Chief, Information & Security Officer
Lusaka, Zambia
Standard Bank Group
The Standard Bank group is a leading financial services provider that supports Africa’s growth and development.Company Description
Standard Bank Group is a leading Africa-focused financial services group, and an innovative player on the global stage, that offers a variety of career-enhancing opportunities – plus the chance to work alongside some of the sector’s most talented, motivated professionals. Our clients range from individuals, to businesses of all sizes, high net worth families and large multinational corporates and institutions. We’re passionate about creating growth in Africa. Bringing true, meaningful value to our clients and the communities we serve and creating a real sense of purpose for you.
Job Description
The Chief Information & Security Officer is a second line function and is independent from day-to-day information technology operations. The role is responsible and accountable for executing the cyber and information risk management framework with sufficient authority and resources.
Essential Functions
- Provide leadership to the Bank's information security organization.
- Oversee and enforce cyber and information risk management policies, frameworks, and other technology-related regulatory requirements.
- Monitor performance and outcomes of cyber resilience and intervene if necessary to ensure that specified direction is followed.
- Review and assess risks associated with changes in the cyber and information risk landscape.
- Setup mechanism to monitor cyber and information security threats on an ongoing basis, and to promptly detect, analyse, and respond to cyber and information security incidents.
- Cultivate a strong level of awareness of and commitment to cyber resilience by conducting comprehensive cyber and information risk awareness training programmes to its members of staff and other stakeholders.
- Develop, implement and monitor a strategic, comprehensive enterprise information security risk management program.
- Understand and interact with related disciplines through committees to ensure the consistent application of policies and standards across all technology projects, systems and services.
- Regularly apprise the board of salient and adverse cyber and information risk developments and incidents that are likely to have a major impact on the regulated entity in a timely manner.
- Collaborate with relevant stakeholders to share cyber threats, incidents, and attacks that the Bank encounters.
- Oversee the evaluation and management of cyber and information risks introduced by third party service providers.
Qualifications
Minimum Qualifications
Type of Qualification: Degree
Field of Study: Business
Type of Qualification: Post Graduate Degree
Field of Study: Information Technology
Experience Required
Technology Control
Technology
5-7 years
Experience with the implementation and management of information security policies and frameworks within a corporate environment. Experience working with individuals and teams from diverse cultures. Experience in identifying, mitigating and tracking risks and country specific regulatory requirements, and findings recommendations reporting and assurance governance reporting. Experience in assessing and giving opinion on veracity of risk assessments and adherence to technology standards
5-7 years
Strong IT understanding, gaining insight into digital and platform operating models and cyber security trends and solutions. Experience in engaging with a broad spectrum of stakeholders including senior executives. Broad business and finance type experience, specifically within the banking sector. Management
Additional Information
Behavioral Competencies:
- Adopting Practical Approaches
- Articulating Information
- Checking Details
- Directing People
- Examining Information
- Exploring Possibilities
- Interpreting Data
- Making Decisions
- Providing Insights
- Pursuing Goals
- Showing Composure
- Upholding Standards
Technical Competencies:
- Compliance Audit
- Information Security
- IT Risk Management
- Knowledge of Banking & Financial Service
- Risk Management
- Stakeholder Management (IT)
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Banking Compliance Finance Governance Risk assessment Risk management RMF
Perks/benefits: Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs