ROLE PURPOSE:
To support and assist with the development of SCI’s information security function. This role works alongside three other regional Information Security Analysts and the Data Protection team. This role will be based in the Nairobi Tech Hub.
SCOPE OF ROLE:
Reports to: Director of Information Security & Data Protection (London)
Staff reporting to this post: None
Budget Responsibilities: None
KEY AREAS OF ACCOUNTABILITY :
- Support development, implementation and maintenance of information security policies, standards and processes to prevent, detect, analyze, and respond to information security incidents.
- Lead and contribute to the development, operations and maintenance of the information security incident management process, awareness trainings and campaigns, vulnerabilities management and penetration testing.
- Support risk-based implementation of security controls for the protection of information systems, networks and applications.
- Support BAU IT security operations including Security Incident & Event Management (SIEM) processes, vulnerability assessments, and threat and incident management to mitigate risks.
- Proactively research and develop technical solutions/security tools to help mitigate security vulnerabilities and automate repeatable tasks.
- Collaborate with Global IT Ops, IT Shared Services and IT Architecture & Strategy teams to ensure systems, applications and networks are secure by design.
- Assist internal and external stakeholders including auditors, when required, with information security questionnaires, audits, reviews, investigations, etc.
BEHAVIOURS (Values in Practice)
Accountability:
- Holds self-accountable for making decisions, managing resources efficiently, achieving and role modeling Save the Children values
- Holds the team and partners accountable to deliver on their responsibilities - giving them the freedom to deliver in the best way they see fit, providing the necessary development to improve performance and applying appropriate consequences when results are not achieved.
Ambition:
- Sets ambitious and challenging goals for themselves and their team, take responsibility for their own personal development and encourage their team to do the same
- Widely shares their personal vision for Save the Children, engages and motivates others
- Future-orientated, thinks strategically and on a global scale.
Collaboration:
- Builds and maintains effective relationships, with their team, colleagues, Members and external partners and supporters
- Values diversity, sees it as a source of competitive strength
- Approachable, good listener, easy to talk to.
Creativity:
- Develops and encourages new and innovative solutions
- Willing to take disciplined risks.
Integrity:
- Honest, encourages openness and transparency; demonstrates the highest levels of integrity
QUALIFICATIONS
Candidates will be evaluated primarily upon their ability to demonstrate the competencies required to be successful in the role, as described in key areas of accountability above. For reference, the typical work experience and educational background of candidates in this role are as follows:
Experience and skills
- Degree or diploma in Computer Science, Information Security, or a related qualification
- Minimum 3+ years working in information security or technical IT e.g systems administrator role.
- Experience working on information security and data protection requirements within a global organization or related, technical, IT experience
- Security-related certification/s would be a plus.
- Experience working with distributed IT infrastructure, networking and application environments.
- Capacity to build and maintain excellent relations and to work effectively in a multicultural and multi-ethnic environment respecting diversity.
- Strong personal, organizational and self-management skills.
- Strong communication skills, in English.
- Commitment to Save the Children mission and values.
Desirable
- Proficiency with at least one of the scripting languages (e.g.: Perl, Python, PowerShell)
- Experience in ‘field operations and the IT Security-related issues associated with working in remote, inhospitable and insecure environments
- Strong understanding of/willingness to learn key trends in international and humanitarian development and how technology can and is being utilized to support these developments
Additional job responsibilities
The duties and responsibilities as set out above are not exhaustive and the role holder may be required to carry out additional duties within reasonableness of their level of skills and experience.
Equal Opportunities
The role holder is required to carry out the duties in accordance with the SCI Equal Opportunities and Diversity policies and procedures.
Child Safeguarding:
We need to keep children safe so our selection process, which includes rigorous background checks, reflects our commitment to the protection of children from abuse.
Safeguarding our Staff:
The post holder is required to carry out the duties in accordance with the SCI anti-harassment policy
Health and Safety
The role holder is required to carry out the duties in accordance with SCI Health and Safety policies and procedures.
Female Candidates are encouraged to apply.
Disclaimer:
Beware that there are individuals who may take and use SCI’s name in an attempt to solicit fees from interested job-seekers. We do not use recruiting persons or agencies to help us identify candidates for employment. If you’re contacted by a person promising you recruitment or placement at SCI for a charge, do not accept, and please get in touch with us at SCIFraud@savethechildren.org.