By continuing to browse this site, you agree to our use of cookies. Read our privacy policy

IT Officer, Security, Risk and Compliance – Security Architecture

Chennai

  • Organization: World Bank Group
  • Location: Chennai
  • Grade: Level not specified - Level not specified
  • Occupational Groups:
    • Legal - Broad
    • Architecture, Building and Property Management
    • Information Technology and Computer Science
    • Security and Safety
    • Ombudsman and Ethics
  • Closing Date: 2025-05-04

Do you want to build a career that is truly worthwhile? Working at the World Bank Group provides a unique opportunity for you to help our clients solve their greatest development challenges. The World Bank Group is one of the largest sources of funding and knowledge for developing countries; a unique global partnership of five institutions dedicated to ending extreme poverty, increasing shared prosperity and promoting sustainable development. With 189 member countries and more than 130 offices worldwide, we work with public and private sector partners, investing in groundbreaking projects and using data, research, and technology to develop solutions to the most urgent global challenges. For more information, visit www.worldbank.org

ITS Vice Presidency Context:

The Information and Technology Solutions (ITS) Vice Presidential Unit (VPU) enables the World Bank Group to achieve its mission of ending extreme poverty and boost shared prosperity on a livable planet by delivering transformative information and technologies to its staff working in over 150+ locations. For more information on ITS, see this video:https://www.youtube.com/watch?reload=9&v=VTFGffa1Y7w

Our vision is to transform how the Bank Group accomplishes its mission through information and technology. In this fast-paced, ever-changing world, the formulation and implementation of the ITS strategy is an ongoing, iterative process of learning and adaptation developed through extensive consultations with business partners throughout the World Bank Group.

ITS shapes its strategy in response to changing business priorities and leverages new technologies to achieve three high-level business outcomes: business enablement, by providing Bank Group units with innovative digital tools and technologies to transform how they deliver value for their clients; empowerment & effectiveness, by ensuring that all Bank Group staff are connected, able to find information, and productive to accelerate the delivery of development solutions globally; and resilience, by equipping the Bank Group to provide risk-based cybersecurity and robust data protection for a global network and a growing cloud platform.

Implementation of the strategy is guided by three core principles. The first is to deliver solutions for business partners that are customer-centric, innovative, and transformative. The second is to provide the Bank Group with value for money with selective and standard technologies. The third principle is to excel at the basics by providing a high performing, robust, and resilient IT environment for the organization.

The ITS Information Security and Risk Management (ITSRM) unit, headed by the Chief Information Security Officer (CISO), is responsible for providing leadership in managing the information security and risk functions and activities across the World Bank Group, enabling the achievement of WBG's business objectives. ITSSR supports and facilitates a risk aware culture, ensuring that WBG information assets are protected in an effective, efficient, and balanced manner and IT security and risk management efforts throughout the World Bank Group are coordinated and aligned to the Bank's business and IT strategy. ITSSR comprises of the following functions: Security Operations, Risk Management and Advisory, IT Policy, IT Compliance, Business Continuity.

The ITS Risk and Compliance (ITSRM) unit within ITSSR has been tasked with providing technical and architectural information security solutions for The World Bank Group and needs an Information Security professional who is results oriented, multi-disciplined and experienced in evaluating information security controls in web and mobile applications and complex business applications.

Essential Job Functions:

  • Analyzes reports to identify risks, vulnerabilities or areas of potential non-compliance and recommends feasible and appropriate options. Reports on significant trends and/ or concerns.
  • Takes a lead role in developing the risk management, security, and/or compliance plan for a project, ensuring design is compliant with policy, operational requirements and within defined risk appetite.
  • Creates advisory documents or project artifacts in standard situations; identifies root causes of risk, security, and/or compliance incidents that arise and directs the resources necessary to resolve them.
  • Conduct risk, security and compliance audits /assessments and define strategies to address identified issues and prioritize risk treatment options to manage risk within defined appetites.
  • Monitors emerging trends in IT security, risk management and compliance, and makes recommendations to management.
  • Assist with the establishment and maintenance of a framework to provide assurance that internal controls and processes meet best practice and audit requirements.
  • Designs controls, standards and key risk and performance indicators. Educates colleagues in their area(s) of expertise and assists in the development of awareness and compliance training programs.
  • Provides technical expertise on the administration of tools relates to their area(s) of expertise.
  • Provides guidance to project teams on security/ risk management /compliance issues; ensures that project plans / technology initiatives are compliant. Resolves project problems related to their area(s) of expertise.
  • Provides technical guidance and mentorship to team members.
  • Leads programs to enhance security/compliance/risk awareness across the WBG
  • Develops innovative solutions, contributes new insights to understand situations and develops solutions to resolve complex problems. Identifies and pursues innovative approaches to resolve issues.
  • Participates in the evaluation of emerging technologies that are new to the information systems industry. Applies knowledge across WBG to strengthen solutions for internal and/or external clients.
We do our best to provide you the most accurate info, but closing dates may be wrong on our site. Please check on the recruiting organization's page for the exact info. Candidates are responsible for complying with deadlines and are encouraged to submit applications well ahead.
Before applying, please make sure that you have read the requirements for the position and that you qualify.
Applications from non-qualifying applicants will most likely be discarded by the recruiting manager.
Fellow badge

This feature is included in the Impactpool Fellowship.

Become a Fellow and get a summary of the job description to quickly understand the role and the requirements

Become a Fellow Signin