KEY RESULT AREAS

PRINCIPAL ACCOUNTABILITIES (MAIN DUTIES)

Departmental Planning and Budgeting

• Provides input   into        the departmental workplan and budget.
• Minimizes operational costs by ensuring that divisional
• expenditure remains within budget approval and savings made from budget.

Cyber Security Strategy and Policy Development

• Develop and implement a comprehensive cyber security strategy that aligns with IDC’s strategic objectives.
• Establish and maintain cyber security policies, procedures, and standards to ensure the protection of IDC’s information assets.
• Continuously evaluate and update cyber security strategies and policies to address emerging threats and vulnerabilities.

Security Risk Assessment and Management

• Conduct regular risk assessments to identify and evaluate potential cyber threats and vulnerabilities.
• Develop and implement risk mitigation strategies to minimize the impact of identified risks.
• Monitor and report on the effectiveness of risk mitigation measures and adjust strategies as necessary.

Security Operations

• Oversee the daily operations of IDC’s cyber security systems and ensure their effective functioning.
• Monitor network traffic and system activities for suspicious activities and potential security breaches.
• Ensure systems and user passwords comply with the password policy
• Ensure Patch management for all systems and networks
• Coordinate incident response efforts and lead investigations into security incidents.

Security Awareness and Training

• Develop and implement security awareness programs to educate employees about cyber security best practices and policies.
• Conduct regular training sessions to enhance the cyber security knowledge and skills of IDC staff.
• Promote a culture of security awareness and vigilance across the organization.

Compliance and Audit

• Ensure compliance with all applicable cyber security laws, regulations, and standards.
• Prepare for and participate in internal and external security audits.
• Implement recommendations from security audits to improve IDC’s security posture.

Security Technology Implementation

• Evaluate, select, and implement advanced security technologies to protect IDC’s information systems.
• Ensure the effective integration of security technologies with existing IT infrastructure.
• Stay updated with the latest developments in cyber security technologies and best practices.

Incident Response and Recovery

• Develop and maintain incident response plans to ensure timely and effective response to security incidents.
• Coordinate with internal and external stakeholders to manage and resolve security incidents.
• Conduct post-incident reviews to identify lessons learned and improve incident response processes.

Reporting and Documentation

• Prepare detailed reports on security incidents, risk assessments, and compliance activities.
• Maintain accurate and up-to-date documentation of security policies, procedures, and incidents.
• Provide regular updates to the Head of ICT on the status of cyber security initiatives and issues

Health and Safety

Take reasonable care for own health and safety as well as that of other employees, clients, and others as may be required from time to time.

Furtherance of Company’s Interests

Exercise the powers and duties generally exercised by Senior ICT Officer in the furtherance of the interests of the company as may be authorised and or delegated by the Supervisor.

Meetings

Prepare key departmental presentations, talking points and any other information required.

Any other Duties

Perform any other job-related duties as assigned