IT Risk Management

  • Maintains IT Risk register
  • Ensures that the IT service providers (Vendors) can provide minimum agreed service levels in cases of disaster, by reducing the risk to an acceptable level and planning for the recovery of IT services. Document data security breaches and perform root cause and impact analysis
  • Perform tests and uncover network vulnerabilities
  • Fix detected vulnerabilities to maintain a high-security standard
  • Coordinate penetration testing, network vulnerability assessments and related activities
  • Develop company-wide best practices for IT security
  • Educate users on cyber-security issue

Vendor Management

  • Recommends and implements vendor and contract methodologies and processes to achieve AFA’s strategic objectives and plans
  • Develops and monitor contract performance to ensure compliance to Service Level Agreements (SLAs)
  • Provides thought leadership and Vendor/ IT contract subject matter expertise to customers and matrix partners across the business.
  • Manages and negotiates the issue and renewal of all technology related contracts and Vendor management
  • Monitors all SLA agreements of third parties to ensure consistent performance and alignment with their contractual requirements, penalties and rewards
  • Provides guidance to internal customers and stakeholders for vendor and contracting activities
  • Leads the implementation/execution of competitive bidding (RFX), strategies, initiatives, contracts/programs for medium complexity, medium risk transactions.
  • Drafts, redlines and negotiates contract documents including but not limited to master services agreements, master license agreements, amendments, statements of work, order forms, evaluation agreements, NDAs, etc.
  • Acts as an IT contracts subject matter expert to the organisation across multiple functions, divisions, and geographic locations
See also  Systems Analyst at OKAVANGO DIAMOND COMPANY

Develop and implement company-wide best practices for Data Security

  • Implements the organisation’s cyber-security strategy
  • Maintains an information security risk register and assists with internal and external audits relating to information security.
  • Embed cybersecurity best practices in AFA through implementation of the cybersecurity policy
  • Create and deliver cyber security awareness training for all staff
  • Stay current on Information Technology (IT) security trends and news
  • Give advice and guidance to staff on cyber security issues.

Investigate security breaches and other cybersecurity incidents

  • Documents security breaches and assesses the damage they cause
  • Fixes detected vulnerabilities to maintain the recognised security standard
  • Reviews and implements the IT Disaster Recovery Plan
See also  Data Protection & Security Governance Manager at Botswana Telecommunications Corporation (BTC)

Minimum Qualifications:

  • Degree in Computer Science or Business Information Systems or Logistics and Supply chain Relevant cybersecurity competency certifications.
  • COBIT, CISM and/or CISSP certification is an added advantage

Experience:

  • Exposure to IT network management for at least 3 years.
  • Understanding of cyber-security risk.

Closing date: May 24, 2024

 

APPLY FOR THIS JOB