Summary
Date Posted: Thursday, February 13 2025, Base Salary: Not Disclosed

JOB DETAILS:
Job Purpose
Daily monitoring of the IT Infrastructure using security technical expertise and looking for patterns and potential issues, this includes working in close connection with Senior Management. The specialist will act a s a focal point for the provision of information security expertise, ensuring all aspects of IT security controls policies and procedures are implemented and audited. To be the prime contact for technical security Issue

Principle Responsibilities
• Design, implement, enforce, and monitor IT security strategy, IT Security Policies, cybersecurity framework to ensure alignment with related corporate policies, and compliance by both internal (employees) and external (vendors, third parties).
• Responsible for the technical advice, proposing and implementing solutions and processes to continuously reduce the ICT security risks. This involves working with different units in the department to reduce cyber security risk. From technical controls to policies (and everything in between).
• Responsible for forensic investigation of IT security incidents/breaches, providing regular reporting using the appropriate assurance framework.
• Ensure hardening (this includes patching) of all IT assets before promoted to production environment. Formal checklist will be used for installation/changes of any configuration in the banks environment this is for a new/existing setup, this includes but not limited to servers, workstations, databases, audio visuals and network devices, as per current hardening standards of the bank.
• Coordinate review of configuration API and PKI of the bank to ensure its compliance to the established standard on regular basis.
• Coordinate and propose technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks.
• Ensure administrative and monitoring security tools/applications including [but not limited to] the company -wide antivirus, email encryption, Data Loss prevention, file screening, server audit, and host protection systems. This requires continuous re-assessment of suitability for purpose and making or recommending any required changes.
• Provide and coordinate remediation consultation to global teams to support enterprise risk reduction efforts
• Ensure information security awareness and training program that informs and motivates workers on cyber-security matters as per the SAT program are performed.
• Participate in the incident response program, ensuring that the program is tested throughout the organization and that every high-level manager knows his or her duties during such an incident.
• Coordinate Provisioning & management of remote (VPN), DC access to users and real time monitoring of network user activities.
• Coordinating effective controls implementation to all ICT systems environment, this includes vulnerability assessment and penetration tests (VAPT).

Qualifications Required
• Must be a citizen of Burundi.
• Possession of a bachelor’s degree in ICT, computer systems technology or related academic field.
• ICT Security professional certifications, CISA, CISSP, CEH etc. will be an added advantage.
• Knowledge of the laws as it applies to IT Security and recommended standards as applied by appropriate bodies.
• Extensive IT knowledge across many of the below areas: IT desktop applications, Computer technology Operating systems (Windows, LINUX, Red hat, AIX …) Networking & Database technology.
• IT Security & Virtualization.
• Microsoft Server and Supporting Services.
• Expert knowledge of current IT cyber security issues.
• Management of a complex IT Infrastructure within large enterprise level organization.
• Contingency and Disaster Recovery Planning. Up to date knowledge of technical applications.
• Ability to think ahead and anticipate problems, issues and solutions.

Work Hours: 8

Experience in Months: 48

Level of Education: Bachelor Degree

Job application procedure

Interested and qualified? Click here

All Jobs

QUICK ALERT SUBSCRIPTION