Job at AB Bank : Information Security Officer (Deadline: 18 August 2017)
AB Bank Rwanda Limited has been operating in Rwanda since January 2014. It is a member of an international network of commercial banks providing banking services to micro, small and medium-sized enterprises and private individuals in Africa, Asia and Latin America.
Since the start of operations, AB Bank Rwanda has been growing remarkably in number of clients and staff. To further facilitate the growth of our client base and branch network we are now seeking motivated professionals to join us. With this in mind, applicants will need to demonstrate willingness to:
–find solutions for challenges in a changing market and work environment
–contribute to the growth of the bank
–understanding excellent customer service
We are now seeking staff for the position Information Security Officer (ISO)
Overall Job Function
information security risks under explicit management control through the establishment and implementation of the Information Security Management System (ISMS).
Information Security Officer (ISO)
AB Information Security Committee & AH Information Security Manager
800$ to 1,100$
·Leading of project ISMS implementation performing tasks as specified in the project plan within given time- and budget limits;
·Leading of formal approval process (within AB Bank Information Security Committee) and functional approval process (within AB ISMS Steering Committee) for Information Security Policies;
·Leading of implementation of Information Security Management System in AB Bank based on model processes and artefacts developed by Access Holding Information Security Department;
·Day-to-day implementation of information security policies;
·Act as the committed owner of the security incident and vulnerability management processes from design to implementation and beyond
·Leading technical implementation based on tools (e.g. Inventory of Assets, Access Control Matrix,..) ensuring that suitable technical, physical and procedural controls are in place in accordance with the policies, and are properly applied and used by all employees and contractors;
·Specification of prevailing gaps in the systems;
·Provision of direction, resources, support and review necessary to ensure that information assets are appropriately protected;
·Proposal of corrective and preventive measures if applicable;
·Submission of periodic reports on implementation status, Key Risk Indicators (KRI) and Incident Management related to information security to AB Bank Information Security Committee and Access Holding Information Security Manager;
·Leading of training and awareness raising sessions on information security for AB Bank personnel.
Necessary Experience and Knowledge
·At least 3 years of full-time work experience in IT in preferably a bank or financial services, Telecom or any related field.
·A good knowledge of information security management or related functions (such as IT audit or IT Risk Management), will be and added advantage.
·A good understanding of project management
·A good understanding of technical IT roles such as IT architecture, development or operations, with a clear and abiding interest in information security and or system controls;
·Absolutely trustworthy with high standards of personal integrity (demonstrated by an unblemished career history, complete lack of criminal convictions etc.), and willing to undergo vetting and/or personality assessments to verify this if necessary
Desired Experience and Knowledge
·Understanding of or a Professional certification, such as CISSP, CISM, CISA, CRISC, or other information security credentials, preferred but not required.
·Ability to communicate effectively with colleagues in various business disciplines and IT regarding technical and business banking issues in English language
·Ability to successfully communicate with Senior Management, Head of departments and IT specialists
·Willingness and ability to coach colleagues on a daily basis
·Role models supportive contributions in the team and negotiates successful resolutions
·Takes a proactive role in building and contributing to a multi-disciplinary team and encouraging team members to support each other
·Ability to work independently, meet deadlines and motivate others to do the same
·Structured way of working with adequate time management
·Good work-load management: post holder can effectively handle several problems or tasks at once and stays calm under stress and also keeps an overview of priorities
·Maintains an overview of relevant information and shares them with the respective colleagues
Desired Skills and qualifications:
·Certified Information Systems Security Professional (CISSP) is an independent information security certification governed by the International Information Systems Security Certification Consortium
·Certified Information Security Manager (CISM) is a certification for information security managers awarded by ISACA
·ISACA Certified Information Systems Auditor
·Certified in Risk and Information Systems Control (CRISC)