IT Security Controls Specialist

Share and send to your friends !
Closing Date 2021/07/20
Reference Number CCB210713-2
Job Title IT Security Controls Specialist
Function Information Systems
Company Coca-Cola Beverages Africa (Group Office)
Job Type Permanent
Location – Country Other
Location – Province Not Applicable
Location – Town / City Applicant may reside in any of the CCBA footprint of countries
Job Description Coca-Cola Beverages Africa (CCBA) presents an exciting opportunity for an experienced IT Security Controls Specialist, to join the CCBA Information Technology team. The successful applicant will be reporting into the IT Risk and Compliance Manager. This is a senior specialist level position in the IT Risk and Compliance Team, which has an impact on business operations and business continuity and ensuring that CCBA abides by best IT security practices and is compliant with all regulatory and legal requirements that affects data, information, and technology. The IT Security Controls Specialist, approves frameworks, security standards and regulatory requirements to test that processes, procedures, data, policies, and applications meet requirements. This employee will conduct ongoing reviews of IT controls, operating procedures, and compliance with policies and regulations. They are also responsible for performing advanced level professional assessments of Internal Controls by assessing the adequacy and extent of the IT controls to safeguard organisation assets. They use established internal and external frameworks and standards like the IT Risk and Control Management Framework (IT RACM) and applicable security standards and regulatory requirements such as CIS, NIST, ISO27001, COSO, CMMI, FAIR ILIT, PCI, SOX, GDPR, POPIA and Cyber Crime Bill of 2015 to determine which controls should be in place.
Key Duties & Responsibilities Implementing and maintaining internal controls and policies and security standards against applicable legislative and regulatory requirements and industry best practice frameworks. Communicating internal policies and required security control to relevant stakeholders. Ensuring that control owners periodically update control procedures in line with the evolving IT landscape. Ensuring that control owners execute their respective controls and periodically test the effectiveness of the controls. Ensuring security controls are embedded in new IT solutions and processes. Ensuring the enforced compliance of BAU systems and processes to relevant security policies and IT risk and control framework on a continuous basis. Ensuring new and existing third parties comply to CCBA security controls to minimise CCBA risk exposure. Managing business risks associated with 3rd party vendors and cloud solution providers and ensure that appropriate controls are in place to minimise the risk Compiling and providing accurate, timely reports regarding technology and security risks identified during projects and for BAU systems and processes. Identifying and communicating technical capability gaps that negatively affect the risk posture of the organisation. Escalating risks and non-compliance to IT Risk and Compliance Management. Providing IT colleagues with security SME advice and consultation when required. Co-ordinating policy and security control exemption management with relevant risk owners Ensuring that exceptions well documented and are periodically reviewed with relevant risk owners and other stakeholders. Ensuring that identified business risks posed by IT are logged in the IT risk register. Providing security expertise to support management in mapping the risk mitigation and required remediations plan where necessary. Providing management with timely and accurate report about IT risk posture and progress of the risk remediation plans. Liaising with and obtaining input from IT management team regarding creation and certification of IT controls. Gathering and reporting the results of IT risk remediation and mitigation efforts. Planning milestones for deliverables and deployment and creating a plan that visualise the timeline. Meeting regularly with the IT Team members to communicate the risk and compliance posture and provide SME advisory on risk and non-compliance remediations and mitigation options. Meeting regularly with IT Risk and Compliance and their line manager to report progress, raise issues and brainstorm solutions. Preparing and delivering updates and reports as required by executive management and the business. Supporting team members and collaborating by clearly communicating expectations, progress, constraints, and resolutions. Supporting internal improvement initiatives within the IT department to ensure continuous business improvement. Performing required administrative requirements such as reports, time sheets, leave requests, performance progress feedback and general requests.
Skills, Experience & Education Qualifications: Bachelors Degree in Computer Science, Information Systems or related Certifications (at least one of the following): Certified in the Governance of Enterprise IT (CGEIT CRISC (Certified in Risk and Information Systems Control) CISA (Certified Information Systems Auditor) CISSP (Certified Information Systems Security Professional) CISM (Certified Information Security Manager) Other certifications: COBIT5 Implementation COBIT5 Assessor Certified in Governance, Risk and Compliance (CGRC) BCS IT Governance & InfoSec Basis Practitioner Ethical Hacking ITIL V4 Managing Professional Relevant vendor/equipment specific certification Experience 8 to 10 years general work experience with at least 4 years relevant experience in governance, risk, and compliance.
General The advert has minimum requirements listed. Management reserves the right to use additional or relevant information as criteria for short-listing.

To apply for this job please visit ccba.erecruit.co .

Full Time Lusaka, Zambia Posted 4 hours ago DIRECTOR – EXCISE DIRECTORATE (ZRA02) 1 POSITION Job Description Reporting directly to the Commissioner-Indirect Taxes and Excise, the jobholder is expected to…
Our Client prides itself on offering top quality meat, consistently. Ranges are sourced from single producers to ensure high standards are maintained. They are looking for a Bookkeeper/Stock controller to…
Full Time Lusaka, Zambia Posted 10 hours ago PENSIONS AND INSURANCE AUTHORITY JOB OPPORTUNITY Office Assistant The Pensions and Insurance Authority is the regulatory and supervisory authority for the pensions…
About the HR Officer position We are looking for an HR Officer to support our Production Human Resources department. You will act as the first point of contact for HR-related…
Company: Barrick Location: Zambia State: Lumwana Job type: Internship Job category: Engineering Jobs in Zambia Job Description Position: Mine Surveyor – InternLumwana Mine, Kalumbila, Zambia. Reporting to: Coordinator – Survey Lumwana Mining…
Full Time Lusaka, Zambia Posted 1 day ago JOB TITLE; PERSONAL ASSISTANT (x1) SALARY RANGE; 2500-3000 We are looking for a vibrant, and organised young person to work as personal…
Position: Investigator X 1 Lumwana Mine, Kalumbila, Zambia. Reporting to:   Senior Investigator   Lumwana Mining Company Limited (LMC), a copper mining company owned by Barrick Gold Corporation is situated in…
Company: WVI Location: Zambia State: Kalumbila Job type: Full-Time Job category: Construction/Real Estate Jobs in Zambia Job Description World Vision Zambia (WVZ) Limited is a faith-based Organization dealing with Relief…
Our Client, a leading logistics company is seeking to employ a manager r to oversee the general functions of ground operations in the Copperbelt, by ensuring that the life circle…