Information Security Analyst

Share and send to your friends !

Job Title: Information Security Analyst

Department: IT

Reporting to: Manager – Information Security & Controls Assurance

Responsible for: N/A

Region: Dar es Salaam

PURPOSE OF JOB

To support technology department in Information Security Management within the department and the bank. Security Analyst will primarily assess the adequacy of security and governance controls, evaluate threats and vulnerabilities, and calculate the level of current and residual risk and communicate these risks to business units and management. The incumbent should plan, organize and deliver cost effective and efficient IT security controls to protect and defend systems and information assets (business and customer data) against any internal and external threats.

PRINCIPAL RESPONSIBILITIES

  • Identify and communicate recommended security control deficiencies for banks units.
  • Ensure sensitive data is protected and is effectively managed and policed.
  • Review and monitor security across all systems, applications, and network infrastructure (Including Penetration Testing) and implement security controls as per industry best practice.
  • Introduce the relevant processes and procedures to manage Security within the Bank to help further reduce the risk of Data Breach.
  • Provide information security guidance and direction to projects and business initiatives as required. Ensure change initiatives incorporate information security requirements.
  • Manage and monitor the Bank’s firewalls and all security resources and assets.
  • Manage security incidents and perform change management risk reviews and post implementation reviews for all changes requests.

QUALIFICATION AND EXPERIENCE

  • Bachelor’s degree in computer science, IT, Computer engineering and any other related course
  • The successful candidate must have a technical background and experience of information security of at least one year.
  • CEH, CompTIA Security+, CISSP, CISA certifications will be an added advantage.

COMPETENCIES, KNOWLEDGE, AND SKILLS

  • Good understanding of IT controls and service standard such as ITIL, COBIT, IS027000.
  • Advanced skills in Network and System Security, including tools such as SIEMs, EDR, SOAR etc
  • Management of Firewalls, SOC operations and incidents management

HOW TO APPLY

Please send your application to [email protected]