Summary
Date Posted: Friday, October 06 2023, Base Salary: Not Disclosed

JOB DETAILS:
Job Purpose
• This function is responsible for implementing, and managing an information security governance framework to support the bank’s information security strategy and objectives. The function helps to ensure that information security practices align with business objectives, regulatory requirements, and industry standards by analyzing, optimizing, and technically translating adopted information security frameworks, Information Security policies, procedures into technical and non-technical and bank focused controls.

Under the supervision of the Information Security Governance & Compliance Senior Specialist, the following are among the Job Key Responsibilities:
• Maintain and continuously improve the adapted information security governance framework that includes policies, procedures, standards, and guidelines to protect the bank’s information assets.
• Ensuring information security requirements are built into internal processes such as software development, change management and new products.
• Ensure compliance with relevant regulations, standards, and industry best practices.
• Collaborate with relevant Stakeholders to ensure timely implementation of action plans.
• Participate in the review, and update of information security policies and procedures. Ensure that policies are communicated to employees and contractors and oversee their enforcement.
• Develop and deliver security awareness and training programs for employees to promote a culture of security awareness throughout the organization.
• Develop and maintain an incident response plan to address security incidents effectively. Coordinate and lead incident response efforts when necessary.
• Accountable for enforcing incident management and risk events process end-to-end and ensuring root cause analysis is done and documented to ensure actions that prevent incident re occurrence.
• Assess and manage the security risks associated with third-party vendors and service providers.
• Ensure that vendors comply with security requirements.

• Coordinate and participate in all security audits and assessments.
• Work with internal and external partners to address findings and ensure compliance.
• Responsible for timely reporting of all cyber related risk events ensuring that root cause analysis is conducted.
• Responsible for monitoring control effectiveness where there are material risks of process control failure
• Conduct Information Security Risk and Controls Self Assessments
• Support for timely reporting of all IT risk events ensuring that root cause analysis is conducted.
• Integral member of the Information Security Steering Committee Secretariat which provides oversight, guidance, and decision-making related to information security matters.
• Any other responsibilities or tasks as maybe assigned by management.

Requirements
Qualifications And Experience
• Grade 12 Credit or above mandatory in Mathematics and English and any other three subjects
• Bachelor’s Degree in Information Security, Computer Science, or related field.
• At least four (4) years of experience in Information Security management at a mid-size or large company in the Banking industry or similar environment.
• Should have Information Security certifications such as CISSP, CRISC, CISM, CISA, ISO/IEC 27001 or equivalent.
• Strong knowledge of information security standards, regulations, and best practices
• Should possess high skills and experience in implementing and maintaining information security frameworks.

Job Core Competencies
• Clinical and attentive to detail
• Stakeholder Management
• Analytical Skills/ Problem solving
• Self-Management / Organizational skills
• Drive for results
• Accountability
• Must aspire to a culture of Service Excellence
• Excellent Communication, Presentation and Reporting skills.

Work Hours: 8

Experience in Months: 48

Level of Education: Bachelor Degree

Job application procedure
• Interested and qualified? Click here to apply

All Jobs

QUICK ALERT SUBSCRIPTION