i.Plan, design, develop and implement ICT security policies, procedures, standards, and guidelines;

ii.Integration of ICT security into day-to-day ICT operational activities and provision of periodic security reports;

iii.Installation, configuration and management of security systems/software;

iv.Provision of security advisory on various security risks, threats and vulnerabilities;

v.Support, monitor and assess ICT security compliance in the Government, and

vi.Timely handling of ICT security incidents;

vii.Prepare and deliver cyber security trainings to public institutions;

viii.Monitor security alerts and incidents, analyze logs and network traffic for suspicious activities using SIEM and other tools, and

ix.Perform Vulnerability Assessment and Penetration Testing for systems, network infrastructure and mobile devices to identify vulnerabilities and recommend mitigation strategies. 

i.Minimum of Bachelor’s Degree in Information Technology, Computer Science, Computer Engineering, Computer Security, Software Engineering or equivalent degree from a recognized institution;

ii.Knowledge of industry ICT Security Management System, cyber security regulatory frameworks and best practices;

iii.Knowledge of ICT Risk Management;

iv.Knowledge of Networking, System Administration, Programming and Database Administration;

v.Knowledge of vulnerability analysis and penetration testing of applications, operating systems, networks and mobile applications/devices;

vi.Knowledge of SOC, NOC operations, threat vectors and basic mitigation controls such as IPS, IDS, WAF etc;

vii.Knowledge of API security and secure API design practices;

viii.Knowledge in integrating ICT security into the DevOps pipeline;

ix.Demonstrated proficiency in using various open-source and proprietary cyber security tools; and

x.Certification in ICT security field such as CEH, CIH, ECSA, LPT, CISA, CISSP, CISM, OCSP and CSX-CP will be an added advantage.