Information Security Officer vacancy

ICEA Lion Group Information Security Officer vacancy

JOB DESCRIPTION: INFORMATION SECURITY OFFICER
Reporting to the Head of ICT, the Information Security Officer will be responsible for establishing, managing and administering the organisation’s Information Security (IS) strategy, policy and procedures to ensure preventive and recovery strategies are in place, and to minimise the risk of internal and external security threats
The main responsibilities for this role include:

1. Develop and implement IS Strategy, policies and procedures that are aligned to the overall information and communications technology (ICT) and corporate strategies.
   
2. Define security standards for the ICT infrastructure and applications and oversee compliance.
   
3. Run IS tools to perform regular and planned vulnerability assessment of the information Systems infrastructure and business applications.
   
4. Perform follow up of audit report recommendations and confirm implementation of the noncompliant issues
   
5. Administer Operational security tools – (UTM, Proxies, DMZ, AV, Firewalls etc).
   
6. Perform Information security systems and networks logs analysis & reporting to identify and address activity that is not consistent with the IS guidelines and standards (KIWI Syslog, System center, GFI Languard etc).
   
7. Liaise with the ICT Service desk with regard to information security incidents analysis, investigations and escalation thereof.
   
8. Liaise with partners and service providers to leverage on security best practice.
   
9. Carry out security architectural designs for new systems, applications and infrastructure.
   
10. Review security architectural designs and solutions and evaluate compliance to applicable
    security standards.
    
11. Create and maintain an Information Security Awareness Training Program.
    
12. Support Business Continuity Planning and Disaster Recovery as related to Information Security.
    
13. Oversee the Incident Response Program and collaborate with the Incident Response Team.
    
14. Review and assess ways to streamline and automate the security administration function as appropriate.
    
15. Carry out Information Security reviews along the various phases of a project’s life cycle.
    
16. Promote awareness of Information Security Policies and best practices across the organizatio
    

Job Requirements

• Bachelors Degree in Information Systems, Information Technology or related field
  
• At least 3 years of experience in information systems security, networking or application administration
  
• Knowledge of security architecture designs and frameworks such as CoBIT, ISO, ISMS.
  
• Experience in networking technologies such as VPN, LAN, WAN & MPLS.
  
• Knowledge of application security standards and policies.
  
• Strong working knowledge on operating systems such as Linux, UNIX & Windows and enterprise patch management.
  
• Knowledge of security tools and technologies such as firewalls, Intruder detection/prevention solutions, web filters, Data protection solutions etc
  
• Knowledge of disaster recovery and business continuity practices
  
• Good Understanding of change management practices
  
• Certification in CISA/CISM, Checkpoint and Cisco.
  

CLICK HERE TO APPLY