Department Head - IS GRC & IT Security Awareness

𝗪𝗲’𝗿𝗲 𝗛𝗶𝗿𝗶𝗻𝗴!

MCB Islamic Bank is inviting applications for the position of Department Head - IS GRC & IT Security Awareness. Join our growing team to drive business growth and deliver exceptional customer satisfaction.

𝗣𝗼𝘀𝗶𝘁𝗶𝗼𝗻

Department Head - IS GRC & IT Security Awareness

𝗟𝗼𝗰𝗮𝘁𝗶𝗼𝗻

Lahore or Karachi

𝗘𝗱𝘂𝗰𝗮𝘁𝗶𝗼𝗻

Master’s degree in Information Security, Computer Science, Cybersecurity, or a related technical discipline from an HEC recognized university.

𝗘𝘅𝗽𝗲𝗿𝗶𝗲𝗻𝗰𝗲 & 𝗖𝗼𝗺𝗽𝗲𝘁𝗲𝗻𝗰𝗶𝗲𝘀

➡️ A minimum of 10 years of progressive experience in Information Security, with significant exposure to Governance, Risk, and Compliance (GRC), cybersecurity frameworks, and regulatory standards.

➡️ Possession of industry-recognized certifications is required: CISSP, CISM, CRISC, ISO/IEC 27001 Lead Implementer or equivalent.

➡️ Proven ability to communicate complex security issues clearly and effectively to both technical audiences and senior leadership.

➡️ Hands-on experience with security technologies such as Data Loss Prevention (DLP), digital rights management, and information lifecycle management tools is highly desirable.

➡️ Demonstrated expertise in preparing for and facilitating internal and external security audits, assessments, and regulatory inspections.

➡️ Experience in delivering security training and awareness sessions.

𝗝𝗼𝗯 𝗥𝗼𝗹𝗲 & 𝗥𝗲𝘀𝗽𝗼𝗻𝘀𝗶𝗯𝗶𝗹𝗶𝘁𝗶𝗲𝘀

➡️ Lead the development, implementation, and maintenance of cybersecurity frameworks, policies, standards, and procedures to ensure compliance with regulatory and industry requirements.

➡️ Ensure full alignment with legal, regulatory, and global security standards. 

➡️ Collaborate with cross-functional teams to align the Information Security Management System (ISMS) and GRC initiatives with strategic business objectives.

➡️ Demonstrate deep expertise in asset management and data classification frameworks (e.g., ISO/IEC 27001, COBIT, NIST).

➡️ Serve as the primary liaison with auditors, regulators, and external partners to manage compliance obligations and maintain robust, trust-based relationships.

➡️ Contribute to the enterprise incident response strategy, including the development and refinement of detection, response, recovery, and post-incident analysis processes.

➡️ Conduct post-incident reviews to identify lessons learned, mitigate future risks, and enhance the organization’s cyber resilience.

➡️ Design, implement, and manage comprehensive cybersecurity awareness and training programs. 

➡️ Partner closely with IT, cybersecurity operations, legal, and compliance teams to assess and enforce adherence to internal policies and external security standards.

𝗛𝗼𝘄 𝘁𝗼 𝗔𝗽𝗽𝗹𝘆

Qualified candidates are requested to send their resumes by March 29, 2026 to jobs@mcbislamicbank.com for initial screening with the subject line "Application for the position of “Department Head - IS GRC & IT Security Awareness”.