Virtual Chief Information Security Officer (Fractional) Impact Enterprises

Job Description

Virtual Chief Information Security Officer (Fractional)

Impact Enterprises International, a technology company providing outsourced support services based in Chipata, Zambia, is looking for an exceptional Virtual Chief Infomation Security Officer (vCISO) to oversee all security and monitoring protocols for our Chipata office. The contract will be frational and remote based work with the potential for travel to the office in Chipata as needed.

Company Overview

Impact Enterprises provides valuable employment for secondary school and university graduates in Zambia. We are a for-profit social enterprise delivering world-class outsourcing services such as web research, content moderation, order management, and data entry. Launched in June 2013, we are seeking to become the premier outsourcing company in Africa.

Based in Chipata, we partner with international marketing, software, consumer companies and universities to support their operations. All tasks are overseen by team leads and company executives. Internal training and workshops help develop the skills of all employees during their employment, allowing them to progress to new tasks over time. Visit our website to learn more: www.impactenterprises.org.

Job Description:

The vCISO will be responsible for such tasks as:

Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program

Work directly with the business units to facilitate risk assessment and risk management processes

Develop and enhance an information security management framework

Understand and interact with related disciplines through the Network Administrator to ensure the consistent application of policies and standards across all technology projects, systems and services

Provide leadership to the enterprise’s information security organization

Partner with business stakeholders across the company to raise awareness of risk management concerns

Assist with the overall business technology planning, providing a current knowledge and future vision of technology and systems

Qualifications:

The candidate must meet all the below qualifications:

BA in Computer Science

Professional security management certification

Minimum of 20 years of experience in a combination of risk management, information security and IT jobs

Knowledge of common information security management frameworks, such as SOC2, ISO/IEC 27001, and NIST.

Excellent written and verbal communication skills and high level of personal integrity

Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams

Experience with contract and vendor negotiations and management including managed services.

Specific experience in Agile (scaled) software development or other best-in-class development practices.

Experience with Cloud computing/Elastic computing across virtualized environments.