Job Description
Mission: • To implement Information Security Management System (ISMS) project throughout the company and Coordinate implementation of data security solutions to protect company confidential data including subscriber data and confidential business data. Role Complexity: • To work with MTN Group regarding security activities in order to standardize security programs and controls across MTN Group • To act upon OLAs (Organization Level Agreements) with ITS and NWG regarding various security measures and related actions Task Complexity: • To maintain information security policies, processes and procedures to ensure high information assurance within the MTNIrancell. • To Implement and Maintain ISMS and GISP (Group Information Security Program) Programs including but not limited to: o Keeping Asset Inventory and Valuations updated o Delivering yearly risk assessment o Following implementation of risk treatment plan o Following implementation of Policies and controls • To perform planned security audits by coordinating related teams and vendors, check enforcement of announced security requirements, and report the results to the management • To define and enforce security checklists for new systems and existing systems operations • To Implement and maintain Data Protection and Data Leakage Prevention solutions throughout the company in collaboration with related ITS/Network teams. • To identify classified data location and follow enforcement of data classification policy to ensure that sensitive information is handled well. • To implement Centralized Access Management process on all systems and ensure implementation of Access Management Processes (Access Approval, Access provisioning, Access termination, Access review, Dormant access, etc.), and coordinate Monthly and Quarterly access reviews. • To benchmark the global Security technologies, policies, and standards, and keep the Cyber Security Department updated on latest security trends. • To Implement and enhance the security Awareness Plan across the company using different communication channels.
Requirements
Education: • B.Sc. degree in Technology Systems (Telecommunication Management / Information Technology) • Fluent in English Experience: • Minimum of 3 years’ experience in the area of specialization; with experience in supervising others • Experience working in a medium organization Knowledge: • Industry awareness (i.e. Telecommunications) • Proven knowledge on security transformation programs, design and management of security operations solutions implementations and / or remediation programs to address risks across security operations centers • Proven knowledge on security policies and procedures, design and implementation of security policies, procedures, standards and controls • Proven knowledge on designing and delivering identity & access management programs, including privileged access management (experience of key vendors in this area is an advantage) • Proven knowledge on data protection & privacy, including data loss prevention, data and information classification and handling • Proven knowledge on Cyber Testing - experience designing, implementing, and managing Cyber Penetration Testing programs • Proven knowledge on Threat Intelligence - experience designing, implementing, and managing Threat Intelligence programs • Awareness on information systems – operating systems, networks, applications
Employment Type
- Full Time
Job Category
Seniority
Details
Employment type
- Full Time
Job Category
Educations
Seniority
