Daystar Power is committed to helping African businesses grow and develop by taking their power needs off their plate. In doing so, it aims to contribute to the clean and sustainable growth of African countries.
The BISO is responsible for all IT Governance, Risk, Compliance and Assurance.
BISO is the Daystar cyber and information security lead responsible for:
- Risk-based cyber and information security protection.
- Ensuring risks are considered at the inception of every IT project.
- Leveraging the risk advisory team to manage the end-to-end Group CISO risk management processes as needed.
- Ensuring security and compliance with key standards and policies, minimizing Daystar’s exposure to preventable risks and unlocking value.
- Guiding Daystar’s Business/Functions to adapt Group CISO requirements by balancing value, affordability, do-ability and absorbability against risk exposure.
- Interfacing with Group CyberDefense Team when an incident occurs, managing the incident to closure, in other to protect Daystar’s landscape (systems, networks, and data) from cyber threats; ensuring the safety and security of sensitive information; and ensuring the confidentiality, integrity and availability of data by implementing robust defence mechanisms.
- Manage IT security and operations risks, ensuring Daystar IDT can deliver secure and reliable products and services to the entire Group. The jobholder would also be responsible for ensuring risks to information assets are identified and understood, that appropriate action is taken to mitigate risks and that there is sustained compliance of the organisation / business unit and its associated customers, users, suppliers or partners with the controls framework and related policies, standards and processes.
Qualified women are encouraged to apply.
Requirements
Key Responsibilities:
- Interfacing with Group CyberDefense Team when an incident occurs, managing the incident to closure, in order to protect Daystar’s landscape (systems, networks, and data) from cyber threats.
- Single point of contact for control, compliance and operations risk.
- Ensure IRM activities (e.g. risk acceptance, vulnerability, IRM projects, compliance status) are visible and actioned across Daystar. Reporting for Daystar Business and IDT leadership and facilitate review, escalation, drive implementation.
- Design and own Daystar Control and Compliance reporting & dashboard.
- Drive change and implement simplification including elimination.
- Drive gamification approach for Compliance and Control.
- Lead Daystar Think Secure Champions network.
- Act as Operational Readiness Framework Lead/Focal Point for Daystar.
- End-to-end accountable for the coordination and timely execution of outbound assurance to customers, partners and regulatory bodies.
- Work hand in hand with other BISOs, IDT community and business orchestrating execution of outbound assurance queries from customers, partners and regulatory bodies.
- Provide internal Assurance Services (incl. Testing): Performing end-to-end Compliance Testing on controls put in place to minimise risk. Focused Risk Reviews and Process Walk through for IT applications/processes to identify unmitigated risks.
Method of Application
Signup to view application details.
Signup Now
