MTN Ghana Job Vacancy For Manager, Information & Cyber Security Risk

Division:  Risk & Compliance

Department:      Security Risk Management

Location:       Accra

Position:  Manager, Information & Cyber Security Risk

Level:    MTN Level 3

Reports to:     Senior Manager, Security Risk Management

Job Summary:

• Responsible for establishing and implementing adaptable Information Security & Cyber Risk Management standards, frameworks and solutions for the OpCo in line with Group frameworks, policies and procedures, in response to current and future Information Security Risk Management landscapes. The primary purpose of the job is to effectively identify, protect, Detect, Respond & Recover and introduce defensive safeguards and monitor the performance thereof against all variations of potential security risk exposures, both of an internal or external nature (Strategic, Operational, Compliance, Liquidity, Product and Market, Political, Economic, Reputation etc.).

• In addition, this role ensures that business units take ownership in the management of their security risks to guarantee safeguarding MTN Ghana’s information assets and the interests of stakeholders by identifying and managing all threats to the achievement of the overall strategic objectives.
  

Job Role

• Evolving industry ecosystems relating threats and vulnerabilities
• Compliance and regulatory landscapes and challenges. i.e. General Data Protection Regulations
• New imperatives concerning data privacy and security and building strong digital trust partnerships
• Rapid adoption of new routes to innovation and technologies
• Volatile macroeconomic and political environments in the OpCo and the region
• Identifying, defending, detection, responding and recovery of Information Security risks through business intelligence to maximize business impact
• Management of customer and supplier expectations
• Enhancing the OpCo and MTN reputational position as a leading network and system provider
• Aligned to Integrated plan
• Risk & Compliance Management themes and focus areas
• Aligned with King III Corporate Governance.
• Risk & Compliance Management Frameworks, Methodologies, Policies, Processes and procedures.
• Dynamic and highly competitive telecommunication & ICT industry
• Highly regulated environment
• Regionalization structure implication
• Performance driven environment
• Diverse cultural environment

Context:

• Evolving industry ecosystems relating threats and vulnerabilities
• Compliance and regulatory landscapes and challenges. i.e. General Data Protection Regulations
• New imperatives concerning data privacy and security and building strong digital trust partnerships
• Rapid adoption of new routes to innovation and technologies
• Volatile macroeconomic and political environments in the OpCo and the region
• Identifying, defending, detection, responding and recovery of Information Security risks through business intelligence to maximize business impact
• Management of customer and supplier expectations

• Enhancing the OpCo and MTN reputational position as a leading network and system provider
• Aligned to Integrated plan
• Risk & Compliance Management themes and focus areas
• Aligned with King III Corporate Governance.
• Risk & Compliance Management Frameworks, Methodologies, Policies, Processes and procedures.
• Dynamic and highly competitive telecommunication & ICT industry
• Highly regulated environment
• Regionalization structure implication
• Performance driven environment
• Diverse cultural environment                 

Education                  

• Bachelor's Degree preferably in Risk Management, Business/ Computer Science/ Information Security.  
• Professional certification on Information Security Risk Management 

Experience

At least 5 years’ experience in a related field.

Knowledge:

• Information Security frameworks, standards and Guidelines
• Information Security  Risk Management Policies or ISO Standards 27001 or NIST Maturity models
• ISM methodologies and reviews include incident & Incident management, emergency preparedness, recovery modes/methods, recovery strategies etc.
• Corporate Governance frameworks e.g. King III.
• Insurance Risk Management Knowledge.
• Strong understanding of the business processes applicable to a mobile telecommunications operator.
• Knowledge of mobile telephony infrastructure and business processes.
• Project Management
• Risk Trending.
• Working knowledge of Industry standards of Information Security Risk Management (ISM) E.g. ISO 27001 and NIST
• Basic IT infrastructure knowledge advantageous
• Use of Excel, Power Point, Word

Supervisory / Leadership / Managerial Tasks: 

• Ability to manage self and be a team player, good conflict management, take and manage accountability
• Energy & Drive – Innovative, Takes initiative, result oriented and develops self consistently
• Interpersonal Skills  -  Leadership, customer centricity, collaborative and  coaches & develops direct reports
• Personal Skills  - Trustworthy, integrity and ethical in dealings
• Operating Skills - Ability to focus on priorities and plans, shares knowledge effectively
• Organisational Positioning Skills  -  Good written and verbal communication, presentation skills, commitment to the organization
• Strategic Skills – Global thinker, Analytical thinking and Problem solving abilities.
• Facilitating skills

NB: The Incumbent must maintain strict confidentiality at all times