Senior IT Security and Infrastructure Specialist at Assets Microfinance Bank

Job Description

• You will be instrumental in the design and enforce policies and procedures that protect our organization's computing infrastructure from all forms of security breaches. 

In this role, you will:

• Partner with relevant stakeholders to maintain and improve the security posture of Business and IT.
• Develop appropriate measures to understand the effectiveness of securing the bank through the availability of systems.
• Perform monitoring via the Security Information and Event Management (SIEM) tool as well as from external sources (e.g. telephone or email).
• Developing and implementing a comprehensive plan to secure our computing infrastructure.
• Monitoring network usage to ensure compliance with security policies.
• Keeping up to date with developments in IT security standards and threats.
• Performing penetration tests to find any flaws.
• Documenting any security breaches and assessing their damage.
• Educating colleagues about security software and best practices for information security.
• Responsibility of identification, measurement, assessment and reporting of IT risk - Second Line of Defence (2LOD)
• Responsible for the Digital Access Management regarding all used Applications (Such as Core-banking Systems)
• Incident response / support of IT Teams during security related incidents.
• Assessment of Key Risk Indicators to identify and migrate appropriate actions in close collaboration with the Head of IT (1LOD)
• Maintenance of the Information Security Framework and underlying policies, procedures, standards, and guidelines.

Requirements
Ideally, you will have:

• Bachelor's Degree in Computer Science or related field
• Relevant IT Security related qualifications, for example MCSE, CISA, CISM, CISSP, CCISO or others.
• 5 Years’ experience in identical role, configuration, optimization, and security monitoring of incident handling to ensure the confidentiality, integrity and availability of information assets
• 3 Years’ experience in TCP/IP, HTTP, network access controls, security principles
• Demonstrated knowledge of standards associated with the role, e.g. ISO, CobiT, ITIL.

This job is perfect for you if you have:

• Solid knowledge of various information security frameworks.
• Ability to educate a non-technical audience about various security measure.
• Must be a creative and analytical thinker
• Must have excellent execution skills and be passionate about achieving excellence
• Commitment to learning and personal development with an ambitious growth mindset
• Communication skills & active listening
• Investigation & diagnostic skills.