Job Detail
-
Career Level Officer
-
Experience 3 Years
-
Gender N/A
-
Industry Banking
-
Qualifications Degree Bachelor
Job Description
Qualifications/Experience
- Bachelor’s degree in computer science, Information Systems, Cybersecurity, Information assurance and any related qualification.
- Industry security professional certification including, but not limited to CISSP, CISM, CRISC, CISA, CCISO, Security, CEH, ISO 27001, ISO 22301, ISO 27701.
- Knowledge of ISO management frameworks in Business Continuity, Information Security Managment and Privacy
knowledge of data protection laws and regulations of Zimbabwe is required. - Business continuity and Data protection certification or knowledge is an added advantage.
- At least three years of experience in computer systems and cybersecurity.
Key Result Areas
- Monitoring and interpreting regulatory requirements related to ISMS, PIMS, PCI DSS, SWIFT, and data protection law.
- Ensuring ongoing compliance with cybersecurity regulation and standards.
- Coordinating all internal and external audits, including scheduling, preparation, and follow-up actions.
- Managing audit documentation and evidence collection.
- Ensuring policies are aligned with current regulations and best practices.
- Assisting in the development and maintenance of information security policies, procedures, and standards.
- Conducting staff training on compliance requirements and security awareness.
- Developing materials to promote a culture of security within the bank.
- Assisting in risk assessments and recommending mitigating controls.
- Monitoring the implementation of risk treatment plans.
- Preparing regular compliance reports for senior management and regulatory bodies.
- Keeping abreast of changes in the regulatory landscape and advising on necessary adjustments.
- Prepare monthly Endpoint protection compliance reports for the affiliate.
- Prepare monthly vulnerability assessment reports for the affiliate
- Prepare monthly cyber incidents reports that document attempted attacks, successful attacks and security breaches
- Monitor the bank’s networks for security breaches and investigate when one occurs.
- Check for vulnerabilities in computer and network systems.
- Responding to incidents, such as intrusion detection, and providing thorough post-event analyses.
- Monitoring for attacks, intrusions, and unusual, unauthorized or illegal activity.
- Follow up on remediation of identified vulnerabilities in line with the set-out policies and guidelines.
- Keep an up-to-date inventory of assets in line with the information security guidelines
- Work closely with IT to collaborate on cybersecurity issues.
- Collaborate in all new IT projects of the bank to identify security issues early during project design.
- Carry out any other responsibilities that may be assigned by Management in the area of Business continuity and data protection.
Interested candidates to send CVs to bankprof@africaonline.co.zw no later than December 16, 2024.