The National Bank of Pakistan (NBP), one of the leading and largest financial institutions in the country, is committed to fostering sustainable growth, inclusive development, and socioeconomic progress. With a robust national and international network of branches, NBP continues to enhance the financial well-being of the nation and drive transformation into a future-ready, agile, and sustainable bank.

NBP is currently seeking dynamic, talented, and experienced professionals to join its team in the Risk Management (Information Security) domain. The positions are based in Karachi and provide a challenging yet rewarding opportunity for individuals passionate about contributing to the bank's mission of providing secure and innovative banking solutions.

There are two critical positions open:

1. Department Head – Infrastructure Security Review (AVP/VP):

   • Key Responsibilities: Leading the infrastructure security review function, conducting security assessments, developing security standards, and collaborating with stakeholders for seamless security integration across the bank's infrastructure. This role also involves mentoring a team and staying updated with emerging technologies.
   • Qualifications: Graduation or equivalent from an HEC-recognized institute, preferably with a Bachelor's or Master's in Computer Science, Information Systems, or related fields. Relevant professional certifications are preferred.
   • Experience: A minimum of 6 years in IT or Information Security, with at least 3 years focused on infrastructure security management, assessment, and review.

2. Incident Team Manager (OG-I/AVP):

   • Key Responsibilities: Handling organization-wide incident detection and response, ensuring readiness for security incidents, and maintaining comprehensive records of Information Security Incidents. The role also involves preparing root-cause analysis reports and collaborating across business groups for efficient incident management.
   • Qualifications: Similar academic requirements as for the Department Head position.
   • Experience: A minimum of 4 years in IT or Information Security, including 2 years in incident monitoring and response.

Both positions require candidates with strong knowledge of Information Security practices, SBP guidelines, analytical skills, and team management capabilities.

The roles are contractual, with a potential renewal upon satisfactory performance.