Position title: Senior IT Security Assistant
Grade: GS-8
Position N°: 0855
Reference: ADB/10/031
Closing date: 28/04/2010
Objectives
This position is located in the Security Unit (SECU). Under the direct supervision of the Chief Information Security Officer (CISO) who reports directly to the Head of the Security Unit, the Senior Information Security Assistant will be responsible for protecting the Bank’s IT resources and information assets by:
Grade: GS-8
Position N°: 0855
Reference: ADB/10/031
Closing date: 28/04/2010
Objectives
This position is located in the Security Unit (SECU). Under the direct supervision of the Chief Information Security Officer (CISO) who reports directly to the Head of the Security Unit, the Senior Information Security Assistant will be responsible for protecting the Bank’s IT resources and information assets by:
- Ensuring tactical implementation of information security in support of business objectives;
- Ensuring Availability, Confidentiality, Integrity, Audit ability of the Bank’s information systems;
- Ensuring continued availability of the Bank’s information systems;
- Ensuring reduction of adverse impacts on the Bank’s business operations to an acceptable level;
- Ensuring conformity to applicable laws, regulations and standards;
- Preventing non repudiation of computer-based activities
Duties and responsibilities
Processes requests to grant application and network access privileges that have been approved by appropriate authorities. Modifies the systems privileges of users in response to employment status notices sent by concerned users line Managers or designated members of Human Resources Department.
Act as the primary technical support liaison in charge of distribution and loading updates to endpoint protection systems, intrusion prevention systems, intrusion detection systems, firewalls, and other deployed security systems within the Bank.
Maintains and updates the configuration of endpoint protection systems, intrusion prevention systems, intrusion detection systems, firewalls, and other deployed security systems within the Bank.
Participates in activities that respond to various security incidents such as denial of service attacks, virus infestations, etc. Provide technical details for investigation of security incidents including hacker break-ins, and system outages. Preserves all records indicating changes made to access control lists to facilitate investigations, disciplinary actions, and prosecutions. Assists with the documentation of information security incidents as well as analysis of the circumstances enabling or permitting these same incidents to take place.
Execute automated mechanisms that analyze the security violations found in access control logs to discover patterns and evidence of problems. Monitors security logs of computers, network and security devices to detect attempts at unauthorized use, and notifies the Chief Information Security Officer or its delegates as necessary
Assist with the implementation and running of automated tools that enforce or monitor the compliance with information security policies, standards and similar information security requirements.
Assist with the implementation of information security policies, standards and similar information security requirements.
Maintain an inventory of all information security requirements documents such as policies, standards, and procedures, etc. Distribute these documents and maintain an intranet site that reflects the current version of all these documents.
Maintain a collection of information security awareness and training materials used by the Information Security Team.
Performs other support activities in service of the Information Security mission
Perform Security Assessment (Applications, Systems, Network etc)
Provides technical assistance to Systems Administrators, Network Administrators, Developers and Database Administrators in their effort to monitor computer and networks under their control so that unauthorized use will be immediately detected and acted upon.
Provides users with technical support on matters related to information security. Especially, assist users in their efforts to use the Bank’s information systems including eventually access credentials and devices reset, deactivation, revocation and the like.
Attends occasional conferences and training seminars to remain familiar with the latest tools and techniques in the information system access control area.
Perform other Information Security duties assigned by the CISO
These Positions do not Attract International Terms and Conditions
Selection Criteria
Including desirable skills, knowledge and experience
- Minimum of a Bachelor degree or its equivalent in Social Science, or other related disciplines.
- A minimum of 6 years of relevant practical working experience in security.
- High level skills in communication and organization, along with excellent customer service and a good team player.
- Knowledge of SAP systems as employed by the ADB.
- Excellent written and verbal communication skills in English and/or French, with a working knowledge of the other language. Excellent customer service.
- Webmaster qualified. Competent in the use of Bank standard software (Word, Excel, Access and PowerPoint) and SAP.
Candidates under serious consideration must not have any criminal record and will be required to pass an ADB Team background check.
Only applicants who fully meet the Bank's requirements and are being considered for interview will be contacted.
Applicants will only be considered if they submit (preferably electronically, to: recruit @ afdb.org) a fully completed Personal History Form (PHF), available from the Bank’s web site, and attach a comprehensive Curriculum Vitae (CV) indicating date of birth and nationality.
The President, ADB, reserves the right to appoint a candidate at a lower level. The African Development Bank is an equal opportunities employer and female candidates are strongly encouraged to apply.
Only applicants who fully meet the Bank's requirements and are being considered for interview will be contacted.
Applicants will only be considered if they submit (preferably electronically, to: recruit @ afdb.org) a fully completed Personal History Form (PHF), available from the Bank’s web site, and attach a comprehensive Curriculum Vitae (CV) indicating date of birth and nationality.
The President, ADB, reserves the right to appoint a candidate at a lower level. The African Development Bank is an equal opportunities employer and female candidates are strongly encouraged to apply.
