JOB DETAILS:

Responsible for developing, implementing, and maintaining standards and systems that ensure secure ICT systems and data.

Responsibilities

1. Develop and maintain ICT governance frameworks and processes to manage risks effectively and ensure compliance with internal policies and regulatory requirements.
2. Develop and implement comprehensive cybersecurity strategies, policies, and procedures to protect the bank's ICT infrastructure, systems, and data assets.
3. Develop and maintain incident response plans and procedures to ensure a swift and organized response to security incidents.
4. Carry out daily system monitoring, verifying the integrity and availability of all hardware, server resources, systems, and critical processes, reviewing system and application logs, and verifying completion of scheduled jobs such as backups.
5. Establish and enforce ICT security policies, procedures, and controls to protect the bank’s information assets and customer data.
6. Monitor compliance with regulatory requirements and industry standards related to ICT security and data privacy.
7. Create and manage information security and risk management awareness training programs for all employees, contractors, and approved system users.
8. Participate in security incident and event management to protect ICT assets, including intellectual property, regulated data, and the Bank's reputation.
9. Monitor the external threat environment for emerging threats and advise relevant stakeholders on the appropriate courses of action.
10. Follow up the consistent application of policies and standards across all technology projects, systems, and services, including, but not limited to, privacy, risk management, compliance, and business continuity management.
11. Ensure that ICT security is considered in evaluating, selecting, installing, and configuring applications.
12. Recommend and coordinate the implementation of technical controls to support and enforce defined security policies.
13. Research, evaluate, design, test, recommend, or plan the implementation of new or updated information security hardware or software.
14. Ensure that substantive Disaster Recovery and Business Continuity plans are regularly tested and updated.
15. Manage security technologies such as firewalls, intrusion detection systems (IDS), antivirus software, and encryption tools to ensure effective protection against cyber threats

Person Specification (Education, training, skills and experience)
Qualifications
• Bachelor’s Degree in Computer Science, Information Technology or any other related field.
• At least one of the following certi¬fications, CISM, CISSP, CRISC, and CASP+ or other certifications.

Experience
• 5 years’ experience in ICT Operations 2 of which should be in ICT security and/or ICT governance.
• Relevant experience in IT governance, risk management, and compliance within the banking or financial services industry.
• Strong understanding of regulatory requirements and industry standards related to ICT governance, risk management, and cybersecurity.
• Strong skills in business process analysis, and redesign.
• Strong skills in assessing complex governance and compliance issues and developing effective solutions.
• Strong understanding of banking operations, Fintech, and product development trends.
• Strong understanding of digital banking services.

Competencies & Knowledge
• Adaptable to technological advancements, regulatory changes, and shifting business priorities
• Strong communication and interpersonal skills
• Ability to analyze complex issues
• Strategic Thinking
• Must be a person of integrity.
• Risk management skills