Specialist, Security Architecture, Planning, Operations & Governance

Roles and Responsibilities

Operational

Work with various stakeholders to ensure that 9mobile is protected from security threats and vulnerabilities by ensuring that all IT and technical assets security are secure.

Drive the remediation effort to close out all audit exceptions raised by Internal Audit during any IT security audit exercises.

Collaborate with EMTS business units and other risk management/assurance functions to identify security requirements/security risks associated with ongoing/new projects. Implement these strategies and plans to meet these requirements and plans to mitigate identified risks throughout the project life cycles.

Perform vulnerability assessments to identify control weaknesses, assess the effectiveness of existing controls and recommend remedial action to curtail identified weaknesses

Assess and validate information security provisions in new application developments or projects, ensuring controls are in line with corporate guidelines

Participate in the development of information security processes and ensure that security controls and procedures in agreed service-level agreements (SLAs) are managed and maintained.

Assist in defining security configuration baselines, drafting IT security policies and security operations standards for security systems and applications, including policy assessment and compliance tools, network security appliances, and host-based security systems.

Monitor network traffic for suspicious activity and respond to security incidents in a timely manner.

Collaborate with cross-functional teams to integrate security measures into the organization's infrastructure and applications.

Responsible for the implementation of Information Security Education/Awareness strategy and the propagation of the same among all staff of 9mobile using existing communication channels or proposing new ones

Carry out technical assessments IT and technical assets in accordance with established policy and best practice guidelines, checking for compliance with the systems, policies, and procedures and driving remediation where non-compliance exists.

Investigate and resolve information security incidents according to the incident response plan and within the stipulated SLAs.

Carry out other duties as instructed by the Manager, Security Operations and Head, IT Security & Governance.

Education and Experience

First degree or equivalent in Electrical/Electronic or Telecommunication Engineering, Computer Science or Engineering or Numerate discipline.

Three (3) to Five (5) years’ work experience with at least 3 years’ experience in IT security operations, networking, enterprise architecture, application development, DevSecOps, IT Audit, and other closely related disciplines.

Relevant Enterprise Information Security and Architecture Certifications are required e.g. CISA, CISSP, CCNA, CCSP, ITIL, COBIT, CCSA, CCSE, Fortinet NSE etc.

Strong knowledge of networking protocols (TCP/IP, DNS, DHCP, etc.) and network architecture.

Extensive experience with security tools and technologies such as firewalls, IDS/IPS, SIEM, and endpoint protection.

Industries:Telecommunications

Function: Web Development