IT Security Manager

JOB PURPOSE

·            To handle IT Security aspects of APICORP

·            IT Risk Management

·            To handle relationship with all auditors

·            To handle IT Compliance

DUTIES & RESPONSIBILITIES

·            Be a single point of contact to manage all IT security issues in the organization

·            Handle relationship with IT Audit and all IT compliance issues

·            Maintain the IT Risk Register and oversee the resolution of IT audit notes

·            Maintain and develop IT Security standards (such as ISO 27001)

·            Perform self-assessment on standards and compliance requirements

·            Responsible for IT Security incident management in relation to IT Service and IT Security

·            Review audit logs and IT events. Report abnormal activities and security violation

·            Participate in the SDLC to insure proper security requirement, design, and implementation

·            Review and update authority matrix for APICORP users across all systems

·            Review and update authority’s matrix for IT Admins

·            Participate in developing the IT processes within the IT Department

·            Participate in the budgeting of the IT Department

Behavioural Competency

Business Insight:

§  Analyze and interpret complex data to identify patterns and themes

§  Establishes the root cause of a problem

§  Gets inputs from others to enable informed decision making

§  Applies and modifies complex learned function specific concepts or methods appropriately

§  Considers multiple models and scenarios while investigating a problem or situation

Ensures Accountability:

§  Demands high performance, based on KPI’s set

§  Insists on compliance with organisation’s strategy and unit goals

§  Monitors progress of performance and changes approach accordingly.

§  Takes ownership of own work.

§  Makes clear the consequences of non-performance

Decision Quality:

§  Makes sound day-to-day decisions

§  Makes independent decisions in urgent and non-routine situations

§  Considers various inputs, criteria, and trade-offs to arrive at effective decisions and recommendations

§  Knows when to act independently or to escalate an issue

Plans and Aligns:

§  Integrates own work plans and priorities with those of other functions

§  Balances the need for adequate planning with the need for action

§  Creates a realistic time line with steps outlined in the right sequence.

§  Anticipates and minimizes bottlenecks or delays

Builds Effective Teams:

§  Supports and encourages inputs and new ideas from the team

§  Communicates positive expectations for the team

§  Effectively delegates responsiblities while providing support and structure

§  Gives team members an opportunity to lead portions of a meeting or project

§  Sets work parameters and expectations and makes clear the consequence of non performance

Instills Trust:

§  Meets commitments by staying true to agreements and decisions that he or she makes

§  Takes pride in being trustworthy

§  Is honest in relations with customers, team members and other stakeholders

§  Acts on values when it is difficult to do so