LOCAL INFORMATION SYSTEMS OFFICER (LISO) M/F

	LOCAL INFORMATION SYSTEMS OFFICER (LISO) M/F

General informations

AGL (Africa Global Logistics) is the leading multimodal logistics operator (port, logistics, maritime and rail) in Africa. The company is now part of the MSC Group, a leading maritime and logistics company. 

Thanks to its expertise developed over more than a century and to more than 23,000 employees in 50 countries, AGL provides its African and global customers with global, tailor-made and innovative logistics solutions, with the ambition of contributing to the transformation of Africa in a sustainable way. 
AGL is also present in Haiti and Timor.

Are you looking for a rewarding experience in an international environment? Do you want to make an impact in a company that puts Africa at the heart of its project? 

Join AGL, the leading multimodal logistics operator on the African continent! 

Job description

Mission Description                      

Based in Nairobi and reporting to the Chief Information Security Officer, the role exists to ensure appropriate controls are in place for the security of information systems, safeguard information by seeing that security risks are identified, assessed and accurately reported with specific duties as:-
1. Apply and distribute the Central Information System Security Policy (ISSP) as well as adapt the ISSP to the concerned perimeter
2.. Apply central information security strategies, both short-term and long-range, in application of the AGL group.
3. Thoroughly conduct and complete annual reviews and audits as required by engaging both internal business partners across the region and external parties.
4. Manage LISO security team to oversee ongoing activities in cyber security within the region.
5. Proactive risk assessment program for all new and existing systems and remain familiar with the current goals and business processes of the AGL group so effective controls can be put in place for those areas that presenting the greatest information security risk in the East and Southern region.
6. Communicate risks and recommendations to mitigate risks to senior management so decisions can be made to ensure the security of information systems.
7.Oversee ongoing activities related to the development, implementation, and maintenance of the information security policies and procedures by ensuring these policies and procedures encompass the overall security of information security at rest or in motion within the groups systems and check compliance of departments local processes and procedures to ensure they are not in conflict with Company policies.
8.Evaluate security incidents and determine what response, if any, is needed and coordinate responses, including technical incident response teams, when sensitive information is breached.
9.Contribute to a work environment that encourages knowledge of, respect for, and development of skills to engage with those of other cultures
10.Apply and assist in implementing BCP (Business Continuity Plan) and DRP (Disaster Recovery Plan) procedures within the region.
11. Proactively act to prevent potential security incidents by ensuring that proper protections are in place
12.Ensure that local regulatory and contractual provisions on personal data protection are done and met throughout the region.
13.Accompany countries within the region, in the application of the ISSP.
14.Provide visibility KPI's on incidents and security indicators on the Eastern and Southern perimeter.
15.Develop information security awareness training and education programs, participate in local, regional, and worldwide awareness and education events.

 

Profile

1. Degree in IT or equivalent
2.ISO27001, ISO27002 and ISO27005 certification is mandatory
3.ITIL Foundations Certified
4.Professional certification, such as a CISSP, CISM, CISA or other information security credentials would be an advantage