Information Security Manager

Job description
Musoni is the world’s first financial institution to exclusively use mobile money. We aim to be the most efficient microfinance institution by being cashless, paperless and data-driven to offer the best value, most flexible and most customer-oriented financial services in the market.
Role summary
We are currently seeking a high caliber professional to join our team as the Manager, Information Security (IS) who provides the vision and strategies necessary to ensure the confidentiality, integrity, and availability of institution electronic information by communicating risk to Chief Risk Officer, creating and maintaining enforceable policies and supporting processes, and ensuring compliance with regulatory requirements.
The day-to-day Role:

Creating and implementing a strategy for the deployment of information security technologies;
Performing IT security risk assessments and reporting on ways to minimize threats;
Monitoring security vulnerabilities and hacking threats in network and host systems;
Tracking latest IT security innovations and keeping abreast of latest cyber security technologies;
Ensuring business continuity;
Communicating with key stakeholders about IT security threats;
Implementing an effective process for the reporting of security incidents;
Overseeing the investigation of reported security breaches;
Complying with the latest regulations and compliance requirements;
Championing and educating the organization about the latest security strategies and technologies

Essential Duties and Responsibilities

Creates information security strategies, both short-term and long-range, in support of the Musoni’s goals.
Directs an ongoing, proactive risk assessment program for all new and existing systems and remains familiar with the Musoni’s goals and business processes so effective controls can be put in place for those areas presenting the greatest information security risk.
Managing the daily operation and implementation of the IT security strategy
Conducting a continuous assessment of current IT security practices and systems and identifying areas for improvement
Running security audits and risk assessments
Delivering new security technology approaches and implementing next generation solutions
Ensuring compliance and governance is met
Driving change projects and building new IT capabilities
Developing and implementing business continuity plans to ensure service is continuous when a change programme is introduced or a security breach occurs or in the event that the disaster recovery plan needs to be triggered
Protecting the intellectual property of the organization at all times
Devising strategies and implementing IT solutions to minimize the risk of cyber-attacks
Reviewing, analyzing and delivering data information
Communicating digital programmes and strategy to a range of stakeholders

Knowledge and Experience:

A minimum of five years of experience in related positions
Expertise working in Financial Services industry.
Digital leadership skills – capable to meet business and IT security goals
People management skills – providing direction, monitoring performance, motivating staff and building a positive working environment
Ability to adapt to a fast-moving IT landscape and keep pace with latest thinking and new security technologies
A passion for technology and security safeguarding with a desire to deliver
Analytical mind capable of managing numerous information sources and providing data analysis reports to senior management
Excellent communication skills – providing verbal and written communication that is outstanding to both direct reports and senior management as well as other stakeholders
Creative thinking – able to look at alternatives and consider new ways of thinking to problem solve

Qualifications
University degree in computer science or a qualification in a related subject. Professional certification (CISA, CISM, CISSP, etc.) is preferred.