Specialist; Technology Control
2025-05-06T05:26:57+00:00
NMB Bank
https://cdn.greattanzaniajobs.com/jsjobsdata/data/employer/comp_5940/logo/NMB%20Bank%20.jpeg
https://www.nmbbank.co.tz/
FULL_TIME
Dar es Salaam
Dar es Salaam
00000
Tanzania
Banking
Computer & IT
2025-05-19T17:00:00+00:00
Tanzania
8
Job Purpose:
Responsible for identifying, assessing, mitigating, and monitoring technology-related risks across all technology functions and ensuring compliance with relevant regulations and internal policies.
Main Responsibilities:
- Establish and maintain a comprehensive technology risk management framework that aligns with the banks risk appetite, industrial best practice, and regulatory requirements.
- Coordinate the identification, assessment, and analysis of all technology-related risks across the organization.
- Plan and execute cybersecurity assurance reviews and assessments across various domains.
- Contribute to the development, testing, and maintenance of business continuity and disaster recovery plans for IT systems.
- Evaluate the design and operating effectiveness of cybersecurity controls following relevant frameworks, standards (e.g., ISO 27001, NIST CSF), and regulatory requirements.
- Ensure the timely closure of all audit findings and prevent recurring issues.
- Develop, implementing, maintaining, and regularly reviewing essential technology policies, procedures, standards, guidelines, and practices.
- Collaborate with internal and external auditors by providing requested documentation, evidences, and facilitating walkthroughs. Track and follow up on implementing audit/risk reviews, recommendations, and management action plans to address control weaknesses and compliance gaps.
- Assist in the management of technology-related compliance initiatives and projects.
- Maintain accurate and up-to-date documentation related to technology controls, risk assessments, and compliance activities.
- Prepare regular reports on the status of technology controls and identified risks Collaborate with IT teams and other stakeholders to ensure that privacy compliance requirements are integrated into technology processes and systems.
- Support the organizations efforts to comply with specific standards such as ISO 27001, PCI DSS, or other relevant certifications.
Knowledge and Skills:
- Understanding of IT control frameworks and methodologies (e.g., COBIT, ITIL, ISO 27001).
- Strong knowledge of Cybersecurity risks and controls.
- Knowledge of Technology Risk Management.
- Good understanding of IT processes and technologies.
- Knowledge of data privacy regulations and best practices.
- Strong planning and organizing skills
- Time management skills
- Ability to communicate pleasantly and confidently with change management stakeholders both orally and in writing.
- Demonstrates strong analytical, problem-solving, coordination, and decision-making abilities.
- Be a team player who motivates and educates other team members/stakeholders.
- Ability to interact with all levels of management, staff, and vendors
Qualifications and Experience:
- Degree in Computer Science / Information Technology/Computer Engineering.
- Certification in Technology risk management, preferably CISA
- Certification on CRISC, CDPSE, CGEIT, CompTIA Security is added advantage.
- Other Project and Change management certifications.
- 2 years of experience in Risk Management.
- 2 years of experience in IT risk audits in a major Financial or professional institutio
Establish and maintain a comprehensive technology risk management framework that aligns with the banks risk appetite, industrial best practice, and regulatory requirements. Coordinate the identification, assessment, and analysis of all technology-related risks across the organization. Plan and execute cybersecurity assurance reviews and assessments across various domains. Contribute to the development, testing, and maintenance of business continuity and disaster recovery plans for IT systems. Evaluate the design and operating effectiveness of cybersecurity controls following relevant frameworks, standards (e.g., ISO 27001, NIST CSF), and regulatory requirements. Ensure the timely closure of all audit findings and prevent recurring issues. Develop, implementing, maintaining, and regularly reviewing essential technology policies, procedures, standards, guidelines, and practices. Collaborate with internal and external auditors by providing requested documentation, evidences, and facilitating walkthroughs. Track and follow up on implementing audit/risk reviews, recommendations, and management action plans to address control weaknesses and compliance gaps. Assist in the management of technology-related compliance initiatives and projects. Maintain accurate and up-to-date documentation related to technology controls, risk assessments, and compliance activities. Prepare regular reports on the status of technology controls and identified risks Collaborate with IT teams and other stakeholders to ensure that privacy compliance requirements are integrated into technology processes and systems. Support the organizations efforts to comply with specific standards such as ISO 27001, PCI DSS, or other relevant certifications
Understanding of IT control frameworks and methodologies (e.g., COBIT, ITIL, ISO 27001). Strong knowledge of Cybersecurity risks and controls. Knowledge of Technology Risk Management. Good understanding of IT processes and technologies. Knowledge of data privacy regulations and best practices. Strong planning and organizing skills Time management skills Ability to communicate pleasantly and confidently with change management stakeholders both orally and in writing. Demonstrates strong analytical, problem-solving, coordination, and decision-making abilities. Be a team player who motivates and educates other team members/stakeholders. Ability to interact with all levels of management, staff, and vendors
Degree in Computer Science / Information Technology/Computer Engineering. Certification in Technology risk management, preferably CISA Certification on CRISC, CDPSE, CGEIT, CompTIA Security is added advantage. Other Project and Change management certifications. 2 years of experience in Risk Management. 2 years of experience in IT risk audits in a major Financial or professional institutio
JOB-68199da1d940a
Vacancy title:
Specialist; Technology Control
[Type: FULL_TIME, Industry: Banking, Category: Computer & IT]
Jobs at:
NMB Bank
Deadline of this Job:
Monday, May 19 2025
Duty Station:
Dar es Salaam | Dar es Salaam | Tanzania
Summary
Date Posted: Tuesday, May 6 2025, Base Salary: Not Disclosed
Similar Jobs in Tanzania
Learn more about NMB Bank
NMB Bank jobs in Tanzania
JOB DETAILS:
Job Purpose:
Responsible for identifying, assessing, mitigating, and monitoring technology-related risks across all technology functions and ensuring compliance with relevant regulations and internal policies.
Main Responsibilities:
- Establish and maintain a comprehensive technology risk management framework that aligns with the banks risk appetite, industrial best practice, and regulatory requirements.
- Coordinate the identification, assessment, and analysis of all technology-related risks across the organization.
- Plan and execute cybersecurity assurance reviews and assessments across various domains.
- Contribute to the development, testing, and maintenance of business continuity and disaster recovery plans for IT systems.
- Evaluate the design and operating effectiveness of cybersecurity controls following relevant frameworks, standards (e.g., ISO 27001, NIST CSF), and regulatory requirements.
- Ensure the timely closure of all audit findings and prevent recurring issues.
- Develop, implementing, maintaining, and regularly reviewing essential technology policies, procedures, standards, guidelines, and practices.
- Collaborate with internal and external auditors by providing requested documentation, evidences, and facilitating walkthroughs. Track and follow up on implementing audit/risk reviews, recommendations, and management action plans to address control weaknesses and compliance gaps.
- Assist in the management of technology-related compliance initiatives and projects.
- Maintain accurate and up-to-date documentation related to technology controls, risk assessments, and compliance activities.
- Prepare regular reports on the status of technology controls and identified risks Collaborate with IT teams and other stakeholders to ensure that privacy compliance requirements are integrated into technology processes and systems.
- Support the organizations efforts to comply with specific standards such as ISO 27001, PCI DSS, or other relevant certifications.
Knowledge and Skills:
- Understanding of IT control frameworks and methodologies (e.g., COBIT, ITIL, ISO 27001).
- Strong knowledge of Cybersecurity risks and controls.
- Knowledge of Technology Risk Management.
- Good understanding of IT processes and technologies.
- Knowledge of data privacy regulations and best practices.
- Strong planning and organizing skills
- Time management skills
- Ability to communicate pleasantly and confidently with change management stakeholders both orally and in writing.
- Demonstrates strong analytical, problem-solving, coordination, and decision-making abilities.
- Be a team player who motivates and educates other team members/stakeholders.
- Ability to interact with all levels of management, staff, and vendors
Qualifications and Experience:
- Degree in Computer Science / Information Technology/Computer Engineering.
- Certification in Technology risk management, preferably CISA
- Certification on CRISC, CDPSE, CGEIT, CompTIA Security is added advantage.
- Other Project and Change management certifications.
- 2 years of experience in Risk Management.
- 2 years of experience in IT risk audits in a major Financial or professional institution
Work Hours: 8
Experience in Months: 24
Level of Education: bachelor degree
Job application procedure
Interested and qualified? click here
All Jobs | QUICK ALERT SUBSCRIPTION
