Information Security Manager

Key Performance Areas

• • • Division strategy: Plans, develops and implements strategy and roadmap for the division. Communicates and collaborate cross-functionally to address identified cybersecurity risks to meet business objectives.
    • Information security: Works with other divisions to assist with procurement and leads implementation for identified security products and solutions across the organization. Plans, delivers data and network infrastructure security and monitors progress on all information security projects on a regular basis taking corrective action as required.
    • Information security governance: Develops policies, processes and procedures for the information security governance program. Ensures business continuity plan and alignment of security strategies to business strategy. Reports information security posture to the executive committee and the board.
    • Security risk management: Leads identification, analysis and evaluation of security risks including risk mitigation. Ensures periodic monitoring, reporting and review of the risks.
    • Network security operations management: Ensures identification, implementation of security controls and security assessments for third-party vendors and oversees security incident and response management. Continuously monitors software, hardware assets, networks, services, information and ensures controls are in place to protect the business from cyber-attacks.
    • Compliance and vulnerability management: Ensures compliance and reporting as applicable with internal and external laws and regulations set by BOCRA. Additionally identifies gaps related to security laws and plans for remediation and policy enforcement. Utilizes security platforms within Mascom to monitor compliance and ensures remediation’s in line with compliance requirements. Ensures internal, external penetration testing and operations audits are conducted on a regular basis.
    • Team management: Establishes divisional goals in line with business plan and ensures team is adequately trained and developed.
    • Budgeting & project management: Prepares annual department budget, as well as manage and control department’s expenditure
    • Safety, health and environment: Ensures the department adheres to the safety, health and environment, standards, policies and procedures of the company
    • Quality management: Ensures adherence to the company quality management system.

Qualifications

• • • Bachelor’s degree or equivalent in IT/Engineering or related field

Key Competencies

Key behavioral competencies for the job include Problem Solving & Analytical Thinking, Commercial Acumen & Organizational Awareness, Creativity & Innovative Thinking, Decision-making/ Judgement, Detail & Quality Orientation, Initiative & Drive, Results Orientation & Execution, Communication, Conflict Resolution/ Management, Integrity & Personal Credibility, Networking & Building Collaborative Relationships, Teamwork/ Collaboration, Change  Facilitation & Delivery, Coaching & Mentoring, People Management  & Career Development.

The candidate should also demonstrate key technical competencies of Partnerships & Alliances Management, Innovation & Technology, Regulatory knowledge, Network Security, Agile ways of working, Security/Information & application Protection, Information Security strategy, Security governance, Cyber Security awareness, Cyber Risk Management, Planning & budgeting

Job Requirements

• • • Bachelor’s degree or equivalent in IT/Engineering or related field
    • Master’s degree in a relevant field would be an added advantage
    • Relevant professional certifications would be an added advantage
    • Minimum of 10-12 years practical work experience
    • Proven experience leading cybersecurity or information systems security
    • Preferred industries include Telecommunications, Information Technology (IT)