·       Understanding and knowledge of ISO 27000 series of IT Security standards (more specifically 27002)

·       Knowledge of NIST Framework

·       Knowledge of IT Security Audit Fundamentals

·       Identity & Access Management Skills

·       Incident handling & Analysis Skill

·       Network Security and Security Architecture Skills

·       Penetration Testing and Ethical Hacking Skills

·       IT Forensic Analysis Skills

·       Independent Action Skills

·       Innovation & Learning Skills

The principal accountabilities of this position are to:

• Ensure unauthorised access to information and violations of IT systems by analysing and assessing potential security risks.
•  Conduct security assessments by performing ethical hacking & penetration testing on a regular basis to expose and report on weaknesses in security for the IT systems.
•  Research, recommend and review new IT security systems and solutions to ensure the FIC uses modern solutions to address exposure to fast-changing global security risks.
•  Enforce user access control on various IT systems and infrastructure by setting access privileges and maintaining and reviewing access control lists.
•  Creating and implementing security related disaster recovery plans by conducting disaster recovery testing in case of a disruption to business operations.
• Maintain regular documentation on security systems and provide incidents & periodic reports on IT Security related matters by monitoring, reviewing and auditing systems.