Deputy Manager, Cybersecurity & Risk

Job Purpose: This position reports to the Manager, Security, Process & Governance at SDC. The job holder will be accountable for internal and external engagements on the following: Lead cybersecurity operations covering continuous monitoring, incident response and playing the role of an internal cybersecurity consultant to Digital Technology Transformation (DTT) Division on cybersecurity-related matters and queries. Drive the deployment and management of SDC’s Security Services and tools. Job Responsibilities: Lead, manage and takes ownership of Cybersecurity Operations, processes and workflows Assist to lead and takes ownership of risk management operations, processes and workflows To manage & support any Cybersecurity project that includes the engagement between internal and external stakeholders during the project implementation phase To support DTT Division on all Cybersecurity Operations Provide all the necessary support for Government technical initiatives. Develop and produce regular security reports and updates for management review as part of Cybersecurity Governance Responsible for administration of SDC in house security solutions Handle regular vulnerability scanning (via in house tools), enforcing baselines of OS/Platforms Maintain documentation and updates of Sec Ops’ Services and Security Tools Conduct risk assessment and perform review for risk assessment operational & project request Act as the Security Incident Response Officer to manage, assess impact & investigate all security related incidents till their proper closure. Handles Request-For-Information (Security Alert) and Phishing reports till closure Coordinate and execute procedures for various Security Incident management Response SOPs Develop materials for Security Awareness Programme Manage Onboarding process, SLAs and Deliverables of Managed Security Service Providers, SOC Support in preparation of audit response reports in the domain of responsibility. Job Requirements: Degree in IT from a recognized university At least 3-4 years’ experience in the IT industry Must have driven at least 1 full Cybersecurity Project implementation cycle Have knowledge of the Government Instruction Manuals such as IM8. Able to explain and clearly articulate IT policies Excellent technical gap analysis skills and attitudes Excellent internal / external stakeholder engagement skills Strong project management skills with proven implementation achievement Strong vendor management skills Strong communication skills – articulate in both written and spoken language Excellent analytical skills and strong multi-tasking capability Proven people management skills Excellent decision making and problem-solving skills Personality traits: digital native, ability to think out of the box, mature, level-headed, able to deal with difficult parties, confident, quick learner, persuasive, quick thinker, results oriented, (The table below identifies the competencies according to the SHL framework) Certification in CISSP and PMP are added advantages Demonstrates leadership in owning and driving tasks under his / her charge Ability to work independently Demonstrates a balance attitude towards enforcing Governance and Process and the needs of the business #J-18808-Ljbffr