MANAGER – INFORMATION SECURITY OPERATIONS Duties & Responsibilities

  • Collaborate with the CISO and key stakeholders to enhance the current information security program, leading and managing security projects to ensure they are completed on time, within scope, and within budget.
  • Support security operations functions which include but not limited to SIEM, DLP, PAM and other security implementations and administration as required.
  • Independently review / analyze, investigate the security alerts / events via sophisticated cybersecurity / event management tools to identify areas for improvement and provide recommendations and support for incident response / recovery where necessary.
  • Oversee the internal SOC operations by monitoring security incidents and ensuring prompt analysis and resolution within the defined timeframe, while leading the incident response team in managing and resolving these incidents.
  • Develop strategies to anticipate emerging threats, detect potential attacks, and strengthen the Bank’s defenses, while providing regular updates to top management on new security threats an devolving threat vectors.
  • Evaluating the information security risks and vulnerabilities involved in system changes and launching of new technologies / products / business activities and make appropriate recommendations.
  • Develop meaningful security metrics and reports that accurately reflect the organization’s security posture, enabling informed, risk-based decision-making. Generate actionable, threat-based reports based on security testing results.
  • Continuously research and evaluate emerging security threats and trends, recommending and implementing appropriate security controls.
  • Oversee critical technical functions, including digitalization initiatives, customer data protection, information security aspects etc.

Expected Qualifications

  • The candidate should be a citizen of Sri Lanka.
  • Possess a Bachelor’s degree or a Master’s degree in Information Security or Information Technology specialized in information security by a university or a degree awarding institute recognized by the University Grants Commission of Sri Lanka.       – OR –
  • Possess a Bachelor’s degree or a Master’s degree in Information Technology by a university or a degree awarding institute recognized by the University Grants Commission of Sri Lanka with at least one of the valid below professional certifications. v Certified Information Systems Security Professional (CISSP) v Certified Information Security Manager (CISM) v Certified in Risk and Information Systems Control (CRISC) v Certified Ethical Hacker (CEH)

Required Experience

  • Minimum 03 years proven work experience in information or system security engineering / Security Assessments / SOC Operation and/or related functions / areas.
  • Hands on experience in vulnerability assessments and Penetrations Testing.
  • Working with SIEM technologies are an added advantage.
  • Strong understanding of information security principles, practices, and technologies.
  • Knowledge and experience in E-Commerce, M-Commerce, Payment Card Security, Compliance and regulatory / industry standard certifications. (PCI DSS, ISO 27001, CBSL- Directions)n Sound knowledge on understanding of industry trends, emerging technologies & threats and specific threats targeting financial institutions.
  • Possess excellent analytical and problem solving skills.
  • Possess excellent written and verbal communication skills.

Age

Preferably below 45 years as at the closing date of application

Method of Selection

Shortlisted applicants based on the stipulated qualifications and experience will be called for an interview. The appointment will be made on fixed term contract.

Remuneration

An attractive and negotiable remuneration package commensurate with qualifications and experience will be offered to the selected candidate.

APPLICATIONS

The applicants must fill in the Application form on the Career page of People’s Bank website and send the duly filled application along with Curriculum Vitae and other necessary supportive documents. The post applied for must be clearly stated in the subject line of the Email and must be send to the Email address:itrecruit@peoplesbank.lk on or before 07.10.2025

An Email confirmation of receipt will be sent upon the receipt of the curriculum vitae. In the event a confirmation has not been received within a reasonable period of time, you may inquire regarding the application on telephone numbers 0112481542/0112481416.

All applications will be treated in strict confidentiality and any form of canvassing will be regarded as a disqualification. All incomplete and Non – complying applications will be rejected.

The Bank reserves the right to decide the number of vacancies, postponement or cancellation of recruitment or on any other information not included in the advertisement.

Visit: https://www.peoplesbank.lk