Information Systems Security and Support Manager at Kenya Accountants and Secretaries National Examinations Board (KASNEB)

Ref: HCA/ICT/MISSS/2/2017

Overall Purpose: The Manager, Information Systems Security and Support will be responsible for liaising with Heads of Divisions and Units to achieve and maintain information and system security.

Key duties and responsibilities:

Reporting to the Head of Information Communication Technology, the Manager, Information Systems Security and Support will be responsible for:

(i) Designing, implementing and maintaining information security strategies, policies, procedures and standards.

(ii) Monitoring and ensuring compliance with ICT system security and information security standards, policies and procedures.

(iii) Reviewing and assisting in the preparation of the disaster recovery plan.

(iv) Advising on information governance and security awareness and training programmes.

(v) Ensuring effective ICT incident management for business continuity.

(vi) Providing creative solutions for effective service delivery.

(vii) Managing the implementation of new hardware, software acquisitions and software upgrades.

(viii) Ensuring risk management within the Unit.

(ix) Ensuring the implementation of the ISO Quality Management System.

(x) Ensuring staff performance management in the Unit through a target-based system.

(xi) Performing any other duties as may be assigned from time to time.

Academic / Professional Qualifications and Experience

The ideal candidate will possess the following:

(i) Bachelor’s degree in Information Communication Technology or related discipline from a recognised university.

(ii) Master’s degree in Information Communication Technology or related discipline from a recognised university.

(iii) CICT or other professional qualification in ICT from a recognised body.

(iv) Membership in good standing to a recognised professional body.

(v) Knowledge of legislation, regulations, national and international IT security policies and standards.

(vi) Knowledge of data protection principles and experience in facilitating data protection audits.

(vii) Extensive experience of working in an information security environment.

(viii) Strong ability in developing and applying Information Risk Management frameworks.

(ix) A minimum of seven (7) years relevant experience six (6) of which should be in middle management position in a large organisation and six (6) years relevant experience as Senior Officer in Systems Security Administration for serving officers.

Key personal attributes / functional skills

The ideal candidate should:

(i) Be honest, trustworthy and possess a high degree of personal integrity and professionalism.

(ii) Have demonstrated leadership qualities and management capability for responsibilities at this level.

(iii) Be a team player.

(iv) Demonstrate ability to establish and maintain effective relationships with varied stakeholders.

(v) Be customer centric.

(vi) Demonstrate sound judgement, excellent analytical, interpersonal, communication, presentation and reporting skills.

(vii) Satisfy the provisions of Chapter Six of the Constitution of Kenya, 2010.