379 Security Audit jobs in Bahrain
Senior Risk Assessment Underwriter
Posted 5 days ago
Job Viewed
Job Description
Key responsibilities include:
- Reviewing and analyzing insurance applications for various lines of business, including life, health, and property insurance.
- Conducting thorough risk assessments by examining financial statements, medical records, lifestyle factors, and other relevant documentation.
- Utilizing statistical models and underwriting software to quantify risks and determine appropriate pricing.
- Collaborating with sales teams, brokers, and clients to explain underwriting decisions and negotiate policy terms.
- Developing and implementing underwriting guidelines and policies to ensure consistency and adherence to industry best practices.
- Monitoring portfolio performance and identifying emerging risks or trends.
- Providing mentorship and guidance to junior underwriters.
- Staying abreast of changes in regulations, market conditions, and technological advancements impacting the insurance sector.
- Participating in product development and refinement processes.
- Maintaining accurate and comprehensive records of underwriting decisions and client interactions.
The successful candidate will have a Bachelor's degree in Finance, Actuarial Science, Mathematics, or a related field. A professional designation such as ACII or equivalent is highly desirable. Proven experience (5+ years) in underwriting, with a strong emphasis on risk assessment and analysis, is required. Excellent analytical, problem-solving, and decision-making skills are essential. Strong communication and interpersonal abilities are necessary for effective collaboration and client interaction. Proficiency in Microsoft Office Suite and specialized underwriting software is expected. The ability to work independently and as part of a team in a fast-paced environment is crucial.
Information Security Specialist
Posted 3 days ago
Job Viewed
Job Description
The Information Security Specialist supports the Head of Information Security and Business Continuity in safeguarding the bank’s critical information assets and ensuring the resilience of its operations. This role is responsible for implementing and maintaining comprehensive information security measures, business continuity plans, and disaster recovery strategies that protect the bank’s systems, data, and services from cybersecurity threats and operational disruptions.
The Specialist will contribute to the bank's proactive risk management approach by identifying vulnerabilities, responding to incidents, ensuring regulatory compliance, and leading initiatives to enhance business continuity. In addition, this role involves coordinating BCP and DR activities, conducting regular testing, and ensuring the organization’s preparedness for crises or emergencies.
Reporting directly to the Head of Information Security and Business Continuity, the Specialist will collaborate closely with IT and other departments and business units to integrate security and business continuity frameworks into the bank’s operational processes, supporting a secure and resilient environment that enables the bank to achieve its strategic objectives.
Responsibilities of the role:
Information Security:
- Develop, implement, and maintain information security policies, procedures, and standards in alignment with PCI-DSS and regulatory requirements.
- Monitor, analyze, and respond to security incidents, vulnerabilities, and threats across the bank’s IT systems and networks
- Conduct periodic risk assessments and gap analyses to identify security weaknesses and develop mitigation strategies
- Coordinate internal and external audits related to information security; ensure timely closure of audit findings
- Provide security awareness training to staff and promote a culture of information security
- Support secure configuration and change management processes across IT assets and infrastructure
- Work with IT and other departments to ensure security is embedded into system design and operational processes
- Stay up to date with current cyber threats and trends, and recommend appropriate risk mitigation measures
Business Continuity:
- Develop and maintain the bank’s business continuity management frameworks in line with the bank’s and regulatory guidelines
- Conduct business impact analyses (BIAs) and risk assessments across business units to identify critical functions and recovery priorities
- Lead the development, testing, and continuous improvement of BCP and DR plans to ensure organizational resilience.
- Coordinate with IT, facilities, and business teams to ensure recovery strategies are effective and practical.
- Conduct regular BCP/DR drills and exercises, and report findings with actionable recommendations.
- Liaise with regulatory bodies, auditors, and stakeholders to ensure compliance and readiness.
- Maintain documentation and evidence of BCM program activities and test results.
Areas of Knowledge, Qualification and Experience
- Atleast 5 years of experience working within a Banking Environment
- Bachelors Degree in Computer Science / Cyber Security background.
- Relevant certifications from ISC2, ISACA, SANS are highly preferred
- In-depth understanding of global information security standards (e.g., ISO 27001, NIST Cybersecurity Framework, CIS Controls) and regulatory requirements (e.g., CBB, PCI-DSS). Ability to implement and manage these frameworks within a banking context.
INFORMATION SECURITY OFFICER
Posted 6 days ago
Job Viewed
Job Description
This role will be responsible for handling the implementation and maintenance of GFG and subsidiaries Information Security Management System in accordance with local laws, regulations and best practices.
KEY ACCOUNTABILITIES- Support Head Information Security in defining and implementation of information security governance documentation including policies, manual, SOPs and guidelines.
- Support Head Information Security in conducting Risk-based Assessment of Information Security policies and operating procedures owned by other departments within the group against industry-recognized security standards and best practices, ensuring adequate preventive, detective and corrective controls to provide data integrity, confidentiality and availability.
- Support Head Information Security in conducting analysis of security requirements and controls to identify gaps and provides recommendations of industry best practices, trends, and technology products.
- Support Head Information Security in conducting on annual basis and continuous basis Information Security Risk Assessment, identify business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement.
- Develop and maintain information register and ensure that the information is classified by data owners and protected in accordance with the information classification framework.
- Conducting awareness sessions to the new and existing employees on information security policies and global trends as per the awareness program.
- Support in defining information security requirements in information systems, projects and third parties in cooperation with the delivery departments i.e. ICT, and FM.
- Support in conducting incident investigation for information security incidents and ensuring that the necessary actions and disciplinary actions are taken.
- Support in defining information security requirements to be included in ICT Disaster recovery plans to ensure continuity of information security controls during disasters.
- Support in conducting internal and external audits to ensure that BAC Information Security Management system complies with best practices and local regulations.
- Improve the maturity of the information security management system through suggesting and supporting in the implementation of technologies such as DLP solutions, GRC solutions etc.
Bachelor’s degree in information technology.
Certified Information Security Auditor (CISA) (Preferred)
MINIMUM EXPERIENCE3+ years of Information Security experience
JOB SPECIFIC SKILLS- Proven ability to establish and manage “dotted-line” business relationships to deliver agreed outcomes/deliverables.
- Ability to work effectively with all levels of personnel across the organization.
- Proven ability to communicate clearly and appropriately based on audience with excellent facilitation and customer service skills.
- Excellent written and verbal communications, critical thinking skills, effective interpersonal skills, strong formal presentation abilities.
- Ability to be flexible and work effectively with ambiguity and change.
Information Security Manager
Posted today
Job Viewed
Job Description
- Developing and executing a comprehensive information security strategy aligned with business objectives.
- Overseeing the implementation and management of security controls, policies, and procedures.
- Managing security operations, including threat monitoring, vulnerability management, and incident response.
- Conducting regular risk assessments and developing mitigation strategies for identified vulnerabilities.
- Ensuring compliance with industry regulations, such as GDPR, ISO 27001, and other relevant standards.
- Leading and mentoring the information security team, fostering a culture of security awareness.
- Managing relationships with third-party vendors and service providers related to security.
- Developing and delivering security awareness training programs for employees.
- Overseeing the development and maintenance of business continuity and disaster recovery plans.
- Managing security budgets and resources effectively.
- Staying up-to-date with emerging security threats and technologies to proactively adapt security measures.
- Leading security audits and assessments, and ensuring remediation of findings.
The ideal candidate will possess a Bachelor's degree in Computer Science, Information Technology, or a related field. A Master's degree and relevant professional certifications such as CISSP, CISM, or CRISC are highly preferred. A minimum of 7 years of progressive experience in information security, with at least 3 years in a management or leadership role, is required. Strong knowledge of security frameworks, risk management principles, and security technologies is essential. Excellent leadership, communication, and strategic planning skills are crucial. Experience in developing and implementing security policies and procedures is mandatory. This is a key leadership role offering significant impact and opportunity for growth.
Information Security Engineer
Posted today
Job Viewed
Job Description
The Information Security Engineer will work closely with IT operations and development teams to integrate security best practices into all aspects of the technology lifecycle. You will develop and enforce security policies, standards, and procedures, and provide technical guidance on security matters. Experience with cloud security (AWS, Azure, GCP) and endpoint security solutions is highly advantageous. The ideal candidate will have a strong understanding of networking protocols, system administration (Windows/Linux), and common security frameworks (e.g., NIST CSF, ISO 27001). Certifications such as Security+, CySA+, or CCNA Security are preferred. A Bachelor's degree in Computer Science, Information Technology, or a related field, with at least 4-6 years of progressive experience in information security engineering or a similar role, is required. Excellent analytical, problem-solving, and communication skills are crucial for identifying and mitigating security risks effectively. This is a prime opportunity to contribute to a secure technological environment and advance your career in cybersecurity.
Information Security Auditor
Posted today
Job Viewed
Job Description
Key Responsibilities:
- Plan, conduct, and document information security audits across various IT systems, networks, and applications.
- Assess the design and operating effectiveness of security controls against established frameworks (e.g., NIST, ISO 27001, SOC 2).
- Identify security vulnerabilities, control weaknesses, and compliance gaps.
- Develop clear and concise audit reports, including findings, recommendations, and remediation plans.
- Follow up on audit findings to ensure timely and effective implementation of remediation actions.
- Collaborate with IT, security, and business teams to gather information and evidence for audits.
- Stay current with evolving security threats, vulnerabilities, and relevant regulatory requirements.
- Assist in the development and refinement of audit methodologies and procedures.
- Evaluate the effectiveness of incident response plans and business continuity processes.
- Perform security risk assessments as part of the audit process.
- Communicate audit findings and recommendations to stakeholders at various levels.
- Provide guidance and support to business units on security best practices and compliance requirements.
Qualifications:
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
- Relevant certifications such as CISSP, CISA, CRISC, or equivalent are highly desirable.
- Minimum of 4-6 years of experience in information security, IT auditing, or risk management.
- Strong understanding of IT security principles, frameworks, and best practices.
- Experience with various types of security audits, including IT general controls, application security, and network security.
- Knowledge of regulatory compliance requirements relevant to the industry.
- Excellent analytical, critical thinking, and problem-solving skills.
- Strong written and verbal communication skills, with the ability to present complex information clearly.
- Proficiency in audit tools and techniques.
Information Security Analyst
Posted today
Job Viewed
Job Description
Key responsibilities include:
- Monitoring security alerts and logs from various security tools (SIEM, IDS/IPS, firewalls, antivirus).
- Identifying, analyzing, and responding to security incidents and threats in a timely manner.
- Conducting vulnerability assessments and penetration testing to identify weaknesses in systems and applications.
- Implementing and managing security controls and technologies, such as firewalls, endpoint protection, and access controls.
- Developing and updating security policies, procedures, and guidelines.
- Assisting in the development and delivery of security awareness training for employees.
- Performing risk assessments and implementing mitigation strategies.
- Staying up-to-date with the latest cybersecurity threats, trends, and technologies.
- Collaborating with IT teams to ensure secure system configurations and implementations.
- Participating in security audits and compliance activities.
Be The First To Know
About the latest Security audit Jobs in Bahrain !
Information Security Manager
Posted today
Job Viewed
Job Description
Key responsibilities include:
- Developing and executing the organization's information security strategy.
- Implementing and managing security controls, including firewalls, intrusion detection/prevention systems, and endpoint security.
- Conducting regular risk assessments and vulnerability scans.
- Leading incident response efforts to mitigate security breaches.
- Developing and delivering security awareness training programs for employees.
- Ensuring compliance with data privacy regulations and industry security standards (e.g., ISO 27001, NIST).
- Managing security technologies and recommending upgrades or new solutions.
- Collaborating with IT teams to integrate security into all aspects of technology infrastructure.
The ideal candidate will possess a Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. Professional certifications such as CISSP, CISM, or CISA are highly preferred. A minimum of 7 years of experience in information security, with at least 3 years in a management or leadership role, is required. Proven experience in developing and implementing security frameworks, managing security operations, and incident response is essential. Strong knowledge of network security, cloud security, application security, and risk management is mandatory. Excellent leadership, communication, and analytical skills are needed to effectively manage the security posture of our client in **Riffa, Southern, BH**.
Information Security Analyst
Posted today
Job Viewed
Job Description
Information Security Analyst
Posted today
Job Viewed