Reports To: Manager - Security Architecture and Planning
Division: Information Technology
Mission:
To be involved in all facets of Information Security systems design and implementation; implementation of ISO 27001 controls; and the design and implementation of secure infrastructure that support the business processes within MTN Nigeria.
Description:
Design, orchestrate, and implement information security systems and evaluate corporate security plans.
Review all project development and architecture plans to ensure security policy compliance.
Establish mitigating steps to ensure appropriate treatment of security threats and escalate as appropriate.
Coordination of security systems disciplines in the face of active threats.
Create and enforce policies and procedures associated with Information Security administration.
Perform Business Impact Analysis in terms of loss of confidentiality, Availability, and Integrity of information.
Provide advice and implement security and communications solutions for MTN Nigeria.
Work closely with other departments to provide support, ensuring the full integration and smooth functioning of the information security infrastructure within MTN Nigeria.
Provides expert technical insight and industry perspective in the creation, delivery, and integration of complex and comprehensive security solutions and architecture.
Collaborate and act as a security architecture liaison with other IT areas and designs and/or recommends new security solutions as needs arise.
Co-ordinate with related Design & Development teams for solutions implemented.
Perform Problem, Change, and Release & Configuration Management as it pertains to Information Security.
Perform day-to-day activities like periodic reconciliations, task management etc.
Translate ISO 27001 controls related to information security into implementation, alerts, and compliance reporting.
Specify, assist, and delegate information security system integration concepts into the SDLC process.
Education:
First degree in Computer Science or any related discipline.
Certified Information Security Systems Professional or Certified Information Systems Auditor is desirable.
Fluent in English
Experience:
3 - 7 years’ work experience including:
3 years of security experience.
Minimum of 3 years' security compliance & threat management.
Experience in the following Identity Management technology; Vulnerability assessment and treatment, Systems Auditing, Policy, Database Security, Firewall Design and Implementation, Security Architecture and Models, Telecommunications, Network, Wireless & Internet Security.
Proven experience in the full software project lifecycle - project vision through project implementation - for both small and large enterprise projects.
Proven experience in penetration testing.
Proven experience in Security Architecture Governance and standards.
In-depth working knowledge of Security Architecture & Design.