Zambia National Commercial Bank Plc (Zanaco) is inviting applications from suitably qualified and experienced individuals for the following job aimed at contributing to the Bank’s strategic vision, in the Operations Division under the Information Technology Department at Head Office.
Responsibilities
- The role holder will lead on policy management to support Zanaco’s strategic objectives and will ensure that the policy framework created meets the necessary requirements set by relevant regulators and legislators where Zanaco operates
- They will own key strategic relationships with relevant stakeholders (Internal Audit) with the aim of furthering Zanaco’s goals
- Under the supervision of the Information Security Head, the following are among the job’s key responsibilities
- Responsible for managing Governance services provided by IT & InforSec
- Establish and own Digital Security’s overall regulatory strategies and policies, and ensure appropriate inclusion and understanding of regulatory and legal obligations
- Determine and establish the approach by which Information Security will manage and govern service delivery
- Accountable for management of Security spend including recording and reporting on decision making in relation to allocation and spend of budget
- Develop a framework for monthly reporting on budgets, responsible for ensuring the roll-out of this process across the team
- Ensuring adequate engagement and governance of joint ventures, third parties and partners
- Responsible for setting and acceptance of risk appetites, (including strategic and operational risks) and ensuring that the systems and controls are adequately designed and operating effectively to manage the risks
- Establishing and maintaining strong relationships organisation wide and with external regulators
- Ensure that all legal and regulatory issues and judgments are monitored and acted upon if necessary
- Oversee the development and implementation of Zanaco’s Regulatory Compliance strategy including the management of compliance relationships with the Regulator and across the industry
- Develop and coordinate human capital processes and the information security profession
- Supporting the business with information security independent and internal audits of Governance, Risk and Compliance Programs and to take a specific lead role in the management of audit, ensuring that audit findings are properly managed
- Participation in ongoing development and management of the information security governance process, including updating and obtaining approvals for information security policies, standards and procedures, as applicable
- Works with technical experts to assess technical and administrative information security controls for meeting compliance requirements
- Provide guidance to project teams on data governance requirements (PCI DSS, various banking and privacy regulations)
- Define requirements, document and implement the necessary strategies, policies, standards and procedures for the Governance, Risk and Compliance Programs
- Ensure timely resolution of outstanding security and compliance issues
- Facilitate adherence to standard Information Security Framework and provision of quality assurance to information environment
- Ensure a secure business environment and protection of stakeholder value
- Facilitating of secure ICT enabled business products through facilitation implementation of integrity, confidentiality and availability
- Any other responsibilities or functions as maybe assigned by management
Qualifications
- Five Credits Grade 12 Certificate including Mathematics and English
- University Degree in Computer Science
- CISA,CGEIT, CRISC and CISM or related security certifications will be an added advantage
- Must be familiar with Information Security Framework such as ISO 27000
- Experience within the banking industry
- Five years working in IT and banking
- Two years Information Security experience
- External security accreditation by a recognised professional security– CISM, CISSP, M.Inst.ISP
- Analytical skills
- Numeracy or Financial skills
- Attention to detail
- Interpersonal skills
- Communication skills
- Rule Orientation
- Planning and optimizing for the accomplishment of tasks
- Time management
- Drive for results
How to apply
All applications must have an application or cover letter and detailed curriculum
vitae indicating the position being applied for in the subject line and should
be sent by email to:
The Chief Human Resource & Training Officer
Human Resources And Training Division
Zambia National Commercial Bank Plc,
Head Office,
PO Box 33611,
Lusaka.