National Bank of Pakistan (NBP) Career Opportunities 2026 – Banking Jobs in Karachi

National Bank of Pakistan Federal Government Talpur Road City Railway Colony, Karachi Karachi Banking

Job Expired

More Information

  • Address Talpur Road City Railway Colony, Karachi
Posted On

Organization

National Bank of Pakistan

Location:

Karachi

Job Type:

Federal Government

Last Date:

Job Alert Join Whatsapp Channel

National Bank of Pakistan (NBP) Career Opportunities 2026 – Risk Management & Information Security Jobs in Karachi (Threat Researcher VAPT, SOC Integration, AppSec, Audit & Controls, Digitalization Review, Admin Budget)

National Bank of Pakistan (NBP) – “The Nation’s Bank” is inviting applications from talented, experienced, and career-driven professionals for multiple roles in the Risk Management and Information Security domain, based in Karachi, Sindh, Pakistan. This hiring drive includes these positions: Threat Researcher VAPT, Technology Integration Manager, IS Applications / Cloud Security Reviewer, Unit Head – Audit & Regulatory Compliance, Unit Head – Process & Control, Application Security Analyst, Officer Information Security Review, Officer – IS Business Digitalization Review, and Admin Officer (Budget – OPEX & CAPEX).

These roles are ideal for candidates searching online for NBP Risk Management jobs in Karachi, cyber security jobs in Pakistan, VAPT and SOC roles, application security careers, and banking compliance, audit, and process control positions. NBP is looking for individuals who can strengthen controls, improve cyber resilience, support secure digital transformation, and maintain strong governance practices across business and technology operations.

Job Position Detail

#Position / Job TitleGrade (As Advertised)Reporting ToPrimary FunctionLocation
01Threat Researcher VAPTOG-I / AVPDepartment Head – Threat ManagementThreat hunting, detection engineering, research, intelligenceKarachi
02Technology Integration ManagerOG-I / AVPDepartment Head – SOC EngineeringSOC/security tool integration, architecture alignment, uptimeKarachi
03IS Applications / Cloud Security ReviewerOG-I / AVPDepartment Head – IS Digital ChannelsApp & cloud security reviews, threat modeling, complianceKarachi
04Unit Head – Audit & Regulatory ComplianceOG-I / AVPWing Head – Quality Assurance & ControlAudit facilitation, regulatory compliance, observations closureKarachi
05Unit Head – Process & ControlOG-I / AVPWing Head – Quality Assurance & ControlControl frameworks, process reviews, dashboards, remediationKarachi
06Application Security AnalystOG-II / OG-IDepartment Head – Application SecuritySecure SDLC, code review oversight, VA/PT, remediationKarachi
07Officer Information Security ReviewOG-II / OG-IWing Head – IS Risk ManagementWeb/app security reviews, threats monitoring, governanceKarachi
08Officer – IS Business Digitalization ReviewOG-II / OG-IDepartment Head – IS Digital ChannelsSecurity requirements for projects, UAT checks, MIS gapsKarachi
09Admin Officer (Budget – OPEX & CAPEX)OG-II / OG-IUnit Head – Budget (OPEX & CAPEX)Budgeting support, MIS, variance reports, fixed assets/dead stockKarachi

How to Apply: Process 📝

1) Apply online (as stated in the advertisement)

Interested candidates are instructed to apply online via the following careers page (mentioned in the ad).
Use this link exactly as written:

www.sidathydar.com.pk/careers

✅ Apply within 10 working days from the date of publication of the advertisement.
⚠️ Applications received after the due date will not be considered.

2) Shortlisting, test, and interview

  • 🧾 Shortlisting: Only candidates meeting the basic eligibility criteria will be shortlisted.
  • 🧠 Assessment: Shortlisted candidates may be called for a test and/or panel interview.
  • 📌 Final selection follows Bank procedures and policy requirements.

3) Employment terms

  • 💼 Contract duration: 3 years (contractual)
  • 🔁 Renewal: may be renewed at Management discretion as per Bank’s policy/rules
  • 🎁 Compensation: offered as per Bank’s approved package and benefits structure (exact figures are not listed in the ad)

Role Snapshot (Easy-to-Read Responsibilities by Position)

Below is a practical summary of what each role typically delivers in a bank-grade risk environment—aligned with the posted duties.

01) Threat Researcher VAPT (OG-I/AVP)

  • ✅ bank-wide threat hunting, detection, handling, response support
  • ✅ security research and operationalizing findings into detections
  • ✅ analyzing large datasets for threats and designing detection capabilities
  • ✅ tracking advanced intrusions and documenting findings
  • ✅ reverse engineering tools/malware where required
  • ✅ producing clear, actionable intelligence reports
  • ✅ communicating detection roadmap to non-technical stakeholders

02) Technology Integration Manager (OG-I/AVP)

  • ✅ integration of SOC/information security tools with systems and infrastructure
  • ✅ ensuring data flow and interoperability across security platforms
  • ✅ resolving architecture issues and supporting scalable secure designs
  • ✅ routine checks, patches, updates, and reliability controls
  • ✅ incident handling to minimize downtime
  • ✅ planning and executing integration projects with milestones and reporting
  • ✅ documentation, configuration records, and team enablement/training

03) IS Applications / Cloud Security Reviewer (OG-I/AVP)

  • ✅ deep security reviews of applications and cloud services
  • ✅ threat modeling and risk assessment
  • ✅ secure coding support with development teams
  • ✅ assessing cloud provider controls and compliance alignment
  • ✅ standards, procedures, and guidelines for app/cloud security
  • ✅ security testing validation and incident/vulnerability reporting
  • ✅ compliance with applicable regulations/standards + awareness for dev/ops teams

04) Unit Head – Audit & Regulatory Compliance (OG-I/AVP)

  • ✅ coordinating internal, external, and regulatory audits for lending portfolios
  • ✅ analyzing audit findings, root causes, and corrective action follow-up
  • ✅ aligning product/business/operations/credit policy with regulatory requirements
  • ✅ tracking closure of audit and regulatory observations
  • ✅ compliance checks and risk highlighting
  • ✅ awareness sessions for business/support teams and maintaining inspection repositories

05) Unit Head – Process & Control (OG-I/AVP)

  • ✅ designing control frameworks/processes for retail & program lending products
  • ✅ periodic reviews to identify control gaps and recommend remediation
  • ✅ pre/post implementation reviews of new products, enhancements, and process changes
  • ✅ dashboards/reports for senior management showing deviations and progress
  • ✅ supporting audit facilitation and closure of observations
  • ✅ building staff awareness through training and process control guidance

06) Application Security Analyst (OG-II/OG-I)

  • ✅ supporting application security function and secure SDLC enforcement
  • ✅ security architecture review for business applications
  • ✅ risk assessments before deployment + control assessments
  • ✅ vulnerability assessment and penetration testing oversight
  • ✅ code review guidance and remediation coordination
  • ✅ vendor security activity review + tool-based scanning support
  • ✅ audit/regulator coordination and closure of findings where applicable

07) Officer Information Security Review (OG-II/OG-I)

  • ✅ reviewing web application architecture/components for vulnerabilities
  • ✅ remediation recommendations aligned with SBP/international standards
  • ✅ tracking internet threats like phishing/scams relevant to banking
  • ✅ incident response/recovery plan updates and control documentation
  • ✅ supporting system hardening and security testing tool operations
  • ✅ evaluating policies against updated regulations and global practices
  • ✅ working with IT/Risk/Compliance/Audit for integrated governance

08) Officer – IS Business Digitalization Review (OG-II/OG-I)

  • ✅ defining information security requirements per project and getting approvals
  • ✅ ensuring requirements appear in Functional Specification Documents with sign-offs
  • ✅ assisting vendors/business teams with implementation
  • ✅ manual testing during UAT and ensuring common vulnerabilities are covered
  • ✅ reports for Unit Head approval + MIS tracking of security gaps and fixes

09) Admin Officer – Budget (OPEX & CAPEX) (OG-II/OG-I)

  • ✅ supporting budgeting for OPEX/CAPEX with MIS reporting
  • ✅ assisting annual budget preparation across relevant divisions
  • ✅ reconciling incorrect expense entries with Finance
  • ✅ utilization/variance reporting (monthly/quarterly)
  • ✅ maintaining fixed assets and dead stock records with stakeholder coordination

  • This job has expired!
Admin Officer (Budget – OPEX & CAPEX) Application Security Analyst IS Applications / Cloud Security Reviewer Officer – IS Business Digitalization Review Officer Information Security Review Technology Integration Manager Threat Researcher VAPT Unit Head – Audit & Regulatory Compliance Unit Head – Process & Control
Share this job
National Bank of Pakistan

National Bank of Pakistan

NBP Jobs Listing
(0)
Company Information

Public Service Commission Careers