Job Overview
Information Security Specialist
Dar es Salaam
Tigo
End date to apply: 04/07/2022
JOB PURPOSE
The Information Security Specialist is responsible for design, dimension, acquire, implement, develop and certify information security tools to be used in the company. This position also is responsible for evaluation, review and certify security process, vulnerabilities and risks in all developments for platforms and systems in the company, including the compliance and verification of the security policies and controls for governance.
WE LEAD AND CONTRIBUTE
By connecting, by owning, by delivering, by change and by vision. We live our values of trust, Passion, simplicity, integrity and innovation.
CORE RESPONSIBILITIES
- Review the configuration of systems and platforms; implement any modifications needed for assuring compliance with policies, standards and best practices, such as ISO 17799, 27001/2, CobiT and ITIL.
- Apply the enterprise information security and risk management program to ensure the integrity, confidentiality and availability of information owned, controlled or processed by the organization.
- Researches, evaluates and recommends information-security-related hardware and software, including developing business cases for security investments.
- Works with other departments and members of the information security team to identify, select and implement technical IS controls.
- Collaborates on critical IT projects to ensure that security issues are addressed throughout the project life cycle.
- Design and execute implementation of security tools including networks and delivery them to production.
- Document systems security and emergency measures policies, procedures, and tests.
- Manage security incidents and events to protect corporate and customer assets.
- Define and implement specific controls for assuring integrity and security of the information and services.
- IS Risk Analysis
- Coordinate information security and risk management projects with staff from the IT organization and Business Unit teams.
- Advises security administrators on normal and exception-based processing of security authorization requests.
- Develops a common set of security tools. Defines operational parameters for their use, and conducts reviews of tool output.
- Defines testing criteria for systems and applications.
- Plan vulnerability-scanning and penetration-testing and design risk treatment plan
- Researches and assesses new cyber threats and security alerts, and recommends remedial actions
- Participate and support for Security Assessment and Awareness programs.
- Information Security network and system management.
QUALIFICATION AND EXPERIENCE
- Bachelor Degree in Information Technology / Computer Science / Technical Areas or other Technology-related field with a master degree in finance or business administration or equivalent experience.
- Professional certification, such as a CCNA, CISSP, CISM, CISA, ISO27001 or other information security credentials is preferred.
- At least 3 years of experience in a combination of Information Security, networking or IT jobs, preferably in telecommunication companies, banking, high technology companies or auditing firms in similar positions.