Summary
Date Posted: Friday, October 06 2023, Base Salary: Not Disclosed

JOB DETAILS:
Job Purpose
• This function is responsible for safeguarding the Bank’s digital assets, information, and systems from various cyber threats and attacks. The safeguards include, but not limited to Data Loss prevention, Vulnerability Assessments and Penetration Testing (VAPT), Network Security, Endpoint Security, Mobile Device Management, Email Security, Database Security, Cyber threat intelligence, Security in projects implementation. The role focuses on ensuring that adequate Security Controls, Cyber Risk Management and Compliance is applied and monitored across the enterprise in all IT related projects, systems, automated processes, and people involved in running automated process. The role enforces all security policies, procedures, and control objectives to mitigate risks to the Bank.

Under the supervision of the Cybersecurity & Threat Intelligence Senior Specialist, the following are among the Job Key Responsibilities:
• Participate in Security Architecture Design: Collaborate with the IT function to design and implement secure bank network and system architectures. This includes selecting appropriate security technologies and integrating them into the Bank’s infrastructure.
• Vulnerability Assessment and Penetration Testing: Regularly assess the bank’s IT infrastructure for vulnerabilities and ensure prompt remediations are carried out by the relevant IT Function teams.
• Working with business and support functions to ensure correct implementation of IT control requirements on various processes.
• Implementation and management of the Bank’s Public Key Infrastructure (PKI).
• Collaboration with Fraud Risk function to conduct digital forensic investigations.
• Involved in implementation and monitoring of advanced security controls ensuring no conflict of interest in management of implemented controls to ensure availability, integrity, and confidentiality of data.
• Offer continuous assurance in the deployment and maintenance of native IT Security controls such as intrusion detection/ prevention systems, firewalls to ensure availability, integrity, and confidentiality of data.
• Oversight, planning and execution of any required independent cybersecurity assessments and audits.
• Ensure compliance activities and reports associated with regulatory requirements are maintained.
• Involvement in arranging staff training in security awareness skills.
• Research, evaluate, and recommend new security technologies, processes, and methodologies.
• Participate in the implementation of an IT cyber-security strategy and proactively identify cyber-security threats.
• Applying information security foundations to complex network architectures
• Cyber Threat Intelligence: Monitor cyber threat intelligence sources to understand emerging threats and adapt security measures accordingly.
• Threat modelling: Identify and enumerate potential threats, such as structural vulnerabilities or the absence of appropriate safeguards, to recommend and communicate prioritized countermeasures for implementation by appropriate teams.
• Threat Detection: Monitor the bank’s network, systems, and applications to identify and analyse potential security threats and vulnerabilities.
• Cyber Incident Management: Participate in the cyber incident management efforts in the event of a security breach or cyberattack by investigating the incident, assessing the extent of the damage, taking steps to mitigate the impact, documenting all relevant details, including the incident’s cause, impact, and steps taken for remediation.
• Work closely with third party managed security services providers (MSSPs) to ensure bank is protected on a 24/7 basis.
• Conduct Information Security Risk and Controls Self Assessments
• Support for timely reporting of all IT risk events ensuring that root cause analysis is conducted.
• Supports the coordination of internal and external information security assessments by internal and external partners.
• Supports the tracking and closure of internal and external assessment issues.
• Make recommendations for action plans addressing management commitments.
• Any other responsibilities or tasks as maybe assigned by management.

Requirements
Qualifications And Experience
• Grade 12 Credit or above mandatory in Mathematics and English and any other three subjects
• Bachelor’s Degree in Information Systems, Technology, or Security, Computer Science or related field.
• At least four (4) years of experience in cyber security at a mid-size or large company in the banking industry or similar environment.
• Should have Information Security certifications such as GIAC, OSCP, CISSP, CRISC, CISM, CEH, ISO/IEC 27001 or equivalent.
• Digital Forensic Knowledge
• Experience in securing cloud computing infrastructure
• Should possess high skills in implementing and maintaining cybersecurity controls

Job Core Competencies
• Clinical and attentive to detail
• Stakeholder Management
• Analytical Skills/ Problem solving
• Self-Management / Organizational skills
• Drive for results
• Accountability
• Must aspire to a culture of Service Excellence
• Excellent Communication, Presentation and Reporting skills.

Work Hours: 8

Experience in Months: 48

Level of Education: Bachelor Degree

Job application procedure
• Interested and qualified? Click here to apply

All Jobs

QUICK ALERT SUBSCRIPTION