Duties and Responsibilities:
- Plans, designs and oversees implementation of Information security infrastructure and solutions.
- Develops and implements policies and practices for encryption of data transmissions and the erection of firewalls to conceal information as it is being transmitted and to eliminate tainted digital transfers.
- Reviews technical risk assessments and new and existing applications and systems, including
- Reviews results of special investigations, internal audits, research studies, forecasts, and • modeling exercises to provide direction and guidance
- Plans and implements information security awareness programs.
- Develops information security action plans. •
- Design and monitor security measures for the protection of computer systems, networks and information
- Ensures that all implemented projects meet best practice security guidelines.
- Develops enterprise information security / cyber security framework •
- Develops and oversees implementation of enterprise information security policy, standards, guidelines and procedures to ensure ongoing maintenance of information security program.
- Enforces the adherence of the information security policies.
- Assists in the evaluation and lead the implementation of selected security solutions Review information systems policies and procedures on annual basis and as and when required.
- Participates in the information security strategic management process with alignment to the organisational goals.
- Participates in the formulation of the information security budget.
Qualification and Experience:
- Degree in Computer Science / Information Technology / Telecommunications.
- Security Certification (CCNP Security/ CEH/ CISSP/ CISM)
- Knowledge of PCI DSS, ISO27001 and other security standards
- Knowledge of security frameworks such as NIST.
- At least Five (5) years’ relevant experience