Digital Program Specialist – Cyber Security Operations (5726)

The Asian Infrastructure Investment Bank (AIIB) is a multilateral development bank whose mission is Financing Infrastructure for Tomorrow in Asia and beyond—infrastructure with sustainability at its core. We began operations in Beijing in 2016 and have since grown to 109 approved members worldwide. We are capitalized at USD100 billion and AAA-rated by the major international credit rating agencies. Collaborating with partners, AIIB meets clients’ needs by unlocking new capital and investing in infrastructure that is green, technology-enabled and promotes regional connectivity.

The Information Technology Department (ITD) is looking for a Digital Program Specialist for cybersecurity operations. The cybersecurity function is the first line of defense to protect AIIB against cyberattacks on its entire digital landscape and to prevent it from suffering financial losses and reputational damage.

The Digital Program Specialist should be an experienced and vigilant cybersecurity specialist who can proactively prevent breaches of all sizes, understand when they occur, and take immediate steps to remediate them. They should have an excellent understanding of cybersecurity standards and frameworks, extensive knowledge of how cybercriminals work, and the determination to never let them in. 

The Digital Program Specialist will help keep cybercrime at bay, using their expertise and analytical skills to monitor the Bank’s digital infrastructure systems at all points of contact, ferret out malware and ransomware events, and recommend and implement solutions for system vulnerabilities. They will create and manage measures to safeguard AIIB’s information and systems from cyber threats based on industry-accepted frameworks and following AIIB’s policies and legal requirements. 

Responsibilities:

•    Manage the Security Operations Center (SOC) and lead a hybrid team of both in-house and outsourced security professionals. 
•    Coordinate and manage the response to security incidents, ensuring timely and effective resolution.
•    Oversee the monitoring of security alerts and incidents, analyzing trends and patterns to improve security posture. 
•    Stay current with the latest cybersecurity trends and technologies, and implement improvements to the SOC’s processes and tools.
•    Prepare regular cybersecurity reports and assessments as required by Management.
•    Ensure that any actions to address gaps or weaknesses are appropriately assigned and completed in a timely manner to maintain cybersecurity.
•    Oversee overall compliance with relevant cybersecurity requirements, supporting audits, and control testing on cybersecurity.
•    Address human factors in implementing AIIB’s cybersecurity measures, including but not limited to informing end-users about security measures, ensuring the Bank is appropriately trained on all cybersecurity matters, etc.
•    Serve as the domain expert for cybersecurity prevention, response, and recovery.
 

Requirements:

•    Demonstrated knowledge of information security principles, practices, and regulations, including knowledge of International Security Frameworks and Standards (ISO/IEC 27000 Series, COBIT, and NIST Cyber Security Framework).
•    Strong hands-on experience with information security systems, including but not limited to end-point security, email security, infrastructure and network security, cloud security, data and application security.
•    Proven track record of managing outsourced Security Operations Centers (SOC) and/or Managed Security Service (MSS) vendors, efficiently handling incident response activities to ensure timely resolution and minimal business impact.
•    Demonstrated ability to quickly mobilize and coordinate resources, including personnel and technology, during cybersecurity incidents.
•    Proven ability to remain calm and focused under high-pressure situations, is capable of making quick, informed decisions during cybersecurity incidents.
•    Experience in fostering a cooperative environment, ensuring that all relevant stakeholders are informed and engaged in the incident response process.
•    Technical certifications including CISSP, CISM, CISA, CEH would be an advantage.
•    High proficiency and command of English, and with strong writing and oral presentation skills.
•    Strong managerial and interpersonal skills to promote and strengthen teamwork environment.
•    Minimum of 5 years of relevant experience in a cybersecurity operations role, and having at least 2 years in a managerial position would be an advantage.
•    Bachelor’s degree or equivalent in related fields.

AIIB is committed to diversity, transparency, and inclusion. We believe our strength comes from having a team with the right diverse skills, experiences and abilities selected through a merit-based competitive process. We actively encourage applications from people from both within and outside AIIB members, regardless of nationality, religion, gender, race, disability, or sexual orientation.

Join in AIIB’s mission to promote sustainable infrastructure investments and to improve social and economic outcomes in Asia and beyond.

Previous experience and qualifications will determine the grade and job title at which successful applicants will enter AIIB.