limited Full time

    Job Responsibilities:Acted as the coordinator for both internal and external audits, as well as SBP inspections, focusing on the information security function.Managed standards compliance initiatives as the project manager, including PCI DSS, ISO 27001, and SWIFT CSCF.Served as the custodian of tagged issues and monitored progress related to Board...


  • Karachi, Sindh, Pakistan HR Ways Full time

    About the job: Information Security AnalystClient Introduction:Our client company is a financial wellness platform that plans to change the way you receive and spend your salary.Job Description:Purpose:The ideal candidate will be responsible for managing day-to-day security-related queries, coordinating annual PCI-DSS and ISO 27001 compliance projects, and...


  • Karachi, Sindh, Pakistan Syhtek Full time

    The Information Security Analyst will safeguard Syhtek's digital assets and IT infrastructure. You will monitor and defend against security threats, ensuring compliance with policies and regulations. You will be instrumental in identifying vulnerabilities and implementing security measures to protect our clients and internal systems. Join our team to protect...


  • Karachi, Sindh, Pakistan beBeeInfrastructureSecurity Full time $900,000 - $1,200,000

    Infrastructure Security Leadership RoleThe manager of infrastructure security plays a crucial role in ensuring the security, scalability and efficiency of technology operations.This leader will oversee the design, implementation and maintenance of IT infrastructure, including servers, networks and cloud systems. They will develop and implement a strategic...


  • Karachi, Sindh, Pakistan bank Full time

    Bank Makramah is seeking a seasoned and highly strategic Chief Information Security Officer (CISO) to lead its information security initiatives at the Head Office in Karachi. The ideal candidate will be responsible for developing, implementing, and maintaining the organization's information security framework to protect digital assets, systems, and data...