Jun 03, 2018
Job purpose: IT Security Manager is in charge of the IT Security Management function, providing line management, leadership and strategic direction for the function and liaising closely with other managers, to bring the organization's IT security risks under explicit management control through the IT Security Management System. Reports to: Chief Information Officer Key responsibilities • Lead the design, implementation, operation and maintenance of the IT Security Management Function using acceptable international standards e.g. ISO/IEC 27001 Standard, COBIT o Forms a "centre of excellence" for IT security management, for example offering internal management consultancy advice and practical assistance on IT security risk and control matters throughout the organization and promoting the commercial advantages of managing IT security risks more efficiently and effectively o Identify shortcomings and devise/obtain appropriate policies/controls/processes required to maintain the security posture of the bank o Track, review and manage resolution of Audit findings o Leads or commissions the preparation and authorizes the implementation of necessary IT security policies, standards, procedures and guidelines, in conjunction with the relevant stakeholders o Leads the design and operation of related compliance monitoring and improvement activities to ensure compliance both with internal security policies etc. and applicable laws and regulations o Leads or commissions suitable IT security awareness, training and educational activities o Leads or commissions IT security risk assessments and controls selection activities • Routine line management and leadership of staff within the IT Security Management function o Leadership and strategic diredion for the function, ranging. from. planning and budgeting. to motivational and promotional activities expounding the value of IT security o Reeruitment, leadership and directibn for a loose network of IT 'security ambassadors distributed throughout the •' organization o Identify, nurture, manage, talent and develop skills within the unit. . Liaison with and offers strategic direction to the Bank on IT Security & Risk related governance o Engage stakeholders in the identification and monitoring of risks across the organisation o Participate in IT Steering committees in driving the governance requirements of the IT function, o Participate in risk governance committees in addressing the risk exposure across the Organization Competencies required • Emerging technology monitoring- The identification of new and emerging hardware, software and communication technologies, products, methods and techniques and the assessment of their relevance and potential +Wme to the organization - • The management of, and provision of expert advice on, the selection, design, justification, -implementation and operation of information security controls and management strategies to maintain the confidentiality, integrity, availability, accountability and relevant compliance of information systems • Knowledge and understanding of various IT systems and related configurations as applied within a specified. business environment Possesses a.deep and broad knowledge base in fundamental IT technical-skill•sets. Stays informed on emerging trends Qualification & Experience • First degree in IT / Computer,Science Information in Security management qualifications such as CISSP or CISM Masters Degree added advantage 5-7 years work experience in Information security management and/or related functions (such as IT audit and IT Risk Management) with a background-in technical IT roles such as IT architecture, development or operations Applications to be sent: firstname.lastname@example.org Closing date: Friday 18th June 2018 Standard Bank Moving Forward'
Standard Bank eSwatini Full time