Purpose of the Job

The position is responsible for securing the Scheme’s ICT Systems through continuous risk assessment and development of risk mitigation mechanism.

Responsibilities or duties

The duties and responsibilities are:

Operational Roles and Responsibilities

• Work with the Senior ICT Officer to develop plans for improving information security.
• Creating information security strategies, both short-term and long-range, in support of the Scheme’s goals.
• Implement the IT strategy.
• Conduct a continuous assessment of current IT security practices and systems and identify areas for improvement.
• Run periodic security audits and risk assessments.
• Deliver new security technology approaches and implementing next-generation solutions.
• Carry out technical vulnerability assessments of IT systems and processes.
• Identify potential vulnerabilities and make recommendations to control any risks identified and ensure they are implemented.
• Respond rapidly and effectively to IT security incidents, managing them in a professional manner including computer forensics for evidence gathering and page preservation.
• Coordinate of regular Information Security Reviews in the Scheme and conducting.
• Assessment of departmental systems, processes and infrastructure and making recommendations to minimize risks identified.
• Work closely with the Senior ICT and Database Officer to ensure that the Scheme’s policies and procedures for Information Security are effectively are adhered to.
• Ensure the Scheme’s website and social media platforms are up to date.
• Provide high-quality Information Security guidance documentation and training.
• Liaise with external security agencies where required and ensure that any information requested is provided on a timely and secure basis.
• Keep up to date with security trends, threats and control measures.
• Liaise with Cyber Crime Unit in the National Police service when the need arises.
• Promote security awareness by developing and implementing a security awareness and training programme.
• Investigate suspected and actual security incidents in accordance with the security incident management standard, produce reports with recommendations and ensure any remedial action is taken.
• Collaborate with internal stakeholders to develop relationships to help promote and improve information security and provide security advice on procurements, projects and new initiatives as required.
• Provide input to the wider development of the information governance strategy and business planning process.
• Maintain currency with emerging security trends, risks, new guidance or standards (internal and external) and security-enhancing technologies other responsibilities.
• Ensure installation of servers and systems are done as per required ICT standards, policies and procedures.
• Liaise with ICT service providers to ensure deliverables are achieved as required and that all ICT licenses are up to date and valid.
• Provide first- and second-line functional support for the ERP system by assisting users across departments, resolving system issues and escalating complex incidents to vendors while ensuring timely resolution in line with SLAs.
• Support ERP system optimization by assisting in configuration, managing user access, conducting user training, and gathering user requirements to recommend enhancements and improve business processes.

Key Result Areas:

The job holder's accountability areas are outlined as follows;

• ICT Risk mitigation
• Submission of accurate, timely and relevant reports
• Continuous process improvement of services through efficient working
• Enforcement of relevant guidelines, rules and regulations
• Ensure customer satisfaction for the consumers of the services offered by the department
• Efficient execution of work processes as assigned

Knowledge and Skills Required:

• A Bachelor’s Degree in IT/Computer Science, Software Engineering or equivalent from a recognized university.
• Professional Certification in Microsoft Certified: Dynamics 365 Business Central.
• Functional Consultant Associate, MCSA, CCNA, CISSP, CISA, CEH, ITIL, PRINCE or any other relevant IT professional certifications.
• Practical knowledge of servers, infrastructure, networking, database administration and Information Technology Infrastructure Library (ITIL).
• Understanding of the Scheme’s business and operational processes including potential sources of cybersecurity risks.
• Excellent communication & interpersonal skills.
• Thorough understanding of social media and web analytics.
• Excellent organizational and multi-tasking skills.
• Ability to work independently with minimum supervision.

Experience needed

A minimum of three (3) years working experience in IT.

• Work with the Senior ICT Officer to develop plans for improving information security.
• Creating information security strategies, both short-term and long-range, in support of the Scheme’s goals.
• Implement the IT strategy.
• Conduct a continuous assessment of current IT security practices and systems and identify areas for improvement.
• Run periodic security audits and risk assessments.
• Deliver new security technology approaches and implementing next-generation solutions.
• Carry out technical vulnerability assessments of IT systems and processes.
• Identify potential vulnerabilities and make recommendations to control any risks identified and ensure they are implemented.
• Respond rapidly and effectively to IT security incidents, managing them in a professional manner including computer forensics for evidence gathering and page preservation.
• Coordinate of regular Information Security Reviews in the Scheme and conducting.
• Assessment of departmental systems, processes and infrastructure and making recommendations to minimize risks identified.
• Work closely with the Senior ICT and Database Officer to ensure that the Scheme’s policies and procedures for Information Security are effectively are adhered to.
• Ensure the Scheme’s website and social media platforms are up to date.
• Provide high-quality Information Security guidance documentation and training.
• Liaise with external security agencies where required and ensure that any information requested is provided on a timely and secure basis.
• Keep up to date with security trends, threats and control measures.
• Liaise with Cyber Crime Unit in the National Police service when the need arises.
• Promote security awareness by developing and implementing a security awareness and training programme.
• Investigate suspected and actual security incidents in accordance with the security incident management standard, produce reports with recommendations and ensure any remedial action is taken.
• Collaborate with internal stakeholders to develop relationships to help promote and improve information security and provide security advice on procurements, projects and new initiatives as required.
• Provide input to the wider development of the information governance strategy and business planning process.
• Maintain currency with emerging security trends, risks, new guidance or standards (internal and external) and security-enhancing technologies other responsibilities.
• Ensure installation of servers and systems are done as per required ICT standards, policies and procedures.
• Liaise with ICT service providers to ensure deliverables are achieved as required and that all ICT licenses are up to date and valid.
• Provide first- and second-line functional support for the ERP system by assisting users across departments, resolving system issues and escalating complex incidents to vendors while ensuring timely resolution in line with SLAs.
• Support ERP system optimization by assisting in configuration, managing user access, conducting user training, and gathering user requirements to recommend enhancements and improve business processes.

• Practical knowledge of servers, infrastructure, networking, database administration and Information Technology Infrastructure Library (ITIL).
• Understanding of the Scheme’s business and operational processes including potential sources of cybersecurity risks.
• Excellent communication & interpersonal skills.
• Thorough understanding of social media and web analytics.
• Excellent organizational and multi-tasking skills.
• Ability to work independently with minimum supervision.

• A Bachelor’s Degree in IT/Computer Science, Software Engineering or equivalent from a recognized university.
• Professional Certification in Microsoft Certified: Dynamics 365 Business Central.
• Functional Consultant Associate, MCSA, CCNA, CISSP, CISA, CEH, ITIL, PRINCE or any other relevant IT professional certifications.