- Advise the Senior Management and board on cyber and information security management.
- Formulate an institutional methodology for managing cyber and information security risks and create a cyber-incident response team.
- Formulate the institution’s cyber and information security policy for Senior Management and Board approval.
- Develop and update specific and general work procedures for realizing the institution’s cyber and information security policy.
- Maintain an ongoing process of cyber and information security risk assessment
- Integrate and coordinate all institutional cyber and information security efforts, including oversight and control of all institutional units participating in these efforts.
- Coordinate cyber and information security activities, including joint exercises with business partners and service providers.
- Monitor cyber and information security trends, methods and advanced developments in the field while being knowledgeable about emerging attack techniques and ways of dealing with them.
- Analyze cyber and information security incidents that have occurred in Gambia and worldwide, and assess their potential impact on the institution, as well as implement the relevant measures proposed.
- Develop metrics and indicators to assess the effectiveness of cyber and information security systems and procedures.
- Assess regular and ad-hoc institutional cyber and information security controls.
- Draw up work plans, including budgeting, prioritization and timetables for implementing the assessment processes.
- Prepare annual reports to Senior Management and Board, detailing the institutional cyber and information security defense level, weaknesses and vulnerabilities, available countermeasures, and the activities and budgets required to enhance its defenses.
- Responsible for collaborating with relevant institutions involved in cyber and information security issues.
- Report to the Regulator on major cyber and information security incidents.
Requirements
Minimum of 10 years’ experience in a similar role.
Minimum of a Bachelor’s degree
Relevant professional certifications in the field.
Adherence to governance and regulatory procedures
Attention to details
Good communication and interpersonal skills
Must have experience in identifying, establishing and managing strategic partnerships