KEY DUTIES AND RESPONSIBILITIES
- Conduct ongoing information security risk assessments to identify, analyze, and mitigate risks to the organisation’s information assets.
- Support the implementation, monitoring and maintenance of security policies, standards, and procedures in line with ISO 27001, ISO 42001, NIST and other global frameworks.
- Perform vulnerability assessments, penetration testing coordination and oversee remediation efforts.
- Support identity and access management (IAM) processes, including user provisioning, privilege reviews, and access controls.
- Assist in the design and delivery of cybersecurity awareness programs.
- Prepare and present regular reports on information security risks, incidents and trends.
QUALIFICATIONS AND EXPERIENCE
The ideal candidate should have:
- Bachelor’s degree in Information Security, Computer Science, Cybersecurity or related field.
- Professional certifications such as CISM, CISSP, CEH, CompTIA Security+ or equivalent will be an added advantage.
- At least 4 years’ experience in information security, cybersecurity operations or risk management.
SKILLS AND COMPETENCES
- Strong understanding of SOC operations, IAM, vulnerability management, and risk frameworks.
- Excellent communication and analytical skills.
- Good interpersonal and problem-solving abilities.
- Good reporting skills.