IT Risk Analyst (Commercial Bank) x2 Brilliance Executive Management Consultancy

Job Purpose

The IT Risk Analyst will conduct threat analysis to identify threats and cyber security risks to the Bank’s information systems. Develop the Banks cyber security defense strategy and safety protocols and implement firewalls, security software, data encryption, and other security measures. Take charge of monitoring network activity and conducting audits to identify vulnerabilities and develop disaster recovery plans. Be responsible for the management, continuous evaluation, and continuous improvement of the Bank’s Information Technology Risk program under the Bank’s Enterprise Wide Risk Management Framework.

Summary of Key Responsibilities;

Identify threats and conduct risk assessments to address cyber security risks
Conduct periodic product risk assessment for all existing products, with a focus on systems
Review and recommend product controls to ensure effectiveness of the controls, with a focus on system
Monitor the Bank’s network activity, conduct audits, and identify areas of vulnerability
Coordinate IT Risk Control Self Assessments
Develop and implement a cyber-security defense strategy, including safety protocols and disaster recovery procedures
Maintain up-to-date security policies, standards and guidelines;
Implement and maintain information security tools;
Evaluate the ability of each of our third-party service providers to protect client or firm data to which we have permitted them access;
Coordinate information and cyber security risk awareness and provide training on mitigating measures across the bank;
Review the cyber-security incident response program to ensure that there are clearly defined and documented roles and responsibilities of managing cyber-attacks and communication channels amongst relevant stakeholders.
Collaborating with IT experts and other stakeholders to develop strategies useful in managing IT and Cybersecurity risks.
Prepare and provide reports to the senior management on the overall status of the information cyber security programme
Implement security controls such as data encryption, firewalls, and security software
Follow up with IT Head on expedient closure of IT audit issues on a timely basis
Coordinate with Internal Audit on assurance reviews on all closed IT issues
Research and evaluate data from various sources to identify new threats, trends, issues, and opportunities to improve processes
Understand and provide advice on managing cybersecurity risks; collaborate with other IT professionals as needed to address new emerging threats
Provide guidance and support to teams as it relates to security best practices.
Required Technical Skills and Competencies

Strong written communication skills, demonstrating the ability to write with purpose, clarity, and accuracy;
Good analytical, review, and reporting skills
Excellent Attention to detail skills
In-depth Computer skills
Excellent Problem Solving Skills
Data analysis techniques
Excellent Microsoft packages capabilities
Ability & desire to learn new product lines and technologies quickly & efficiently
Primary Areas of Accountability:
Qualifications and Experience

Degree in Computer Science, IT Security, Computer Engineering or in a related field
Must have at least a minimum of 5 to 7 years of experience in a IT risk management, and information security related works
Must have proven knowledge of 2-3 years in Information technology, IT Risk and Business Continuity Management
Must have worked in the same or similar capacity with a Commercial
Bank, Telecoms, Insurance, well established Micro Financial Institution
or IT Risk Audit Firm (A MUST).
Must have a Certification in IT Risk Management
Good understanding of relevant laws, regulations, and industry best practices.
Solid proficiency and understanding of analytics and proficiency in report writing.
Experience working across multiple teams from Help desk, Infrastructure, Legal, and to Executive Leadership
Must have a clean record in IT Risk/Audit Management
Must be a member of a relevant professional body