MTN Ghana Recruitment for Manager, Information & Cyber Security Risk
Applications are invited from interested and suitably qualified graduates for MTN Ghana Reccruitment for Manager, Information & Cyber Security Risk.
Launched in 1994, the MTN Group is a leading emerging market operator, connecting subscribers in 22 countries in Africa, Asia and the Middle East. The MTN Group is listed on the JSE Securities Exchange in South Africa under the share code: “MTN.” As of 30 June 2013, MTN recorded 201.5 million subscribers across its operations in Afghanistan, Benin, Botswana, Cameroon, Cote d’Ivoire, Cyprus, Ghana, Guinea Bissau, Guinea Republic, Iran, Liberia, Nigeria, Republic of Congo (Congo Brazzaville), Rwanda, South Africa, Sudan, South Sudan, Swaziland, Syria, Uganda, Yemen and Zambia. MTN’s brand is the most valuable in Africa and is ranked in the top 100 brands worldwide. MTN’s shares constitute the biggest primary listing on the JSE – Africa’s largest stock exchange.
Job Description
- Company: MTN Ghana
- Location: Accra, Greater Accra Region, Ghana
- State: Accra
- Job type: Full-Time
- Responsible for establishing and implementing adaptable Information Security & Cyber Risk Management standards, frameworks and solutions for the OpCo in line with Group frameworks, policies and procedures, in response to current and future Information Security Risk Management landscapes. The primary purpose of the job is to effectively identify, protect, Detect, Respond & Recover and introduce defensive safeguards and monitor the performance thereof against all variations of potential security risk exposures, both of an internal or external nature (Strategic, Operational, Compliance, Liquidity, Product and Market, Political, Economic, Reputation etc.).
- In addition, this role ensures that business units take ownership in the management of their security risks to guarantee safeguarding MTN Ghana’s information assets and the interests of stakeholders by identifying and managing all threats to the achievement of the overall strategic objectives.
Job Role
- Evolving industry ecosystems relating threats and vulnerabilities
- Compliance and regulatory landscapes and challenges. i.e. General Data Protection Regulations
- New imperatives concerning data privacy and security and building strong digital trust partnerships
- Rapid adoption of new routes to innovation and technologies
- Volatile macroeconomic and political environments in the OpCo and the region
- Identifying, defending, detection, responding and recovery of Information Security risks through business intelligence to maximize business impact
- Management of customer and supplier expectations
- Enhancing the OpCo and MTN reputational position as a leading network and system provider
- Aligned to Integrated plan
- Risk & Compliance Management themes and focus areas
- Aligned with King III Corporate Governance.
- Risk & Compliance Management Frameworks, Methodologies, Policies, Processes and procedures.
- Dynamic and highly competitive telecommunication & ICT industry
- Highly regulated environment
- Regionalization structure implication
- Performance driven environment
- Diverse cultural environment
Context:
- Evolving industry ecosystems relating threats and vulnerabilities
- Compliance and regulatory landscapes and challenges. i.e. General Data Protection Regulations
- New imperatives concerning data privacy and security and building strong digital trust partnerships
- Rapid adoption of new routes to innovation and technologies
- Volatile macroeconomic and political environments in the OpCo and the region
- Identifying, defending, detection, responding and recovery of Information Security risks through business intelligence to maximize business impact
- Management of customer and supplier expectations
- Enhancing the OpCo and MTN reputational position as a leading network and system provider
- Aligned to Integrated plan
- Risk & Compliance Management themes and focus areas
- Aligned with King III Corporate Governance.
- Risk & Compliance Management Frameworks, Methodologies, Policies, Processes and procedures.
- Dynamic and highly competitive telecommunication & ICT industry
- Highly regulated environment
- Regionalization structure implication
- Performance driven environment
- Diverse cultural environment
Requirements
- Bachelor’s Degree preferably in Risk Management, Business/ Computer Science/ Information Security.
- Professional certification on Information Security Risk Management
Experience
At least 5 years’ experience in a related field.
Knowledge:
- Information Security frameworks, standards and Guidelines
- Information Security Risk Management Policies or ISO Standards 27001 or NIST Maturity models
- ISM methodologies and reviews include incident & Incident management, emergency preparedness, recovery modes/methods, recovery strategies etc.
- Corporate Governance frameworks e.g. King III.
- Insurance Risk Management Knowledge.
- Strong understanding of the business processes applicable to a mobile telecommunications operator.
- Knowledge of mobile telephony infrastructure and business processes.
- Project Management
- Risk Trending.
- Working knowledge of Industry standards of Information Security Risk Management (ISM) E.g. ISO 27001 and NIST
- Basic IT infrastructure knowledge advantageous
- Use of Excel, Power Point, Word
Supervisory / Leadership / Managerial Tasks:
- Ability to manage self and be a team player, good conflict management, take and manage accountability
- Energy & Drive – Innovative, Takes initiative, result oriented and develops self consistently
- Interpersonal Skills – Leadership, customer centricity, collaborative and coaches & develops direct reports
- Personal Skills – Trustworthy, integrity and ethical in dealings
- Operating Skills – Ability to focus on priorities and plans, shares knowledge effectively
- Organisational Positioning Skills – Good written and verbal communication, presentation skills, commitment to the organization
- Strategic Skills – Global thinker, Analytical thinking and Problem solving abilities.
- Facilitating skills
How to Apply
Interested and qualified applicants should send their Curriculum Vitae by 27th February, 2019 to: Email: [email protected]
Kindly indicate the Position (exact role you are applying for) in the email subject and note that only shortlisted applicants will be contacted.