Senior Manager; IT Security
Job Purpose
To plan, organize and lead a team to deliver cost effective and efficient IT security controls to protect and defend systems and information assets (business and customer data) against any internal and external threats (e.g. unauthorized access, cyber-attacks, etc.).
Main Responsibilities:
Develop and implement IT Security management framework for the bank’s technology infrastructure that provides assurance on security of the business and customer data.
Develop, implement, and maintain policies, procedures, processes, standards, and guidelines for technology infrastructure security.
Practice technology security asset management, including maintenance of security component inventory, life cycle management, and related documentation.
Provide “ownership” of security incidents and problems thru final resolution for the Bank’s Firewalls, IDS/IPS, Malware systems.
Assess, approve, and administer all network and systems security related equipment, hardware, and software upgrades (for Firewalls, IDS/IPS, Malware systems).
Manage operational costs; perform cost-benefit and return on investment analyses for proposed security solutions to aid management in making implementation decisions.
Manage relationships with vendors and respective service level agreements.
Conduct research and make recommendations on security products, services, protocols, and standards in support of security service continuous improvements.
Provide technology security statistics and reports to aid in management decisions.
Direct, manage, develop and provide guidance to a team of security specialists; conduct performance reviews and corrective action.
Contributes to team effort by accomplishing related results as needed.
Attributes:
Ability to present technical data in a comprehensive, yet clear manner.
Excellent knowledge of technology security landscape (Network security, systems and endpoint security, IT security frameworks and standards such as ISO27001).
Hands-on experience technology security setups, configuration and troubleshooting (networks, systems and end points).
Good interpersonal, written, and oral communication skills in English and Swahili.
Management & leadership skills.
Strong Planning and organizing skills
Project Management skills
Qualifications and Experience:
At least Bachelor’s degree in Computer Science or related academic field
Preferred Security professional certification ISO27001, CISSP, ethical hacking; Other IT professional certifications such as ITIL, Prince2, PMP will be an added advantage.
At least 5 years of relevant work/management experience in managing, monitoring and setting up IT security in enterprise environment.
Location: Head Office
Deadline:2017-05-16