Technology Risk & Cyber Security Specialist job at NBC
Website :
771 Days Ago
Linkedid Twitter Share on facebook

Vacancy title:
Technology Risk & Cyber Security Specialist

[ Type: FULL TIME , Industry: Banking , Category: Computer & IT ]

Jobs at:

NBC

Deadline of this Job:
25 October 2022  

Duty Station:
Within Tanzania , Dar es Salaam , East Africa

Summary
Date Posted: Tuesday, October 11, 2022 , Base Salary: Not Disclosed

Similar Jobs in Tanzania
Learn more about NBC
NBC jobs in Tanzania

JOB DETAILS:
Job Summary
• The Technology Risk & Cyber Security Specialist is responsible for ensuring that specific Technology Risk and Cyber Security controls & solutions are applied to ensure confidentiality, Integrity, availability and non-repudiation of NBC information systems and data are at optimum level, and that they comply with the Technology Key Risk as well as Cyber Security policies and standards, and consequently meets the businesses requirement and safeguards the Bank’s computing environment, business operations and reputation.

Job Description
• Conducting risk assessments to all new IT systems, identifying the risks that may be introduced and their corresponding controls measures required to mitigate the identified risks.
• Conduct controls snap checks around technology operations and cyber security critical processes.
• Perform regular security assessments on systems configurations, application security, databases, networks and data centers to determine security violations and inefficiencies.
• Be involved in projects implementation providing security guidance from the initial stages of systems/ software development up to the end.
• Assist on threat intelligence and attack monitoring activities identifying abnormalities, reporting violations and recommend essential control measures.
• Monitor identity and access management, including monitoring for abuse of permissions by authorized system users.
• Monitor organization’s networks for security breaches and incidents to identify the root cause and investigate a violation when one occurs.
• Regular monitoring, measuring and reporting of technology risk and cyber security thresholds and the related key indicators, identify and define reasons for out of threshold indicators
• Respond to security incidents including ‘phishing’ emails and ‘pharming’ activity, breaches etc.… and mitigate the consequences of a cyber-incident.
• Analyze security events and incidents, identify root cause and impacted control objectives. Ensure risk events are booked for all critical security incidents
• Undertaking third-party due diligence & security assessment for critical IT Vendors and Service Providers to ensure they meet security requirements.
• Assist with internal and external audits engagements relating to information security and technology risk
• Oversee internal and external security assessment activities (Vulnerability Assessment and Penetration Test- VAPT)
• Participate/ provide support in fraud investigation that related to technology risk and cyber security
• Plan for disaster recovery and create contingency plans in the event of any security breaches
• Coordinate implementation of regulatory requirement, and monitor compliance for the same.
• Maintain an information security and technology risk register and actively monitor and coordinate remediation of technology and cyber security control gaps
• Perform and/or coordinate regular security awareness training for all employees to ensure consistently high levels of compliance with IT Security policies.
• Keep abreast of the latest technology &b security threats and development.
• Perform other job-related duties as assigned.

Qualifications and Experience
• Advanced diploma or bachelor’s degree in management information systems, or related field.
• At least one professional Certification in Information Security, System Audit or IT Governance e.g. CISM, CISSP, CISA, CRISC, CGEIT, CEH, or CCNA Security
• At least one professional qualification in ITSM related area (i.e. ITIL or COBIT)
• Familiarity with security frameworks (e.g. NIST Cybersecurity framework) and risk management methodologies
• Good understanding of Infrastructure (servers and network) designs and architecture.
• At least 4 years of prior relevant experience
• Proficiency in Security and Risk management
• Vulnerability management and penetration testing
• Identity and Access Management
• Communications and Network Security.
• Security Operations
• Application Security
• Asset Security
• System Resilience and Data Recovery Capabilities

Qualifications

Bachelor`s Degrees and Advanced Diplomas – Information Technology, Certified in Risk and information systems Control (CRISC) – Other, Digital familiarity (Meets some of the requirements and would need further development), Experience in a similar environment, IT Security (Meets some of the requirements and would need further development), Openness to change (Meets some of the requirements and would need further development), Process optimisation (Meets some of the requirements and would need further development), Reasoning (Meets all of the requirements), Risk and Security Management (Meets some of the requirements and would need further development)



Work Hours: 8


Experience in Months: 48

Level of Education:
Postgraduate Degree

Job application procedure
To apply please click HERE


All Jobs

QUICK ALERT SUBSCRIPTION

25 October 2022
Job Info
Job Category: Computer/ IT jobs in Tanzania
Job Type: Full-time
Deadline of this Job: 25 October 2022
Duty Station: Dar es Salaam
Posted: 11-10-2022
No of Jobs: 1
Start Publishing: 11-10-2022
Stop Publishing (Put date of 2030): 11-10-2077
Apply Now
Notification Board

Join a Focused Community on job search to uncover both advertised and non-advertised jobs that you may not be aware of. A jobs WhatsApp Group Community can ensure that you know the opportunities happening around you and a jobs Facebook Group Community provides an opportunity to discuss with employers who need to fill urgent position. Click the links to join. You can view previously sent Email Alerts here incase you missed them and Subscribe so that you never miss out.

Caution: Never Pay Money in a Recruitment Process.

Some smart scams can trick you into paying for Psychometric Tests.