Sr. IT Security Risk Officer

Full Time
Kabul, FMFB-A, Head Office
Posted 3 weeks ago

About FMFB-A:

As a background, FMFB-A started its operation in 2004 and is part of the Aga Khan Agency for Microfinance (AKAM), which has financial institutions operating in different countries throughout the world. It is affiliated with the Aga Khan Development Network (AKDN), a group of development agencies working in health, education, culture and rural economic development.

Job Details:

TitleSr. IT Security Risk Officer# of Vacancies1
NationalityAfghanGrade, SalaryAs per the Bank salary scale
TypeFull-timeClosing dateApril 11, 2024
DurationPermanentLocationKabul, Risk Management Department
Vacancy ID.FMFB-HR-0036-2024GenderMale / Female

Duties and responsibilities:

  • Responsible for overseeing information security risk, cybersecurity risk and IT risk management program at the second line of defense.
  • Proactive identification and mitigation of IT risks by conducing periodic independent risk   assessment of IT and recommend mitigating controls for the identified risks/process gaps.
  • Develop and implement to security risk framework, policies, procedure and tools.
  • Ensure that the risk to the Bank`s information Technology posed by a verity of cyber threats (cyber-attack; theft or corruption from within; etc.) is minimized. 
  • Ensure that when cyber-attacks occur or data are stolen or compromised, these incidents are dealt with promptly and effectively and the chance of that particular type of incident recurring is   minimized.
  •  Monitor the network for security breaches and investigate violation when they occur.
  •  risk mitigation polices and security controls and communication with the organization`s CIO on the efficacy of these measure, suggesting ways and means for improving them.
  • Identify acceptable levels of resident risk and assist with action plans, policy and procedure change for risk mitigation.
  • Promote information security awareness amongst employees, customer and others stakeholders.
  •      Working closely with lines of business, chief information officer and other IT unit Heads and contribution to the establishment, implementing, monitoring, reviewing, maintaining and improving information Security Management System.
  • Monthly and quarterly reports to   the Risk Management C committee.    


The passion requires bachelor degree in information technology with over 3 years of relevant work experience in IT security risk function. Candidates who possess Certified information System Security Professional (CISSP) or other information system security certification will be preferred.

The ideal job holder shall possess

  • Knowledge of IT processes and control and strong understanding of risk and control framework.
  • Knowledge of IT Security Policy and Procedure development.
  • Good team working skill.
  • Good computer skills.
  • English fluency in both spoken and written.
  • Excellent analytical thinking and attention to details.
  • Can-do attitude, with problem-solving abilities.
  • Able to draw conclusions and communion his/her concern in a clear and concise manner to his/her line manager.
  • Quick learner who can rapidly master all aspects of the job with limited supervision and training.
  • Good organizer with self-planning and problem- solving skills.
  • Good communication and reporting /presentation skills.   

Submission Guideline:

If you meet the above requirements, we are encouraging you to apply for this position. Please send us your CV along with a cover letter via email at (

Please make sure that your email includes the vacancy ID as the subject line.

Note that, only the candidates who are meeting the requirements of the position will be shortlisted.

Apply Online

A valid email address is required.
A valid phone number is required.

FMFB-A strives to provide an equal employment opportunity to each qualified candidate/applicant, without regard to race, color, religion, ethnicity, national origin, sex, age, social status, cast/creed, language, disability, marital status, or political affiliation.