The IT Security Officer at Digaf & Micro-Credit Provider SC plays a crucial role in safeguarding the organization’s digital assets and ensuring compliance with security policies. This full-time position, suitable for mid-level professionals with 3-5 years of experience, is based in an office environment in Addis Ababa. The officer will be responsible for identifying and mitigating security risks, developing security protocols, and promoting a culture of security awareness across the organization.

Key Responsibilities:

• Develop and implement security policies and procedures to protect organizational assets.
• Conduct regular security assessments and audits to identify vulnerabilities.
• Monitor network traffic for unusual activity and respond to security incidents.
• Coordinate with IT teams to ensure systems are secure and up-to-date.
• Provide training and support to staff on security best practices.
• Manage risk assessments and develop strategies to mitigate identified risks.
• Maintain documentation related to security policies, procedures, and incidents.
• Stay informed about the latest security threats and technology trends.
• Collaborate with external partners and vendors on security initiatives.
• Report security status and incidents to senior management.

Required Skills:

• Demonstrate a strong understanding of security and safety protocols.
• Conduct thorough risk management assessments and develop mitigation strategies.
• Implement and maintain security monitoring tools and systems.
• Analyze security incidents to identify root causes and preventive measures.
• Develop and deliver effective security training programs for staff.
• Manage security compliance with applicable laws and regulations.
• Coordinate incident response efforts and recovery plans.
• Evaluate third-party vendors for security practices and compliance.
• Communicate effectively with technical and non-technical stakeholders.
• Document security processes and maintain accurate records.

Desired Skills:

• Experience with security frameworks such as ISO 27001 or NIST.
• Knowledge of data encryption and secure data storage methods.
• Familiarity with cybersecurity technologies such as firewalls and intrusion detection systems.
• Ability to conduct forensic investigations and analyze security breaches.
• Strong problem-solving skills and attention to detail.

Interested applicants are invited to send their CV and application letter to: https://forms.gle/eUASjboLRAZesjrGA