Information Security Officer at CBA Bank

CBA Bank Information Security Officer Vacancy in Nairobi 
Information Security OfficerReports To: Head of ITDepartment:Information Technology Division:Business Support
Job Purpose Statement
The purpose of this role is to provide continuous independent assurance on the bank’s Information Security as regards confidentiality, integrity and availability of the IT infrastructure, processing systems and related resources in line with the Information Security Policy and supporting procedures.

Key Responsibilities 
  • Implementation and evaluation of Technology Controls for Operating system, T24 application, Data base management system interfaces and the network.
  • Improvement of Information Security Program Development, Management and Evaluation processes.
  • Promotion of Information Security awareness within the organization through guidance, consulting and coordinating relevant programs to ensure an IS compliant culture.
  • Information Security Program Development, Management and Evaluation.
  • IS Guidance Consulting and Coordination.
Main Activities
Technology Controls Function 
  • Complete supervision of technology control function,
  • Review of operating and information systems to ensure that they support business functions in a controlled manner, identify issues that represent risk to the business, report the findings, prepare audit reports for management information.
  • Provide input for technology management to monitor and track issues until corrective actions are completed,
  • Development of/involvement in independent review of technology related procedures, product programs to ensure that the appropriate infrastructure is incorporated into the different business initiatives and the bank technology policies are respected.
  • Proactively anticipate potential threats and vulnerabilities and provide guidance in coordination with IT department on effective responses or control measures.
  • Review of all relevant system logs to identify and address activity that is not consistent with set out Information Security guidelines and standards.
  • Carry out Information Security reviews along the various phases of a project’s lifecycle as detailed in the bank’s Project Management framework to ensure that all delivered.
Information Security Program Development, Management and Evaluation 
  • Proactively enforce the IS Policy that will act as a springboard to exercise authority in ensuring compliance to standards and controls designed to mitigate identified business risks.
  • Manage the implementation of IS into the day-to-day operations and culture of the Business.
  • Work with business managers to develop IS practices into operational procedures based on the ISP&S and IS Guidelines.
  • Review IS policies, standards, guidelines, and directives and communicate business position to unit head.
  • Participate in formulation of Risk Acceptance requests.
  • Identify key business contacts to ensure adequate coverage for the business’ Information Security program.
  • Meet regularly with business and technology managers.
  • Provide monthly reports to unit head on the status of Information Security programs and initiatives.
  • Advocate to senior executive management, through the GM RMD, for their commitment to continuous Information Security Frameworks.
IS Guidance Consulting and Coordination 
  • Provide interpretation of the ISP&S to the Business.
  • As principal advocate for Information Security Awareness in the bank, develop and monitor security awareness programs for all employees that communicate their role and responsibilities.
  • Ensure information security solutions are consistent with theISP&S and corporate architectural directions/directives and oversee deployment.
  • Lead businesses in development of action plans as a result of gap assessment findings, and/or ethical hacking results.
  • Provide guidance in resolving IS audit findings and lead the development of reports and corrective action plans.
  • Coordinate self-assessments, gap assessments, risk acceptance and other control related efforts with the business, controls and compliance functions.
  • Be aware of application, product and system development within the business and appraise the effect and appropriateness of planned changes to the existing control framework.
  • Integrate the Information Security Review Process (ISRP) into all business development, acquisition and project management scenarios.
  • Ensure that Information Security objectives are incorporated into all application, product, system and services lifecycles.
  • Evaluate impact of business change/ reengineering efforts on information security controls.
  • Maintain a relationship with internal and external auditors to guide their activities and also support the implementation of agreed corrective actions.
Continuous Professional Development 
  • Attend relevant training on emerging trends and practices within the IS field
  • Network within the profession and relevant associations to keep abreast with industry
  • Reference relevant professional institutions e.g. CoBIT, ISO17799, ISF’s Standards of Good Practice, to enable the bank achieve world-class information security practices.
Competence Requirements 
  • Knowledge and good understanding of Information Security and control objectives.
  • Interpersonal skills to effectively communicate with and manage customer expectations (internal and external), and other stakeholders who impact performance.
  • Appreciation of Audit methodologies.
  • Fair understanding of Information Systems architecture and operational practices.
  • Familiarity with Computer Aided Audit Tools.
  • Good written and oral communication skills for effective audit report writing and presentations.
  • Performance management to optimize personal productivity.
  • Knowledge and effective application of all relevant banking policies, processes, procedures and guidelines to consistently achieve required compliance standards or benchmarks.
  • Self-management to enable development of open communication, teamwork and trust that are needed to support true performance and customer-service oriented culture.
  • Personal motivation and drive exhibited through commitment to work hard towards goals and showing enthusiasm and career commitment.
Qualifications and Experience Requirements 
  • Undergraduate degree in Computer Science /Information Technology – Minimum Upper 2nd Class honors or 3.0 GPA.
  • Minimum 6 years working experience in a busy IT environment.
  • Experience of working in the IT function within a banking environment will be an advantage.
  • Certified Information Systems Auditor certification.
  • Understanding of quality control process.
How to Apply
If you feel that you are up to the challenge and posses the necessary qualification and experience please send your resume and application letter indicating your experience and why you are the most suitable candidate for the role, quoting the Job Title as the subject of your email to: jobs.cba@cbagroup.com by the 2/3/2013.

Only shortlisted candidates will be contacted.

+We are an equal opportunity employer, and do not ask individuals to supply funds as part of the recruitment process.
Information Security Officer at CBA Bank Information Security Officer at CBA Bank Reviewed by Unknown on 10:54:00 PM Rating: 5

JOBS CATEGORY

Tanzania Kenya NGO JOBS Uganda Best Jobs Consultancy Rwanda ICT JOBS Administrative United Nations Sudan Best Jobs Finance Health - Medical Engineering Ethiopia Education Agricultural Lecturer Human Resources Somalia Media Congo - Kinshasa Legal Jobs Bank Jobs Monitoring and Evaluation Mining World Vision Burundi Procurement African Barrick Gold Accountant Zambia Sales and Marketing US EMBASSY East African Community Mozambique Telecoms Research CARE International Save The Children Plan International Arusha Malawi South Sudan Oxfam Scholarships African Development Bank Finance and Administration SafariCom Aviation The Commonwealth American Embassy Sales Zanzibar Environmental Catholic Relief Services Dar es salaam USAID Operations FHI 360 UNDP Security World Bank Economist TradeMark East Africa Unicef Hospitality Managers International Rescue Committee (IRC) Restless Development Accounting Civil Engineers AMREF Morogoro Utumishi AfDB African Development Bank COOPI - Cooperazione Internazionale Driver - Logistics Path International Mwanza African Union Tigo Jobs Marketing Mbeya Teaching Au African Union PSI Population Services International Pwc PricewaterhouseCoopers East African Breweries North Mara Gold Mine ACTED Djibouti Malaria Consortium Bulyanhulu Gold Mine DFID Driver Buzwagi Gold Mine Jhpiego COMESA FINCA JOBS International Jobs Adeso Danish Refugee Council Kilimanjaro Nairobi Coca-Cola Handicap International Pact International Rio Tinto Solidarités International Tender EGPAF Elizabeth Glaser Pediatric AIDS Foundation Logistics Serengeti Breweries Ltd Nation Media Group Africare Norwegian Refugee Council Samaritan's Purse Chemonics International COUNTRY DIRECTOR ICAP of Columbia University InterShips Precision Air RwandAir Marie Stopes International (MSI) Serengeti Breweries Volunteer Climate Change IGAD Tetra Tech ARD Agriculture Jobs Dodoma Iringa One Acre Fund Project Management Clinton Health Access Initiative (CHAI Technoserve Twaweza East Africa ActionAid Lutheran World Federation SADC Secretariat Tanga Vso International ACDI/VOCA Halmashauri Agha Khan Kenya Commercial Bank World Agroforestry Centre Deloitte East Africa International Organization for Migration (IOM) COMESA Secretariat: Software Engineering Safety and Security Shinyanga Jobs Tanzania Breweries Pathfinder International World Health Organization KPMG TANROADS Tanzania Electric Supply Company British Council Futures Group KCB BANK UN-Habitat WFP World Food Programme Barclays GEITA GOLD MINING TANESCO Electrical Engineer Food and Agriculture Organization GOAL Mombasa Tabora WWF World Wide Fund for Nature Microsoft Tanzania Ports Authority East African Development Bank Family Health International (FHI) IBM EAST AFRICA IntraHealth International Mercy Corps SERIKALINI - GOVERNMENT OF TANZANIA AccessBank Community Development Jobs Data Base Management Google Africa ICAP - TZ KEMRI/CDC Program WaterAid Tanzania Auditor SNV International Stanbic Bank Amnesty Horn Relief Kampala Management Systems International (MSI) Standard Chartered Bank VETA Christian Aid DIAMOND TRUST BANK Helen Keller International Help Age Mtwara Uganda Telecom Airtel Africa Equity Bank Internships Marie Stopes TCRA Web Development B B C WORLD SERVICE Human Rights Kigali Makerere University Nile Basin Initiative Kenyatta University Kigoma Mzumbe University NSSF National Social Security Fund Nile Breweries Limited Tulawaka Gold Mine University of Nairobi kenya Airways Bank of Tanzania Graduates MTN Muhimbili National Hospital Nepad Partners in Health Room to Read SUMATRA UNWOMEN African Wildlife foundation (AWF) KEMRI Kagera Librarian MENTOR Initiative Trainee USAILI - INTERVIEW Uiversity of Nairobi WaterAid International icipe Project CAFOD - Catholic Agency for Overseas Development Egerton University EngenderHealth Goal Ireland Kenyan Banks Lake Victoria Basin Commission Peace Corps TANAPA TASAF Tanzania Social Action Fund Zanzibar University ACB AKIBA COMMERCIAL BANK AGRA Alliance for a Green Revolution in Africa Advans Bank Ethiopian Airlines Freedom House IITA International Institute of Tropical Agriculture Legal Moshi NMB BANK Resolute Tanzania Singida Uganda Uganda National Roads Authority University of Dar es salaam University of Dodoma British High Commission ChildFund EWURA FilmAid International NECTA TPDC Tanzania Civil Aviation Authority (TCAA) United States International University World Concern Aga Khan Foundation CBA Commercial Bank of Africa Ecomist Ernst and Young IUCN International Union for Conservation of Nature International Medical Corps Islamic Relief Kakira Sugar Musoma National Institute for Medical Research OPEN UNIVERSITY OF TANZANIA Relief International TAA Tanzania Airports Authority Trócaire Uganda Revenue Authority VODACOM TANZANIA VSF Belgium Architects Hivos IFC International Finance Corporation Ifakara Health Institute Inoorero University International Commercial Bank Kenya Red Cross Society MADEREVA Medical Oil and Gas Pwani University College SOKOINE UNIVERSITY Tumaini University Water Engineering AWF African Wildlife Foundation Acacia Mining Accounts African Virtual University Altima Africa Ardhi University Bank of Uganda Business Development Concultancy Del Monte Kenya Embassies Kenya Airports Authority Lake Victoria South Water Services Board Mara National Bank of Commerce RECORDS MANAGEMENT JOBS RUKWA Ruvuma Search for Common Ground Songea TTCL Tanzania Telecommunications Company Limited Unilever War Child International Zinduka Afrika ACORD AKU ​Aga Khan University Africa Nazarene University Africa Rice Center (AfricaRice) Aga Khan Health Services CRDB BANK Commercial Bank of Africa Daraja Tanzania Engineers Registration Board (ERB) Fina Bank International Potato Center International Potato Center (CIP) Intrahealth Jomo Kenyatta University Kilimanjaro Christian Medical Centre Kyambogo University Lindi Jobs MCL Mwananchi Communications MUHAS-harvad Moi University NBC BANK National University of Rwanda Ngorongoro Conservation Area Authority Njombe Nuru International Nzoia sugar Company RTI International SUA SOKOINE UNIVERSITY OF AGRICULTURE THE LAW SCHOOL OF TANZANIA TRA Tanzania Revenue Authority Tanzania Postal Bank The Foundation For Civil Society Udhamini wa Masomo Western Union AIR TANZANIA Action Against Hunger (ACF) Agricultural Society of Kenya BRALIRWA Bondo University College Caritas Comoros Concern Worldwide Conservation Jobs Consolidated Bank of Kenya DHL Express Ewaso Ngiro South River Basin Development Authority Geologist Gulf African Bank INSTITUTE OF ADULT EDUCATION Jomo Kenyatta University of Agriculture and Technology Kabale University Kabale University (KAB) Kenya Ports Authority KickStart International MORUWASA Morogoro Urban Water and Sanitation Authority MSH Management Sciences for Health Mumias Sugar Company Nairobi Hospital Nkumba University Rural Electrification Agency SOKINE UNIVERSITY SONGWE STAMIGOLD Stores TACAIDS TARURA TCU Tanzania Commission for Universities Tullow Oil World Lung Foundation (WLF) ALAF Limited Aga Khan Development Network (AKDN) Aga Khan Hospital Air Malawi American Refuge Committee BENKI YA POSTA - TPB BANK BTC Belgian Technical Cooperation Bhttp://www.blogger.com/img/blank.gifank of Tanzania Bioversity International CHF International Customer Service Jobs DANGOTE DIT DAR ES SALAAM INSTITUTE OF TECHNOLOGY Danida Dar es Salaam Institute of Technology Daystar University ECOBANK ETDCO Electrical Transmission and Distribution Construction and Maintenance Company European Union IFM INSTITUTE OF FINANCE MANAGEMENT INSURANCE JOBS - BIMA ITECH Internews® Network KUITWA KAZINI Kenya Accreditation Service Kenya Polytechnic University College Kilombero Sugar Company Kisii University College Kisumu Laboratory Jobs MSD MEDICAL STORES DEPARTMENT MSF Switzerland Management Sciences for Health Manyara Maseno University Ministry of State for Planning Muteesa 1 Royal University Médecins Sans Frontières NIDA National Identification Authority Narok University College OSHA Occupational safety and Health Authority Open Society Initiative for Eastern Africa (OSIEA) PA PAC PEPSI POLICE - POLISI Petroleum EngineerS RWANDA HOUSING AUTHORITY Seychelles Songas TBC TANZANIA BROADCASTING CORPORATION TBS TANZANIA BUREAU OF STANDARDS TFDA TANZANIA FOOD AND DRUGS AUTHORITY TIB - Tanzania Investment Bank Tanzania Mortagage Refinance Company Tanzania Teachers’ Union Transmara Sugar Company Tropical Pesticides Research Institute Tumba College of Technology Twiga Cement UNESCO UNOCHA Umma University University WRP Walter Reed Project ZANTEL ao uga
Powered by Blogger.