Steer the conceptualization and implementation of all IT Security architecture. Take ownership of all direction, vision, standards and strategic objectives for security architecture.
Requirements
Qualifications
• University degree in Commerce or Law and IT
• CISA, CISM, CISSP or equivalent IT governance and risk management certifications
• Post graduate qualification in law enforcement, forensics or information security management
Experience
• 5+ years related work experience dealing with IT security systems
• In depth exposure to and experience with application of industry accepted IT governance standards (e.g., Cob IT, ITIL, TOGAF, King III or similar)
• 10+ years’ experience and proven track record in security and IT security, IT Risk and IT audit field
• Industry experience in the gaming and lottery sector
• Knowledge
Collaborate with Departments
• Work closely with data governance and internal audit/risk teams to define the systems access levels for different roles in the organization
• Work closely with Human Resources to ensure that employees who exit the organization have their access revoked on their last day in the office. Regularly obtain exit reports and cross check to ensure that the user access has been removed
Data Governance
• Measure and report to management on the progress of data quality improvement
IT Governance
• Define and establish an IT governance framework in line with the corporate governance
• Define and communicate an IT governance maturity roadmap
• Monitor and report on IT governance initiatives
• Prepare reports on IT strategy, performance and risks
• Assess the IT infrastructure on a periodic basis to ensure that it is standardized wherever possible
Manage Information Security
• Oversee the development and implementation of information security standards for all part of the lottery division – lotto specific data and information as well as generic systems such as accounting and payroll systems
• Undertake period reviews of the information security strategy, procedures, policies standards and guidelines to keep up with the prevailing best practices