Information Security Manager at Musoni

Job description

Musoni is the world’s first financial institution to exclusively use mobile money. We aim to be the most efficient microfinance institution by being cashless, paperless and data-driven to offer the best value, most flexible and most customer-oriented financial services in the market.

Role summary

We are currently seeking a high caliber professional to join our team as the Manager, Information Security (IS) who provides the vision and strategies necessary to ensure the confidentiality, integrity, and availability of institution electronic information by communicating risk to Chief Risk Officer, creating and maintaining enforceable policies and supporting processes, and ensuring compliance with regulatory requirements.

The day-to-day Role:

• Creating and implementing a strategy for the deployment of information security technologies;
• Performing IT security risk assessments and reporting on ways to minimize threats;
• Monitoring security vulnerabilities and hacking threats in network and host systems;
• Tracking latest IT security innovations and keeping abreast of latest cyber security technologies;
• Ensuring business continuity;
• Communicating with key stakeholders about IT security threats;
• Implementing an effective process for the reporting of security incidents;
• Overseeing the investigation of reported security breaches;
• Complying with the latest regulations and compliance requirements;
• Championing and educating the organization about the latest security strategies and technologies

Essential Duties and Responsibilities

• Creates information security strategies, both short-term and long-range, in support of the Musoni’s goals.
• Directs an ongoing, proactive risk assessment program for all new and existing systems and remains familiar with the Musoni’s goals and business processes so effective controls can be put in place for those areas presenting the greatest information security risk.
• Managing the daily operation and implementation of the IT security strategy
• Conducting a continuous assessment of current IT security practices and systems and identifying areas for improvement
• Running security audits and risk assessments
• Delivering new security technology approaches and implementing next generation solutions
• Ensuring compliance and governance is met
• Driving change projects and building new IT capabilities
• Developing and implementing business continuity plans to ensure service is continuous when a change programme is introduced or a security breach occurs or in the event that the disaster recovery plan needs to be triggered
• Protecting the intellectual property of the organization at all times
• Devising strategies and implementing IT solutions to minimize the risk of cyber-attacks
• Reviewing, analyzing and delivering data information
• Communicating digital programmes and strategy to a range of stakeholders

Knowledge and Experience:

• A minimum of five years of experience in related positions
• Expertise working in Financial Services industry.
• Digital leadership skills – capable to meet business and IT security goals
• People management skills – providing direction, monitoring performance, motivating staff and building a positive working environment
• Ability to adapt to a fast-moving IT landscape and keep pace with latest thinking and new security technologies
• A passion for technology and security safeguarding with a desire to deliver
• Analytical mind capable of managing numerous information sources and providing data analysis reports to senior management
• Excellent communication skills – providing verbal and written communication that is outstanding to both direct reports and senior management as well as other stakeholders
• Creative thinking – able to look at alternatives and consider new ways of thinking to problem solve

Qualifications

University degree in computer science or a qualification in a related subject. Professional certification (CISA, CISM, CISSP, etc.) is preferred.