35 Threat Management jobs in Pakistan

Some careers shine brighter than others.

If you’re looking for a career that will help you stand out, join HSBC and fulfill your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support, and rewards that will take you further.

HSBC is one of the largest banking and financial services organizations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people fulfill their hopes and realize their ambitions.

We are currently seeking an experienced professional to join our team as an IT Security Analyst.

In this role, you will:

1. Collaborate closely with global and regional teams across different functions regarding log monitoring strategy, operating model, implementation, and service delivery.
2. Perform process gap analysis, document findings as MSII, and drive closure.
3. Interact with project managers, business analysts, and developers, detailing business requirements and driving quality end-to-end automation in an agile manner.
4. Lead initiatives to improve adherence to IT service controls and key service management indicators.
5. Provide regular and timely updates to management on progress, highlighting key challenges that may require escalation.
6. Deliver log monitoring services in accordance with Service Level Agreements (SLAs) and Performance Level Agreements (PLAs).
7. Prepare and share weekly/monthly performance reports with management and analyze trends.
8. Participate in internal and external security audits and assessments.
9. Work with key stakeholders to resolve queries/escalations, thereby improving customer satisfaction.

Network Department, Lahore Apply By Jan 5, 2025

We are looking for a skilled Information Security Analyst to protect our organization's information assets and maintain the integrity of our systems.

In this role, you will monitor network security, assess risks, and identify potential threats while conducting thorough incident response.

• A strong understanding of cyber-security tools, compliance regulations, and risk mitigation strategies is essential.
• The ideal candidate will demonstrate excellent analytical abilities and a proactive mindset towards evolving security challenges.
• As this position does not involve managing a team, the emphasis is placed on individual contributions to securing the organization's digital landscape.
• Monitor network and system activities for potential security threats and breaches.
• Conduct risk assessments to identify vulnerabilities in our infrastructure and data.
• Implement security measures, including firewalls and intrusion detection systems, to safeguard sensitive information.
• Perform regular audits of security protocols and compliance with regulatory requirements.
• Analyze security incidents to determine root causes and develop strategies for prevention.
• Utilize various security tools, including SIEM systems, to enhance threat detection capabilities.
• Execute penetration testing to evaluate the effectiveness of existing security measures.
• Collaborate with other teams to address security issues and implement best practices.
• Prepare detailed reports on security incidents and assessment findings for stakeholders.
• Stay updated on the latest security trends, vulnerabilities, and regulatory changes to improve the organization's security posture.

Required Skills:

Information Technology

Category: Computer Networking

Job Type: Full Time/Permanent (First Shift (Day))

• Position: Information Security Analyst - Faisalabad, Pakistan

The Information Security Analyst will be responsible for maintaining and enhancing the security of our company's information systems in Faisalabad, Pakistan. This includes conducting risk assessments, implementing security measures, monitoring for potential threats, and responding to security incidents.

The ideal candidate should have a strong understanding of information security principles and experience with various security tools and technologies. They should also possess excellent problem-solving skills and the ability to work well under pressure.

This position offers a competitive salary of $1700 and includes accommodation and visa sponsorship . We welcome applications from qualified individuals of any gender.

Note: This job has no reviews yet. You can be the first to review!

We are seeking a highly skilled and motivated Information Security Analyst to join our team. The successful candidate will be responsible for ensuring the security and integrity of the bank's infrastructure. This role involves identifying vulnerabilities, implementing security measures, and responding to security incidents. The ideal candidate will have a strong background in cybersecurity, excellent problem-solving skills, and the ability to work in a fast-paced environment.

1. Monitor network traffic and systems for security breaches or intrusions.
2. Respond to and investigate security incidents, performing root cause analysis and implementing corrective measures.
3. Develop and maintain incident response protocols and procedures.

1. Conduct regular vulnerability assessments and penetration testing on infrastructure components.
2. Collaborate with IT teams to remediate identified vulnerabilities.
3. Keep abreast of the latest security vulnerabilities and threats.

1. Design and implement security solutions to protect infrastructure from cyber threats.
2. Develop and enforce security policies, standards, and best practices.
3. Ensure secure configuration and hardening of network devices, servers, and applications.

1. Ensure compliance with industry standards and regulations (e.g., ISO 27001, PCI-DSS, NIST, GDPR, etc).
2. Perform risk assessments and develop mitigation strategies.
3. Maintain documentation of security policies, procedures, and incidents.

1. Work closely with IT, DevOps, and other departments to integrate security into infrastructure projects.
2. Provide security training and awareness programs for employees.
3. Communicate effectively with management and stakeholders regarding security issues and initiatives.

1. Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
2. At least 4-5 years of experience in infrastructure security or a related role.
3. Strong understanding of network protocols, firewalls, VPNs, IDS/IPS, and SIEM solutions.
4. Proficiency in security tools such as Nessus, Metasploit, Wireshark, and other vulnerability management tools.
5. Experience with cloud security (AWS, Azure, Google Cloud) and securing virtual environments.
6. Relevant certifications such as CISSP, CISM, CEH, or similar are highly desirable.
7. Excellent analytical, problem-solving, and communication skills.
8. Ability to work independently and as part of a team in a fast-paced environment.

1. Private Health Insurance
2. Training & Development

The Cloud & Information Security Analyst is primarily responsible for ensuring the security of our On-premises & Cloud-based infrastructure and Information Systems. The incumbent will play a critical role in identifying potential security risks, implementing measures to mitigate those risks, and maintaining compliance with industry regulations and best practices. The ideal candidate will have a strong background in cloud infrastructure, information security, and risk management.

• Evaluate and assess the security posture of On-premises & cloud-based infrastructure, applications, and services.
• Assess and implement security tools & controls for Cloud platforms, such as AWS, Azure, or Google Cloud to enhance the organization's security posture.
• Configure and monitor On-premises & cloud security tools and services, including firewalls, IAM (Identity and Access Management policies & permissions).
• Perform network administrative functions for WAN connectivity, International Sites and Multi-Homing Internet Gateways. Working with international and local carriers/ISPs for global peering and circuit installations.
• Create Policies, Custom-Categories, URL Filtering and add/remove URLs from local categories on Palo Alto (5050, 3020, 200, Panorama) and Cisco ASA (5510, 5515, 5525x, 5545x).
• Monitor network through Cacti and firewall. Manage Firewall, VPN and security profiles.
• Hands-on experience with Cisco and Dell Managed switch series.
• Develop, implement, and maintain information security policies, procedures, and standards.
• Maintain InfoSec records as per ISO 27001 standards.
• Lead & facilitate ISO ISMS 27001 (2013 & 2022) Information security assessments and audits (Internal & External).
• Collaborate with cross-functional teams to prepare for audits, address security concerns, and provide recommendations.
• Conduct regular security audits and vulnerability assessments to identify potential threats and vulnerabilities.
• Stay up to date on emerging security threats, vulnerabilities, and industry best practices.
• Provide guidance and support to internal teams, and conduct security awareness training.
• Contribute to the continuous improvement of the organization's security posture through risk analysis and mitigation strategies.
• Monitor and analyze security alerts and events to identify and respond to security incidents.
• Document security incidents and their resolution for future reference.
• Manage M365 Infrastructure (Microsoft Admin Center, Intune) & Apps (SharePoint, OneDrive, Exchange, Teams).

• Must have CCNA, ideally CCNP | Fortinet NSE | Palo Alto PCNSA
• Must be well-versed with ISO 27001:2013 & ISO 27001:2022 Standards.
• Experience with regulatory compliance frameworks such as HIPAA, NIST, or GDPR, is a plus.
• Proven experience in cloud computing platforms such as Amazon Web Services (AWS), Microsoft Azure, or Google Cloud Platform (GCP).
• Knowledge of scripting languages (e.g., SQL, PowerShell) for automation and orchestration is a plus.
• Must be energetic, motivated, and creative for project implementation and support.
• Bachelor’s degree, preferably in Computer Science.
• 2+ years of experience in Leading Information Security Audits.
• 2-3+ years of experience in Cloud & On-premises Infrastructure, Network & System Administration.

We are seeking applications for the position of Assistant Manager/Officer - Operational Risk. Interested candidates meeting the following criteria are encouraged to apply online.

• Qualification: Minimum Graduation Degree. Preferably Masters from HEC recognized universities / institutions.
• Experience: Minimum 2 years of relevant experience.
• Job Location: Head Office, Islamabad.

Responsibilities:

• To assist Head of Risk in development of operational risk policies and standards for risk management.
• To implement a strategic plan to prevent, eliminate & mitigate operational risk in Systems, Processes and People.
• Assist in identifying & evaluating risk across the operational activities and provide support to mitigate. Maintaining a log of identified risk, including their likelihood and impact.
• Conducting department wise Operations Risk Assessment vis-s-vis Internal Controls & Procedures on monthly basis and identify any discrepancy for info of Management.
• Periodically reviewing risk management policies in place and testing of key controls to ensure the process effectiveness.
• Prepare and update Risk Control Self-Assessment (RCSA) based on the process on yearly basis as required.
• Keep abreast of latest operational risk management techniques in industry as best practices.
• Coordinate with senior management in performing operational risk reviews through various in house meetings.
• Maintaining comprehensive records of risk management activities, decisions, and outcomes.
• Investigate root causes of operational risks and provide support to mitigate risk through quarterly GAP analysis.
• Hold operational risk committee meetings and prepare notes on monthly basis.
• To maintain the database related to Operational Loss Data.
• Supervise and manage safe (holding gold based collaterals) keys operations and ensuring adherence to business policies.
• Supervise and manage the selection of panel Gold Smith.
• Any other task assigned by Management.

Please apply online latest by May 23, 2025

We are seeking applications for the position of Assistant Manager/Officer - Operational Risk. Interested candidates meeting the following criteria are encouraged to apply online.

• Qualification: Minimum Graduation Degree. Preferably Masters from HEC recognized universities / institutions.
• Experience: Minimum 2 years of relevant experience.
• Job Location: Head Office, Islamabad.

Responsibilities:

• To assist Head of Risk in development of operational risk policies and standards for risk management.
• To implement a strategic plan to prevent, eliminate & mitigate operational risk in Systems, Processes and People.
• Assist in identifying & evaluating risk across the operational activities and provide support to mitigate. Maintaining a log of identified risk, including their likelihood and impact.
• Conducting department wise Operations Risk Assessment vis-s-vis Internal Controls & Procedures on monthly basis and identify any discrepancy for info of Management.
• Periodically reviewing risk management policies in place and testing of key controls to ensure the process effectiveness.
• Prepare and update Risk Control Self-Assessment (RCSA) based on the process on yearly basis as required.
• Keep abreast of latest operational risk management techniques in industry as best practices.
• Coordinate with senior management in performing operational risk reviews through various in house meetings.
• Maintaining comprehensive records of risk management activities, decisions, and outcomes.
• Investigate root causes of operational risks and provide support to mitigate risk through quarterly GAP analysis.
• Hold operational risk committee meetings and prepare notes on monthly basis.
• To maintain the database related to Operational Loss Data.
• Supervise and manage safe (holding gold based collaterals) keys operations and ensuring adherence to business policies.
• Supervise and manage the selection of panel Gold Smith.
• Any other task assigned by Management.

Please apply online latest by May 23, 2025

Dear All,

We are looking to hire Asst. Manager Risk Management - Financial Services

Job description:

Assist Head of Risk Management in overall implementation of Enterprise Risk Management framework

Identification of key risk areas, key risks involved therein, mapping of these with internal controls and identification of gaps. Preparation & maintenance of Risk Inventory Register in line with Risk Appetite.

Ensure compliance with Risk Management Policies & Procedures. Assist Head of Risk Management in developing various risk assessment and risk monitoring tools. Liaison and conduct regular meetings with stakeholders including Compliance, IT, Business, Operations, etc. to monitor effective implementation of risk management framework and identify areas of improvement. Conduct periodic risk reviews to assess compliance with risk management framework. Assist Head of Risk Management in developing Risk management dashboards and MIS for management review. Keep abreast of latest developments in the field of risk management and suggest market best practices for management review and adoption in the risk management framework.

Requirement:

Age Limit: 25 to 35

Gender: Male

Experience: Have specific working experience of at least 2 years in Risk Management function (preferably in a bank or Fintech company) and overall experience of at least 3-4 years.

Skills: Have good interpersonal and communication skills, Be proficient in MS Office, Be able to multitask with the ability to set priorities as per the given situation and Be proactive and self-starter with ability and desire to improve effectiveness.