ICT Security Officer - (PERMANENT)

Main Purpose Of Job:

To identify, evaluate and report on legal and regulatory, ICT, and cybersecurity risk to information and technology assets and ensure secure business operations are achieved

Key Responsibility Areas:

• Develop and manage information and cyber security strategies, policies, standards and architectures for the company
• Effectively manage and mitigate ICT risk for ICT systems and infrastructure within the company.
• Responsible for Security Awareness, Risk Management and translating risks and the effect thereof to ensure informed risk assessment.
• Participation in Information Security bodies and initiatives, logical access management, incident response, vulnerability management, IT audit coordination and ensuring new systems adhere to security policy.
• Providing management assurance regarding the Cyber and Information Security posture of the business.
• Stakeholder engagement across business, assurance providers and third parties.

Required Education

Essential Education:

• Relevant degree (e.g. BSc Informatics, BSc Computer Science, BCom Information Systems)

Desired Education:

• BSc Computer Science. Professional Information Security Certification (CISSP, CISM, CASP+ or equivalent) will be advantageous.

Required Experience

Essential Minimum Experience:

• 3 to 5 years’ experience in a combination of risk management, information security, ICT Audits and ICT operations environment

Desired Experience:

• 5 years’ experience as Information Security Officer

Required Job Skills And Knowledge:

• Security technologies and solutions
• Information security solutions and how to architect these into broader ICT installation
• Information security frameworks and standards, e.g. ISO27001 & 27002
• Security awareness programs and training
• ICT security dashboards (for executive level audiences)
• Corporate and healthcare service provider risk profiling
• Project Management principles
• ICT disaster planning and business continuity planning
• Enterprise risk management practices
• IT security incident response planning and practices
• ICT security and data privacy impact assessments
• Identity and Access Management practices

Kindly regard your application as unsuccessful if you have not heard from the agency within 2 weeks.