About the Role

JOB SUMMARY:

The Information Security Officer supports all ongoing activities that serve to provide appropriate access to and protect the confidentiality and integrity of customer, employee, and business information in compliance with organization policies and standards.

KEY RESPONSIBILITIES:

Financial - 10%

• Support reduction of the bank’s exposure to fraud losses by implementing technology prevention and detection measures.
• Implement effective measures to facilitate maximum recovery of funds lost through Fraud.

Customer - 30%

• Enforces the system risk management and Information Security risk management framework/methodology.
• Promotes and continuously improves the system risk-related and Information Security related activities.
• Assisting to address regulatory, legal and commercial challenges as a result of unplanned events in any member company by applying technology-based solutions to information management and electronic-discovery demands.

Operational - 40%

• Identifies and analyzes system vulnerabilities in order to manage and mitigate risk.
• Monitoring network usage to ensure compliance with security policies.
• Provides direct training and oversight to all employees, affiliated companies or other third parties, ensuring proper information security clearance in accordance with established organizational information security policies and procedures.
• Performs or organizes the system risk assessment and gap analysis for all technologies, products, services and new departments/functions introduced.
• Implements Information Security tools and methods necessary to support the bank’s Information Security Strategy.
• Documenting any security breaches and assessing their damage.

Leadership - 20%

• Prepares appropriate Technology Security metrics.
• Communication of the information security awareness campaign to members of the bank.

Customers of this Position

• Bank’s Management and Staff;
• Bank Customers;
• Security and Fraud Managers/Investigators of Police Services, Directorate of Criminal Investigation, Central Bank of Kenya, Capital Markets Authority, Insurance Regulatory Authority, Commercial banks and any other institutions as may be required during investigation.

Knowledge; Skills and Experience required for this Role

• A Bachelor’s of Science in Computing or related degree from a recognised University.
• Must possess at least a recognizable IT security certification such as CEH or Security+. Desirable to have CISM, CISSP, CISA, CASP or MCSE.
• A minimum of 2 years’ experience in Information Technology with hands on experience in:
  • I.T Security management,
  • Software and security architectures,
  • IPS and vulnerability Testing tools,
  • Active Directory management,
  • IT Security on operating systems and databases (UNIX, Microsoft, Oracle, SQL),
  • Wide knowledge of web security architecture, &
  •  Knowledge and skills on encryption, VPN.
• Knowledge of web programming languages (ASP, .NET, Java, JavaScript, etc.) will be an added advantage.
• Knowledge in Network security tools e.g. Firewalls etc…, endpoint security tools.

Competencies required for this Role

• Excellent verbal and written communication skills with technical and non-technical staff, endusers.
• Strong teamwork skills to maintain strong working relationships within and outside risk & Compliance, to develop a results-oriented work environment.
• Excellent follow-up skills to see tasks through to resolution, and communicate problem status to end users such as notification of completion, notification of delay, and explaining rationale.
• Excellent analytical solving skills.
• Excellent organizational skills, prioritizing and managing multiple tasks. 6. Offer and accept feedback and constructive suggestions.

Expiry Date: Jan 30 2023

How to Apply

https://www.sbmbank.co.ke/jobs/vacanacy/senior-officer-it-security?utm_source=MyJobMag