JOB SUMMARY:
The Information Security auditor’s main role is to plan and conduct audits aimed at ensuring both clients and business services are secure. S/he ensures the identification of any security enhancements required in line with process and systems problems. S/he researches and avails best practice methodologies for IT security solutions. S/he provides an information security risk plan, policy and process to support client and business operations. S/he works with all business stakeholders to ensure security compliance.
MAIN DUTIES AND RESPONSIBILITIES:
Plan, execute and lead security audits internally and externally for potential clients
Review and evaluate information systems processes, procedures and security controls.
Evaluate the efficiency, effectiveness and compliance of information systems.
Execute and properly document the audit process on a variety of computing environments and computer applications
Assess the exposures resulting from ineffective or missing control practices
Accurately interpret audit results against defined criteria, weigh the relevancy, accuracy and perspective of conclusions against audit evidence
Develop rigorous “best practice” recommendations to improve security on all levels
Work with all stakeholders to ensure security recommendations comply with company procedure
Liaise with the internal auditor for quality reviews of the reports.
QUALIFICATIONS, SKILLS AND EXPERIENCE:
Bachelor’s degree and in Computer Science, Information Systems or a related technical field
Working knowledge of regulatory and industry data security standards
ITIL, PCI/DCI, ISO 27001 and COBIT Frameworks
Certifications
CISA: Certified Information Systems Auditor
CISM: Certified Information Security Manager
CISSP: Certified Information Systems Security Professional
Skills
Excellent verbal and written communication skills.
Strong problem identification and solving skills.
Possess strong leadership skills.
Demonstrate ability to work in a matrixed environment.
Demonstrate dependability, integrity and ethics in approach to work.
Team player with the ability to work collaboratively with other departments within and outside of security.
go to method of application »
If your background and competence meet the above requirements and you are self-driven, proactive, results oriented person, please send your application letter, CV and relevant testimonials to The Human Resources Manager through careers@accesskenya.com quoting the job reference number.To be received not later than close of business 2nd October 2017
Apply via :
careers@accesskenya.com
Leave a Reply