Chief information security officers are expected to advise management on information security issues, perform security risk assessments, implement information security procedures, manage information security policies and handle information security incidents.
Safeguarding data held by our organization. Working with business managers, chief executive officers and information technology (IT) managers, CISOs observe and monitor the security of websites, applications, computers and databases.
Document processes, procedures and policies to guide the unit and organization
Manage internal communication regarding system updates and provide estimates of budgetary requirements for technical upgrades
The successful candidate will be responsible for providing expert information security advice that enables technology to be implemented in line with security policy and within organisational risk appetite as well as responsible for the provision of security services to main connected markets.
Plan and ensure execution of Security arrangement as required by the management.
To supervise and control the work of security personnel.
To assist the management in maintaining law and order.
Oversee incident response planning as well as the investigation of security breaches, and assist with disciplinary and legal matters associated with such breaches as necessary.
Maintain relationships with local, state and federal law enforcement and other related government agencies.
Work with other executives to prioritize security initiatives and spending based on appropriate risk management and/or financial methodology.
B.Sc. Computer Science or Electronic & Electrical Engineering or relevant IT Facility Management degree.
Ideal candidate should have a minimum of 7yrs cognate experience, in Information Technology, Information Security, Microsoft applications and/or physical infrastructure.
All applicants must have some academic background in computing and ideally have work in Information security or similar.
Ability to self-manage task through to completion
Good time management and interpersonal skills
Security Principles, Best Practice and Standards - PCI DSS, ISO 17799, ISO 27001
Technical certification such as: MCP, MCSE, MCSA, MCITP, CCNA, CCNP, ITIL, MCTS, CCIE etc.
Risk Management methodologies
CISSP or equivalent
Intrusion detection systems (IDS)
Operational Security administration
Technical standard creation and implementation
A higher degree MBA/MSC is an advantage