Etisalat Nigeria Vacancy for a Specialist, Information Security Management, January 2015
Etisalat's vision is a world where people's reach is not limited by
matter or distance; a world where people will effortlessly stay in touch
with family and friends; a world where businesses of all sizes can
reach new markets without the limitations of distance and travel.
Etisalat Nigeria is recruiting to fill the below position of: Specialist, Information Security Management
Job Title: Specialist, Information Security Management
Job SummaryResponsible
for analysing an Etisalat information security environment and
recommending security measures to safeguard enterprise valuable
information assets.
Principal Functions
- Work with Etisalat business units and with other risk
management/assurance functions to identify security requirements, using
methods that may include risk and business impact assessments
- Implement strategies and plans to achieve security requirements and address identified risks
- Perform control and vulnerability assessments to identify control
weaknesses and assess the effectiveness of existing controls, and
recommends remedial action
- Prepare report on residual risk, vulnerabilities and other security
exposures, including misuse of information assets and noncompliance.
- Develop security processes and procedures and supporting
service-level agreements (SLAs) to ensure that security controls are
managed and maintained
- Define security configuration and operations standards for security
systems and applications, including policy assessment and compliance
tools, network security appliances, and host-based security systems
- Develop and validate baseline security configurations for operating
systems, applications, networking and telecommunications equipment
- Assist in resolving negative audit findings reported by Etisalat internal or external auditors
- Assist system administrators (and other IT staff) in the resolution of reported security incidents
- Participate in security investigations and compliance reviews as requested by internal or external
- Ensure the development, documentation and implementation of an agile disaster recovery and business continuity plans.
- Play an advisory role in application development or acquisition
projects, to assess security requirements and controls and ensure that
security controls are implemented as planned
- Collaborate on critical IT projects to ensure that security issues are addressed throughout the project life cycle
- Assist in the development of security architecture and security policies, principles and standards
Educational Requirements
- First degree in Engineering or Sciences from a recognised University
Experience,Skills & Competencies
- Three to Five years relevant work experience
- IT Security/Audit Certifications (CISSP, CISM, CISA, ISO 27001 etc)
- IT Security Management/ Information and Application Protection
- Business Application, Enterprise Infrastructure Knowledge
- Versatility in Information Security Management Applications e.g SIEM, SVAT, Metasploit
- Communication
- Problem Solving
- Passion for Excellence
- Integrity
- Empowering people
- Growing people
- Team work
- Customer Focus
How to Apply
Click here to Apply