Engineering Manager - Commercial Bank Colombo

Posted July 25, 2025 by Commercial Bank PLC

Closing Date : July 30, 2025

Colombo ,

Full Time

Information & Communication Technology |

Engineering - Network |

About the job

Company Description:

With an enduring vision of being the most technologically advanced, innovative and customer friendly financial organization, we, the Most Awarded Bank in Sri Lanka, continue to progress steadily while being the first Sri Lankan bank to be listed amongst the Top 1000 Banks in the World. Our unparalleled record of success is supported by an unmatched suite of digital offerings and superior standards in service, stability and performance. We are poised to ascend to even greater heights in the near future.

Role Description:

Design, implement, and maintain IT security compliance programs across systems and applications.
Ensure compliance with regulatory requirements and industry standards (e.g., ISO 27001, PCI DSS, etc), CBSL guidelines and internal and external audit recommendations on IT security.
Conduct risk assessments and compliance audits; track and remediate findings.
Develop and maintain policies, procedures, and documentation for IT security controls and governance while reviewing them annually.
Collaborate with internal teams to enforce security requirements and promote a compliance culture.
Monitor changes in regulations and update compliance strategies accordingly.
Participate in third-party and internal audits, acting as the primary liaison for IT compliance matters.
Implement and review security tools and controls to ensure alignment with compliance needs (e.g., SIEM, DLP, IAM, encryption). Support incident response efforts from a compliance and reporting perspective.
Maintain compliance dashboards, metrics, and reports for management and regulatory bodies

Qualifications:

Bachelor's degree in Computer Science, Information Systems, Cybersecurity, or a related field.
6 to 7 years of experience in IT Security, Compliance or Risk Management roles with a minimum of 2 years in Management roles.
Strong understanding of security frameworks (ISO 27001, PCIDSS, etc.).
Familiarity with regulatory compliance standards (e.g., CBSL direction 16).
Knowledge of audit processes and risk assessments.
Excellent communication and documentation skills. and Hands-on experience with security technologies (e.g., firewalls, IDS/IPS, SIEM, IAM).

Engineering-Manager-Associate-Engineering-Manager-Commercial-Bank.pdf

Leadership Project Management Risk Management

සෑලකිය යුතුයි : අපි ඔබව මෙම රැකියාව උපුටා ගත් පිටුවට හරවා යවන්නෙමු . අපි ඔබ වෙනුවෙන් ඔබේ CV , තොරතුරු අදාළ ආයතනය වෙත නොයවන බව කරුණාවෙන් සලකන්න

கவனமாக இருக்க வேண்டும் : இந்த வேலை மேற்கோள் காட்டப்பட்டுள்ள பக்கத்திற்கு உங்களை திருப்பி விடுவோம். உங்களுக்கான CV, தகவல்களை சம்பந்தப்பட்ட நிறுவனத்திற்கு நாங்கள் அனுப்ப மாட்டோம் என்பதை நினைவில் கொள்ளவும்

Disclaimer : By clicking the button below, you consent for CareerFirst and partners to use automated technology, including pre-recorded messages, cell phones and texts, and email to contact you at the number and email address provided. This includes if the number is currently on any Do Not Call Lists. This consent is not required to make a purchase. We are redirecting you to the employer's career page. Please note that we are not sending your CV to the employer on your behalf. Privacy Policy.