Senior IT Officer I, Information Security Engineer

Statement of the Purpose

The job holder is responsible for safeguarding the organization’s digital assets, maintaining regulatory compliance, and responding effectively to security incidents. 

Specific Duties and Responsibilities:

• Develop, implement, and manage the Authority’s information security policies, standards, and procedures

• Conduct regular risk assessments to identify vulnerabilities and prioritize security measures

• Design and implement security solutions and architectures to protect the Authority’s IT infrastructure and data

• Evaluate and recommend security technologies to enhance the overall security posture

• Develop and maintain an incident response plan to effectively address security incidents and breaches

• Lead incident response efforts, including containment, investigation, and recovery

• Implement security measures such as firewalls, intrusion detection/prevention systems, and anti-malware solutions

• Monitor network and system logs for signs of unauthorized access or suspicious activities

• Manage user access and permissions to IT systems, applications, and data based on the principle of least privilege

• Implement and oversee identity and access management (IAM) solutions

• Develop and deliver cyber-security training programs for employees to raise awareness about security best practices

• Implement data protection measures to safeguard sensitive information; Develop and enforce data retention and disposal policies

• Assess the security posture of vendors and third-party partners to ensure they meet security standards; Implement processes to manage and mitigate vendor-related risks.

• Ensure alignment of security strategies with business objectives.

Qualification Requirements:

• Bachelor’s Degree or above in Information Technology, Software Engineering, Information Science, Cyber Security, or a field related to the Job function from an Accredited or recognized learning institution.

• 4 years of relevant experience.

Behavioral Competencies/Attributes:

• Basic technical skills
• Communication
• Problem-solving
• Time management
• Teamwork and collaboration
• Adaptability
• Customer Service Orientation

What We Do 

Ethiopian Capital Market Authority was established by Capital Market Proclamation No 1248/2021 as an autonomous Federal Regulatory Authority. One of the major objectives of ECMA is to ensure the existence of a capital market environment in which securities can be issued and traded in an orderly, fair, and efficient manner. ECMA, as a regulatory authority, grants licenses to any person to operate as a security exchange, derivative exchange, security depository and clearing company, capital market service provider, over-the-counter trading facility, or any other activity deemed by ECMA as a regulated activity under its jurisdiction. ECMA regulates and oversees trading in primary and secondary markets of securities, the use of electronic trading platforms that deal with securities and gives recognition and oversees the activities of self-regulatory organizations.  

How To Apply

Application Procedure

• Please send your CV and application letter, including answers to the application questions below, to ethiojobs.net.

•  Why do you want to work for the Ethiopian Capital Market Authority?

• What are your greatest achievements?