21 Cybersecurity Specialist jobs in Islamabad

Department:

Information Security Reports To:

Head ISRM Job Grade:

SVP Total Positions:

01 Job Location:

Head Office, Islamabad What is Head Data Protection - MMBL? Mobilink Microfinance Bank Limited seeks a visionary and technically proficient Data Protection Officer (DPO) to lead the bank’s enterprise-wide data protection and privacy program. Reporting directly to the Head of Information Security, the DPO will be responsible for establishing the governance, architecture, and operational execution of the Bank’s privacy and data protection obligations. This leadership role will oversee the implementation of a formal Data Protection and Governance Program, manage the lifecycle of sensitive and regulated data, deploy advanced Data Loss Prevention (DLP) systems, and ensure full compliance with relevant State Bank of Pakistan (SBP) regulations, Pakistan’s Personal Data Protection Act (when enacted), and applicable international standards, including ISO/IEC 27001 and PCI DSS. The DPO will serve as the Bank’s authority on privacy, act as a secondary liaison to regulators and law enforcement via the Compliance function, and serve as the internal champion for all privacy-by-design and data accountability initiatives. What Head Data Protection - MMBL Does? Strategic Privacy Program Design & Leadership: Develop, own, and drive the enterprise privacy and data protection strategy in alignment with SBP’s regulatory expectations and international best practices. Establish and operationalize a centralized Data Protection Office, defining its charter, structure, roles, and reporting lines. Define a bank-wide data protection operating model, integrating privacy requirements into enterprise risk management and governance frameworks. Champion data ethics, responsible data handling, and privacy-by-default principles across the organization. Regulatory Compliance & Privacy Risk Management: Ensure continuous compliance with SBP’s Framework on IT Governance and Risk Management, o SBP’s Cybersecurity Framework, o Pakistan’s Personal Data Protection Bill, o ISO/IEC 27001, PCI DSS, and GDPR (where applicable). Act as the bank’s focal point or designated secondary liaison with SBP and other relevant regulatory bodies through the Compliance and Legal departments. Lead Privacy Impact Assessments (PIAs) and Data Protection Impact Assessments (DPIAs) for new systems, products, and processes. Monitor changes in local and global data privacy regulations and proactively adjust compliance strategies. Data Governance & Inventorization: Lead implementation of data classification, tagging, and ownership models across data types and systems. Oversee and maintain accurate and up-to-date Records of Processing Activities (RoPAs) in line with SBP and global privacy standards. Ensure policies for data minimization, retention, disposal, and lifecycle management are in place and enforced. Technology & Data Loss Prevention (DLP) Oversight: Collaborate with IT, SOC, and Information Security teams to ensure privacy-by-design and privacy-by-default in systems architecture. Oversee the deployment, configuration, and monitoring of DLP solutions across all critical data touchpoints—endpoints, email, file storage, and networks. Ensure technical controls are aligned with SBP’s cybersecurity baseline controls. Vendor, Third-Party & Contractual Privacy Assurance: Evaluate third-party vendors, partners, and outsourcing arrangements for privacy and data protection risks. Ensure Data Processing Agreements (DPAs), SLAs, and contractual clauses reflect regulatory and internal privacy requirements. Conduct vendor risk assessments and ensure privacy obligations are embedded in procurement and onboarding processes. Privacy Incident Management & Breach Handling: Develop, maintain, and test the Privacy Incident Response Plan in alignment with SBP’s incident handling guidelines. Maintain a personal data breach register and ensure timely notification to SBP and affected stakeholders in case of qualifying breaches. Work with SOC, IT, and Legal to coordinate breach response and containment. Awareness, Training & Culture Building: Develop and roll out privacy awareness programs, including mandatory and role-specific training modules for staff. Promote a culture of privacy through KPIs, employee engagement campaigns, and executive support. Regularly assess training effectiveness and incorporate feedback from business units. Reporting & Stakeholder Communication: Provide periodic updates to senior management and the Board of Directors on the maturity and effectiveness of the data protection program. Contribute to internal audits and regulatory examinations, ensuring evidence of compliance is maintained and auditable. Generate dashboards and metrics on privacy risks, incident trends, and regulatory compliance status. What are we looking for and what does it require to be Head Data Protection - MMBL? Educational Background: Bachelor’s or Master’s degree in Information Security, Law, Cybersecurity, Risk Management, or related field. Experience: Experience in privacy and security governance. Previous experience in regulatory compliance, risk management, or data protection roles. Technical Proficiency: Certifications (preferred): CDPO (Certified Data Protection Officer) CIPM (Certified Information Privacy Manager) CIPP/E (Certified Information Privacy Professional/Europe) CISA (Certified Information Systems Auditor) CISSP (Certified Information Systems Security Professional) CRISC (Certified in Risk and Information Systems Control) ISO/IEC 27001 Lead Implementer PCI DSS (Payment Card Industry Data Security Standard) knowledge Soft Skills: Strong analytical and problem-solving skills. Excellent communication and stakeholder management skills. Ability to work independently and in teams. About MMBL: Mobilink Microfinance Bank Ltd. is providing banking services to over 48 million registered users including 20+ million monthly active customers across Pakistan. With a hybrid model that combines traditional microfinance with mobile/digital banking technologies, the bank now operates with over 114 branches and 270,000 branchless banking agents and provides a USSD (GSM) based digital channel offering savings, micro enterprise (MSME) loans, small housing loans, remittances, collection (utility bills and loan instalments), mobile wallets, insurance, G2P, B2B & B2P payments; thus, playing a leading role in the promotion of financial inclusion. MMBL is committed to fostering a positive and productive workplace, and our core values reflect this focus. These values include promoting innovation and entrepreneurship, encouraging teamwork and collaboration, and prioritizing a customer-centric approach in all aspects of our business. Why Join MMBL? This is an opportunity for someone who is passionate about making a difference and playing a key role in driving transformative change. Our team is committed to empowering millions with the tools necessary to succeed in the digital age, and we're looking for a talented individual to join us in this endeavour.

#J-18808-Ljbffr

Job Description :

We Are Hiring

NETWORK SECURITY ENGINEER

NOVA is a leading ISP and ICT company delivering innovative solutions and services to corporate and residential clients in Pakistan.

We are hiring Network Security Engineers who can detect, defend, and defeat cyber threats.
At NOVA, you’ll work with advanced security tools, protect high-profile networks, and contribute to innovative ICT solutions for corporate & residential clients.

Why Join NOVA?
Work on challenging real-world security threats
Collaborate with expert NOC & development teams
Competitive benefits & growth opportunitie

Job Specification :

Responsibilities:
• Monitor, detect, and respond to DDoS, brute force, malware, and other attacks
• Harden internal systems and infrastructure against threats
• Manage firewall policies (Fortinet, MikroTik) and IPS/IDS systems
• Conduct periodic vulnerability assessments and penetration testing
• Advise on securing customer and internal data across services
• Work closely with the NOC and development team on incident response

Requirements:
• Experience with SIEM tools, packet analysis, and firewall rule tuning
• Deep understanding of network security and Linux server hardening
• Relevant certifications preferred (CEH, CompTIA Security+, etc.)

Positions: 2
Experience: 2+ years in a cybersecurity or SOC role

#J-18808-Ljbffr

Job Description : We Are Hiring NETWORK SECURITY ENGINEER NOVA is a leading ISP and ICT company delivering innovative solutions and services to corporate and residential clients in Pakistan. We are hiring Network Security Engineers who can detect, defend, and defeat cyber threats. At NOVA, you’ll work with advanced security tools, protect high-profile networks, and contribute to innovative ICT solutions for corporate & residential clients. Why Join NOVA? Work on challenging real-world security threats Collaborate with expert NOC & development teams Competitive benefits & growth opportunitie Job Specification : Responsibilities: • Monitor, detect, and respond to DDoS, brute force, malware, and other attacks • Harden internal systems and infrastructure against threats • Manage firewall policies (Fortinet, MikroTik) and IPS/IDS systems • Conduct periodic vulnerability assessments and penetration testing • Advise on securing customer and internal data across services • Work closely with the NOC and development team on incident response Requirements: • Experience with SIEM tools, packet analysis, and firewall rule tuning • Deep understanding of network security and Linux server hardening • Relevant certifications preferred (CEH, CompTIA Security+, etc.) Positions: 2 Experience: 2+ years in a cybersecurity or SOC role

#J-18808-Ljbffr

As a Security Analyst, you play a critical role in protecting our organization from cyber threats. Your expertise in threat hunting, incident response, and vulnerability assessments ensures our digital infrastructure remain secure.

Employment:

Full Employment Market Competitive

City:

Experience:

3 years

Schedule::

Full Time Responsibilities:

• Monitor threats to an organization’s IT infrastructure.
•  Utilize and adhere to defined workflow and processes driving the response and mitigation efforts.
•  Collect relevant artifacts in support of incident response activities.
•  Conduct technical analysis on impacted systems to determine impact, scope, and recovery from active and potential cyber incidents.
• Work closely with IT teams to analyze logs and monitor dashboards.
• Escalate and investigate security incidents.
• Evaluate system weaknesses and recommend improvements.
• Strengthen our defenses against potential attacks.

Requirements:

• Bachelor’s degree in computer science or equivalent in work experience.
• Solid communication (Verbal, Written) and interpersonal skills.
• Ability to work independently and provide guidance to new staff on the team.
• Microsoft Sentinel.
• Microsoft O365 Security – OCAS.

What's in it for you?

• You will have the freedom to unleash your creativity. Design intuitive interfaces, delightful interactions, and visually stunning experiences.
• Exposure to multiple functions and teams.
• A great opportunity to work closely on international projects and clients.
• we offer endless opportunities for continuous learning. Join us, and let’s grow together!

#J-18808-Ljbffr

As a Security Analyst, you play a critical role in protecting our organization from cyber threats. Your expertise in threat hunting, incident response, and vulnerability assessments ensures our digital infrastructure remain secure. Employment: Full Employment

Market Competitive

City: Experience: 3 years

Schedule:: Full Time

Responsibilities:

Monitor threats to an organization’s IT infrastructure. Utilize and adhere to defined workflow and processes driving the response and mitigation efforts. Collect relevant artifacts in support of incident response activities. Conduct technical analysis on impacted systems to determine impact, scope, and recovery from active and potential cyber incidents. Work closely with IT teams to analyze logs and monitor dashboards. Escalate and investigate security incidents. Evaluate system weaknesses and recommend improvements. Strengthen our defenses against potential attacks. Requirements:

Bachelor’s degree in computer science or equivalent in work experience. Solid communication (Verbal, Written) and interpersonal skills. Ability to work independently and provide guidance to new staff on the team. Microsoft Sentinel. Microsoft O365 Security – OCAS. What's in it for you?

You will have the freedom to unleash your creativity. Design intuitive interfaces, delightful interactions, and visually stunning experiences. Exposure to multiple functions and teams. A great opportunity to work closely on international projects and clients. we offer endless opportunities for continuous learning. Join us, and let’s grow together!

#J-18808-Ljbffr

Overview

Company Overview: Zones – First Choice for IT. Zones is a Global Solution Provider of end-to-end IT solutions with an unmatched supply chain. Zones, a Minority Business Enterprise (MBE) with over 35 years in business, specializes in Digital Workplace, Cloud & Data Center, Networking, Security, and Managed/Professional/Staffing services. Operating in more than 120 countries, Zones partners with Microsoft, Apple, Cisco, Lenovo, Adobe, and more to build digital infrastructures that change how business operates.

Position Overview

As the Information Security Analyst - Compliance & Risk Management, you will analyze management and technical controls to ensure compliance with security requirements. This includes mapping regulatory and security requirements across the information security framework, tracking enterprise compliance across multiple security frameworks, assisting internal teams for internal and external assessments and audits, collaborating on IT projects to address security policy and risk issues, and developing key performance metrics to track and ensure compliance with policies and standards.

Responsibilities

• Analyze management and technical controls to ensure specific security and compliance requirements are met.
• Map regulatory and security requirements across the information security framework.
• Track enterprise compliance across multiple security frameworks including ISO27001, 27701, SOC2, GDPR, and PCI-DSS; maintain up-to-date records of requirements and mitigating controls.
• Assist internal teams with readiness for internal/external assessments and audits against industry standards; review programs/documentation for conformance.
• Collaborate on critical IT projects to ensure security policy and risk issues are addressed throughout the project life cycle.
• Develop key performance metrics to track and ensure compliance with established policies and standards.

Qualifications / What you will bring to the team

• 5-7 years of information security experience.
• Experience with ISO 27001, SOC 2, and PCI-DSS compliance.
• Strong communication skills (verbal and written).
• Ability to meet deadlines and work under pressure.
• Experience of working in US-based multinational organizations is a plus.
• Security certifications such as CISSP/CISA, ISO27001.
• Extensive experience auditing vendors/service providers/partners for security compliance.
• Experience working with Engineering teams (system admin, network admin, security admin, application teams) to effectively communicate compliance requirements.
• Bachelor’s degree in Computer Science or Information Technology.

Benefits

Zones offers a comprehensive Benefits package. At Zones, we are committed to fostering an inclusive and diverse workplace where every team member is valued and supported. We offer life insurance, optional health insurance, and retirement benefits in line with Company policy. Employees also enjoy additional perks such as the Voluntary Pension Scheme, EOBI, complimentary meals, and access to our in-house gym.

Equal Opportunity

We take pride in being an equal opportunity employer and remain dedicated to maintaining a workplace free from discrimination of any kind. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or disability.

Job timings

08:00 PM to 05:00 AM (Pk time)

#J-18808-Ljbffr

Information Security Analyst – Compliance & Risk Management

Join to apply for the Information Security Analyst – Compliance & Risk Management role at Zones IT Solutions

Information Security Analyst – Compliance & Risk Management

Join to apply for the Information Security Analyst – Compliance & Risk Management role at Zones IT Solutions

Get AI-powered advice on this job and more exclusive features.

Description

Company Overview:

When it comes to IT solution providers, there are a lot of choices. But when it comes to providers with innovative and differentiating end-to-end service offerings, there’s really only one: Zones – First Choice for IT.TM

Zones is a Global Solution Provider of end-to-end IT solutions with an unmatched supply chain. Positioned to be the IT partner you need, Zones, a Minority Business Enterprise (MBE) in business for over 35 years, specializes in Digital Workplace, Cloud & Data Center, Networking, Security, and Managed/Professional/Staffing services. Operating in more than 120 countries, leveraging a robust portfolio, and utilizing the highest certification levels from key partners, including Microsoft, Apple, Cisco, Lenovo, Adobe, and more, Zones has mastered the science of building digital infrastructures that change the way business does business ensuring whatever they need, they can Consider IT Done. Follow Zones, LLC on Twitter @Zones, and LinkedIn and Facebook.

Position Overview

As the Information Security Analyst - Compliance & Risk Management, you will analyze management and technical controls to ensure compliance with security requirements. This includes mapping regulatory and security requirements across the information security framework and tracking enterprise compliance across multiple security frameworks. You will also assist internal teams in preparing for internal and external assessments and audits, collaborate on critical IT projects to address security policy and risk issues, and develop key performance metrics to track and ensure compliance with policies and standards.

What you’ll do as the Information Security Analyst – Compliance & Risk Management:

Employees employed in the role of Information Security Analyst – Compliance & Risk Management shall be required to apply their independent mind and demonstrate intellectual abilities in their decision-making.

The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• Analyze management and technical controls to ensure specific security and compliance requirements are met.
• Map regulatory/security requirements across the information security framework.
• Track enterprise compliance across multiple security frameworks including ISO27001, 27701, SOC2, GDPR, and PCI-DSS, maintaining up-to-date records of requirements and corresponding mitigating controls.
• Help internal teams with readiness for internal/external assessments/audits against industry standards and review programs/documentation for conformance.
• Collaborate on critical IT projects to ensure that security policy/risk issues are addressed throughout the project life cycle.
• Develop key performance metrics to track and ensure compliance with established policies and standards.
  
  

What You Will Bring To The Team

• 5-7 years of information security experience.
• Experience with ISO 27001, SOC 2, and PCI-DSS compliance.
• Strong communication skills (verbal and written).
• Ability to meet deadlines and work under pressure.
• Experience of working in US-based multinational organizations is a plus.
• Security certifications such as CISSP/CISA, ISO27001.
• Extensive experience with auditing vendors/service providers/partners for compliance with security.
• Experience of working extensively with the Engineering teams (system admin, network admin, security admin, application teams) to effectively communicate the compliance requirements
• Bachelor’s degree in Computer Science or Information Technology.
  
  

Zones offers a comprehensive Benefits package

At Zones, we are committed to fostering an inclusive and diverse workplace where every team member is valued and supported. We offer a comprehensive benefits package that includes employee life insurance, health coverage for employees, spouse, and children, along with optional discounted coverage for parents. Additional benefits include, Voluntary Pension Fund Scheme, EOBI, complimentary meals, and access to an in-house gym.

We take pride in being an equal opportunity employer and are dedicated to maintaining a workplace free from discrimination of any kind. If you're passionate about driving innovation in IT, sales, engineering, or operations, Zones provide a dynamic and collaborative environment to grow your career.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin or on the basis of disability.

Job timings: 08:00 PM to 05:00 AM (Pk time)

Seniority level

• Seniority level Not Applicable

Employment type

• Employment type Full-time

Job function

• Job function Information Technology
• Industries Computer Hardware Manufacturing, Software Development, and IT Services and IT Consulting

Referrals increase your chances of interviewing at Zones IT Solutions by 2x

Sign in to set job alerts for “Information Security Analyst” roles.

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

Information Security Analyst – Compliance & Risk Management

Join to apply for the

Information Security Analyst – Compliance & Risk Management

role at

Zones IT Solutions Information Security Analyst – Compliance & Risk Management

Join to apply for the

Information Security Analyst – Compliance & Risk Management

role at

Zones IT Solutions Get AI-powered advice on this job and more exclusive features. Description

Company Overview:

When it comes to IT solution providers, there are a lot of choices. But when it comes to providers with innovative and differentiating end-to-end service offerings, there’s really only one: Zones – First Choice for IT.TM

Zones is a Global Solution Provider of end-to-end IT solutions with an unmatched supply chain. Positioned to be the IT partner you need, Zones, a Minority Business Enterprise (MBE) in business for over 35 years, specializes in Digital Workplace, Cloud & Data Center, Networking, Security, and Managed/Professional/Staffing services. Operating in more than 120 countries, leveraging a robust portfolio, and utilizing the highest certification levels from key partners, including Microsoft, Apple, Cisco, Lenovo, Adobe, and more, Zones has mastered the science of building digital infrastructures that change the way business does business ensuring whatever they need, they can Consider IT Done. Follow Zones, LLC on Twitter @Zones, and LinkedIn and Facebook.

Position Overview

As the Information Security Analyst - Compliance & Risk Management, you will analyze management and technical controls to ensure compliance with security requirements. This includes mapping regulatory and security requirements across the information security framework and tracking enterprise compliance across multiple security frameworks. You will also assist internal teams in preparing for internal and external assessments and audits, collaborate on critical IT projects to address security policy and risk issues, and develop key performance metrics to track and ensure compliance with policies and standards.

What you’ll do as the Information Security Analyst – Compliance & Risk Management:

Employees employed in the role of Information Security Analyst – Compliance & Risk Management shall be required to apply their independent mind and demonstrate intellectual abilities in their decision-making.

The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Analyze management and technical controls to ensure specific security and compliance requirements are met. Map regulatory/security requirements across the information security framework. Track enterprise compliance across multiple security frameworks including ISO27001, 27701, SOC2, GDPR, and PCI-DSS, maintaining up-to-date records of requirements and corresponding mitigating controls. Help internal teams with readiness for internal/external assessments/audits against industry standards and review programs/documentation for conformance. Collaborate on critical IT projects to ensure that security policy/risk issues are addressed throughout the project life cycle. Develop key performance metrics to track and ensure compliance with established policies and standards.

What You Will Bring To The Team

5-7 years of information security experience. Experience with ISO 27001, SOC 2, and PCI-DSS compliance. Strong communication skills (verbal and written). Ability to meet deadlines and work under pressure. Experience of working in US-based multinational organizations is a plus. Security certifications such as CISSP/CISA, ISO27001. Extensive experience with auditing vendors/service providers/partners for compliance with security. Experience of working extensively with the Engineering teams (system admin, network admin, security admin, application teams) to effectively communicate the compliance requirements Bachelor’s degree in Computer Science or Information Technology.

Zones offers a comprehensive Benefits package

At Zones, we are committed to fostering an inclusive and diverse workplace where every team member is valued and supported. We offer a comprehensive benefits package that includes employee life insurance, health coverage for employees, spouse, and children, along with optional discounted coverage for parents. Additional benefits include, Voluntary Pension Fund Scheme, EOBI, complimentary meals, and access to an in-house gym.

We take pride in being an equal opportunity employer and are dedicated to maintaining a workplace free from discrimination of any kind. If you're passionate about driving innovation in IT, sales, engineering, or operations, Zones provide a dynamic and collaborative environment to grow your career.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin or on the basis of disability.

Job timings: 08:00 PM to 05:00 AM (Pk time) Seniority level

Seniority level Not Applicable Employment type

Employment type Full-time Job function

Job function Information Technology Industries Computer Hardware Manufacturing, Software Development, and IT Services and IT Consulting Referrals increase your chances of interviewing at Zones IT Solutions by 2x Sign in to set job alerts for “Information Security Analyst” roles.

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

Deputy Manager Networks & Information Security

Bachelor’s degree in Computer Science, Information Technology, or related field; relevant certifications are a plus.

Menzies Aviation is a leading player in the Defense & Space industry, dedicated to providing critical logistics services at 8 airports across Pakistan. Our values—People, Passion, Pride—shape our commitment to safety and security. We are seeking a Deputy Manager Networks with 5 years of experience to join our dynamic team in Islamabad.

Responsibilities :

1. Oversee network operations, ensuring efficient and secure data flow.
2. Collaborate with cross-functional teams to implement network solutions.
3. Monitor network performance and troubleshoot issues proactively.
4. Develop and maintain documentation of network configurations.
5. Ensure compliance with regulatory standards and company policies.

Job Specification

- Strong knowledge of network protocols, design, and security.
- Proficiency in networking tools and software.
- Excellent problem-solving and communication skills.
- Experience in managing projects and leading teams.
- Familiarity with industry regulations related to defense and space.

#J-18808-Ljbffr