OBJECTIVE(S)

• To ensure early detection and prevention of security risks and vulnerabilities within critical IT Resources in the Bank.
• To provide Control Counseling, Advisory and Decision Support Service including risk based performance management on emerging threats to the activities in the Bank.
• To create and improve homogenous Information Security Culture in all functions that aligns with the Bank’s Control and business objectives.
• To foster Regulatory Compliance of IT Infrastructures and adaptability of global best practices without undue exposure to all known vulnerabilities Strong relationship building

DUTIES & RESPONSIBILITIES

• Ensure Policy/Procedure/Regulatory Compliance
• Build strong KYC compliance environment in ICT, Business Software Support, E Business and Channels Support functions.
• Ensure strict compliance with the Bank’s logical access controls and Information Security policies in the day to day activities of all Users in the Bank.
• Ensure that all outsourced IT User functions are properly executed in line with Service Level agreements and the Bank’s Information Security policies.
• Ensure that Users of all critical and vital applications in the Bank are effectively reviewed and monitored.
• Ensure prompt resolution of all open issues in the Audit Report, Management letter, Regulatory Examiners Report and other Statutory Examiners Report relating to IT and systems.
• Conduct comprehensive risk assessments covering the design, implementation and operation of all the Bank's E-Channels products to ensure that all key risks are identified/assessed and appropriate controls recommended and implemented.
• Perform periodic technical security assessments of all E-Channels products platforms, applications and databases
• Participate in user acceptance testing (UAT) for new E-Channels, Collection platforms and enhancements to existing products.
• Review of all Automated Income lines as may be assigned by Head Revenue Assurance. 
• Ensure prompt and qualitative rendition of relevant Assessment and Compliance reports to the Country Head, Internal Control including the Monthly Reports and Ad-hoc. 

KEY PERFORMANCE INDICATORS

• Zero Tolerance for Operational/Fraud Loss.
• Quantum of undetected regulatory/statutory infractions.
• Quantum of undetected internal policy and procedure infractions.
• Quality and Timeliness of losses and loss events reporting in processing areas
• Magnitude of IT related Regulatory sanctions.
• Audit rating of Logical Access Controls and IS Quality Assurance.
• Integrity of the logical access database.
• Promptness, Accuracy and Validity of Exception Reporting/Rendition of all Activity reports
• Exceptions observed in peer review, control adequacy checks and other Information Security & Quality Assurance checks administered on the unit.
• Gaps between the prescribed TAT and actual service delivery period.

JOB REQUIREMENTS

• Education: Minimum of First Degree or equivalent in Business Information Systems, Computer Science, Information Technology or Cyber Security be.
• Certification: Added advantage in any related certifications such as CISA, CISM, CPA, CISSP, CRISC, ISO 27001, CISCO, ITIL, PCI DSS
• Experience: One to two (1-2) years cognate experience.

KEY COMPETENCY REQUIREMENTS

Knowledge

• Basic and Intermediate Banking
• Operations knowledge
• IT Fraud and Operational risk knowledge
• Systems Security Policy, Statue and
• Regulation interpretation/implementation.
• Revenue assurance and Product Knowledge
• Detailed and Extensive Working
• Knowledge of Microsoft word, Excel and power point, Intranet Mailing facility and the core & ancillary banking applications deployed by the bank.

Skill/Competencies

• Analytical and Investigation Skills
• Auditing Skills
• Basic and Intermediate Banking Operations Skills
• Computer Assisted Audit Techniques Skills
• (CAAT)
• Comprehensive Information System Control Skills
• Comprehensive Information System Audit Skills
• Proficiency in relevant IT certifications
• Oral and written Communication Skills
• Tactical Skills