Job Description
SYSTEMS SECURITY ANALYST IV - 4 Posts
Job Ref: HR: KP1/5B.2/1/3/1185
Reporting to the Principal System Security Analyst, the successful candidates will be
responsible for implementing, reviewing and aligning ICT Systems, Databases and
Business applications acquisition and development policies, procedures and
practice to ensure that they comply with IT industry standards to fully secure the
Company’s data and information.
The specific tasks will entail:-
Assist in planning for short and long-term resources requirements for the section.
Work with database administrators, systems developers and application owners
to review and implement security controls to mitigate system security threats/risks
throughout the system/program life cycle.
Review procedures and processes to identify security control gaps in systems
development, acquisition and maintenance to ensure that threats are properly
identified, analyzed and mitigated.
Participate in investigations on computer security compromises, incidents, or
problems and recommend corrective actions.
Review application, system and database logs and audit trails to identify
violation to procedures and processes.
Research on emerging threats and vulnerabilities in information security to gain
awareness of the latest information security trends and developments.
Review version, patch management procedures and practices in all systems,
and where necessary develop and implement measures to improve the same.
Implement procedures to automate and enhance monitoring of business
applications, databases and systems, including user and process activities.
Identify and develop security and productivity-enhancing improvements and
innovation.
Coordinate security measures for information systems to regulate access to
system data and information to prevent unauthorized modification, destruction,
or disclosure of information.
Train users and promote security awareness to ensure system security and to
improve server and network efficiency.
Consult with users on data and information access and processing needs, to
mitigate against security violations, and programming changes.
Recommend modification or update audit monitoring systems and solutions to
incorporate new applications, databases and systems, or change individual
access status
Coordinate execution of implementation plan of system changes/upgrade
between IT, user departments and outside vendors to alleviate security violations
Perform risk assessments to identify violation or vulnerabilities to procedures and
execute tests on applications to ensure that data availability, confidentiality and
integrity is maintained and as well guarantee compliance to standards and
process activities and advise/recommend corrective action.
Maintain access management reports and processes to identify access events,
exceptions, or trends which require investigation, remediation, or mitigation
Contribute to the information security planning, assessments, risk analysis, risk
management, certification and awareness activities for system operations.
Interested applicants must possess the following;-
Job Specifications
Bachelor of Science Degree in Computer Science, Information Technology,
Electrical & Electronics Engineering or related field from a recognized Institution.
Certified Information Security Manager (CISM) certification for Analyst I and
Certified Information Security Auditor (CISA) for Analyst IV.
Five (5) years working experience for Analyst I and Two (2) years working
experience for Analyst IV and in a similar role and organization.
Technical Capabilities & Key Competencies
Experience in System vulnerability checks and threats analysis including
penetration testing.
Proficiency in computer applications such as Systems administration, Database
administration, Programming and Systems analysis.
Understanding best practices in systems security and controls.
Good project management skills.
Excellent planning, presentation, evaluation skills
Creativity and innovation
Drive for results and achievement
Insightful, proactive and future focused
Demonstrates high level of integrity