IS Security Manager – Cassava Smartech
Reporting To Head – Security and Governance
Job Purpose
To develop interventions/programs that minimises data loss and revenue leakages along the service delivery value chain from both internal and external risks. and reporting in the field of IT security.
Qualifications and Experience
• A BSc Degree in Information Systems, Computer Science or equivalent
• A post graduate qualification is an added advantage
• A minimum of 4-6 years’ experience in a similar or related environment working with and managing application
security programs
Key Result Areas
• Assesses, evaluates and recommends IT Security and Governance systems with regard to medium to long-term goals of Group.
• Analyses, identifies and projects IT risk requirements.
• Develops and maintains control procedures and processes aimed at preventing revenue loss and fraud
• Identifies potential revenue assurance problem areas and arranges the required investigations and takes relevant action where necessary.
• Builds business IT processes and systems in line with best practice
• Creates and maintains Information Risk Governance Documents
• Creates, manages and reviews on a periodic basis, existing methodologies, frameworks and approaches as they relate to IT risk.
• Drives the development of a risk and control culture in the company through knowledge sharing and creating awareness on the importance of risk management.
• Manages the IRMS/ISMS for the company through ensuring appropriate Information Risk Management approaches are implemented.
• Enables IT assurance and audit activities against an Enterprise-wide relevant framework
• Updates the information security policies and procedures and ensure that they are reviewed monthly/quarterly.
• Performs trend analysis on all the incidents, audit findings, identified risks to provide a complete picture of the risk profile of the areas and highlight trends.