Job Description
Key Responsibilities:
•Develop and Implement the IS awareness program and measure the effectiveness in the authority to promote security aware culture.
• Carryout assessments to identify non-compliance to the ISO 27001 requirements, policies, procedures and controls follow up with the concerned processes to ensure compliance.
• Conduct information security risk management, including assessment and treatment plan and provision of status reports.
• Develop and review information security policies, procedures and standard to promote information security and in compliance to ISO27001
• Monitor compliance to the developed IS policies, procedures and controls in the authority ensuring adherence to the ISO 27001 standards.
• Ensure compliance to ISO 27001 security requirements and control objectives in the Authority.
• Day-to-day information security operations, supervision, reporting, management of performance and development of staff in the function
Academic Qualifications
A bachelor’s degree in Computer Science or related field from a recognized institution.
Professional Qualifications
-Must have at least one of the following security certifications or training in CISA/CISM/CEH/CHFI/ECIH/CISSP/ISO 27001/CRiSP
Relevant Work Experience
-At least three (3) years related IT security work experience in a large or busy organization.
Technical Skills Required:
• Experience in Information Security Management System
• Experience in development and review of policies
• Knowledge in Information security risk management
• Experience in Information security awareness development and training
• Experience in cyber security threat Analysis or incident management
•Experience in Project Management
Key Competencies:
• Excellent stakeholder engagement skills
• Analytical mind with problem-solving aptitude
• Excellent listening, communication and presentation skills
• Reliable and thorough with a deep commitment to accuracy
• Self-motivated and able to work independently
• A team player
• Ability to prioritize competing work commitments and deliver on time