Job Description

VACANCY

We are a subsidiary of Sri Lanka’s leading private commercial bank Hatton National Bank PLC, and a leader in the finance industry with an immaculate record of over 24 years, offering a diversified portfolio of financial services catering to a multitude of sectors through an integrated network of 79 branches across the island. We are ranked among the top 100 most valuable consumer brands in Sri Lanka by Brand Finance. In view of our growth expectations, we seek highly motivated, dynamic and result oriented individuals to join our organization.

CHIEF INFORMATION SECURITY OFFICER

Key Responsibilities

• Develop and maintain an information security framework aligned with CBSL guidelines, ISO/IEC 27001, and best practices by updating policies and procedures.
• Conduct annual reviews & risk assessments for continuous improvement while ensuring mitigation, monitor IT compliance, and deliver quarterly security updates to the board.
• Conducted security reviews, publish management reports with follow-ups, and maintain dashboards for audit findings and penetration test results.
• Deploy both detective and preventive security controls, execute annual security testing programs, and address compliance gaps identified through assessments.
• Resolve security incidents within SLAs, analyze root causes, implement corrective actions, and test response plans regularly.
• Achieve full compliance with regulatory requirements, submit audit reports on time, and securely preserve records as required.
• Report key cybersecurity risks and strategic plans to senior management, secure executive buy-in, and establish partnerships with third-party security providers.
• Execute daily security operations, monitor alerts to ensure timely remediation, and consistently achieve annual security objectives.
• Conduct necessary awareness sessions annually to ensure a protected security frame work within the organization.
• Ensure competitive ISO team recruited and retained within the organization.

Candidate Profile

• Bachelor’s or Master’s degree in Information Security, Computer Science, or a related IT field with a specialization in Information Security.
• Minimum of 4 years of hands-on experience in cybersecurity, risk management, and compliance.
• Strong analytical and leadership abilities, with a proven track record of protecting organizational assets and improving security frameworks.
• Industry-recognized certifications such as CISSP, CISM, or equivalent credentials are highly desirable.
• Proficiency in identifying and mitigating security risks, implementing security policies, and ensuring regulatory compliance.
• Excellent problem-solving skills with the ability to work in a fast-paced and evolving security landscape.
• Strong communication and collaboration skills to effectively work with cross-functional teams.

This position offers an attractive remuneration package, including fringe benefits as stipulated by HNB FINANCE PLC.

Interested candidates are invited to send their cover letter and an updated resume along with details of two non-related referees, to the address stated below or [email protected] within 10 days of the advertisement.

DGM - Human Resources / CHRO
HNB FINANCE PLC
No.168,Nawala Road, Nugegoda, Sri Lanka.
Tel: 011 202 4848
Email: [email protected]

Similar Jobs

UB Finance PLC

Chief Information Security Officer

• Colombo
• Full Time
• 5 days ago

Colombo Stock Exchange

Associate Engineer - Information Security

• Sri Jayawardenepura Kotte
• Full Time
• 3 days ago