National Identity Management Commission - As part of efforts towards the full rollout of the National Identity Management System (NIMS), the National Identity Management Commission (NIMC) has arranged to engage the services of suitable candidates with integrity, drive and desire to win professionally as individual for the following IT functions in the Commission’s IT/Identity Database Department:
IT Disaster Recovery and Business Continuity Manager
Information Security Manager
Data Services Manager
1.) IT Disaster Recovery and Business Continuity, Manager
Job Description
The successful candidate shall be responsible for coordinating the development and execution of policies and procedures to mitigate, exposure during disruptions of service and ensure the critical business functions can be resumed within a defined time frame. This responsibility include coordinating the design, development maintenance, and exercising (testing) of the overall disaster recovery plans for each critical functional area at the organization to address the following:
The Emergency Response organization and procedures for reacting to and coordinating recovery efforts;
The Recovery Support procedures for restoring key organization resources;
The Business Resumption procedures for the continuation of critical business processes.
Furthermore, the incumbent shall be responsible for ensuring that critical business functions are perpetually available to stakeholders and entities that must haw access to those functions the manager’s activities include a variety of daily activities to maintain service consistency and recoverability, such as project risk assessment, change control, and periodic system audit and backups etc.
Duties and Responsibilities
Identify acceptable recovery time periods, and establish resources required tar the successful resumption of business operations us the event of a disaster;
Assure records required for recovery are identified and properly maintained;
Establish disaster recovery testing methodologies;
Plan and coordinate the testing of recovery support and business resumption procedures in different functional areas;
Conduct disaster recovery training for staff members in all functional areas;
Provide and regularly update instructional and informational materials on how staffs are expected to respond during an emergency;
Assist recovery business resumption staff during a disaster in the implementation of response and alternate operating strategies;
Act as coordinator during an emergency situation;
Work with vendor of disaster recovery services and facilities; study and recommend outside services for use during a disaster situation;
Maintain contact with outside organizations participating in reciprocal agreements;
Work with business continuity management to ensure that as new equipment, facilities, services and systems are installed that the disaster recovery issues are addressed;
Maintain contact with professional organizations and local/regional emergency response groups;
Perform risk analysis tar corporate functional areas to identity paints of vulnerability and recommend disaster avoidance and reduction strategies;
Provide guidance to and coordinate the efforts of staff members in the development of recovery procedures for key areas at the organization;
Develop corporate emergency response procedures;
Analyze environmental and. equipment configurations for critical corporate resources; recommend disaster avoidance measures and improved backup capability
Periodically review changes in corporate resources with the management at those areas to assure the effectiveness of the recovery procedures and backup capabilities;
Conduct business impact analyses find assist company units to determine critical business processes;
Coordinate the efforts of staff members in different functional areas in the development of procedures for the continuity of business processes in a disaster situation;
Assure that recovery procedures are effective for the restoration of key corporate resources and for the resumption of critical business processes;
Design, develop and maintain standards and procedures for disaster recovery documentation
Maintain a library of emergency response procedures, recovery support and business resumption procedures;
Distribute and update emergency procedures to reflect changes in staff size, location organization, and home office facilities;
Monitor the effectiveness of procedures during evacuation drills and revise the procedures as necessary;
Keep up to date and upgrade the Business Continuity and Disaster Recovery standards, tools and techniques defined for the organization in line with leading industry standards;
Train and manage the business continuity and disaster recovery unit within the organization.
Minimum Requirements/Skills
Prospective Candidates must possess:
7 to 10 years post-qualification cognate experience (expected to be proven) in related field;
3 years experience with risk management system and/or database to include building functionality; retrieval and reporting of information; application testing; and writing procedures and/or user guide;
In-depth knowledge of BSI 25999 or ISO 22301 BCMS requirements;
Thorough knowledge and understanding of current disaster recover planning techniques and technologies as well as the method used in performing risk analyses and business impact analyses;
Working knowledge of all areas of the organization and the ability to develop a clear understating of the organization’s key functional processes and resources;
Good project management skills. Ability to plan, organize, and direct the testing of emergency response, recovery, recovery support, and business resumption procedures;
All found technology proficiency electronic knowledge repository management, Internet and intranets, Microsoft applications (especially office, project); data processing voice communications and familiarity with basic HTML and assist in preparation of recovery procedure;
Strong human relations skills to interface with managers and staff at all levels within the organizations and to deal with vendors;
Excellent verbal and written communication skills.
Minimum Education Background
Post graduate degree e.g. Masters in Management Information System (MIS), Computer Science, Statistics, Business Management, or related field.
Certificate Business Continuity Planner (CBCP) or Associate Disaster Recovery Planner accreditation preferred;
Membership of the Disaster Recovery Institute;
Membership of Business Continuity Institute;
Know-how of ITIL & IT Service Continuity – Certificate will be an advantage;
Certificate Information Security Manager (CISM) / Certified Information Systems Security Professional (CISSP).
2.) Information Security Manager
Job Description
The Information Security Manager provides operational management associated with the protection of information technology assets and intrusion detection. The incumbent shall serve as the expert / advisor on these activities to business units at die organization. Develops and/or implement architectures, policies, procedures, anti standards for protecting company assets and operations from theft, unauthorized disclosure or use, damage, or los. Ensures compliance with security policies ant standards as well as ensures actions comply with legal and regulatory requirements.
This role a will serve as expert resource to the Director, information Security and other IT leaders for technical, legal, and regulatory area affecting information security and disaster recovery initiatives. The position will help design, plan, implement, and executes systems and programmes coupled with IT strategic plan IT Security and Compliance
Duties and Responsibilities:
Develop and implement a successful Information Security Programme;
Ensure timely and effective resolution of security and completive related requests;
Develop and maintain the relevant IT Security policies, standards and procedures
Identity and manage IT security concerns;
Ensure compliance with the organization’s IT Security existing law’s arid regulations,
Deploy measures, system and processes to increase the security posture;
Facilities, and promote activities to create information security awareness;
Assess and detect vulnerabilities and ensure security is designed into the IT Infrastructure;
Provide guidance and input into the technology selection process;
Provided input and guidance for security related initiatives such as Public Key Infrastructure (PKI), Identity Assess Management (IAM), encryption, Data Loss Prevention (DLP) etc;
Ensure good governance and adoption of industry best practices;
Prepare input/reporting for relevant reporting structures;
Manages the identification of potential internal and external threats and risks that jeopardize the availability of IT systems and help direct the implementation of mitigation strategies and controls with appropriate use of technology and process;
Helps establish architectures and policies and ensure implementation of that architecture to provide the organization with a resilient environment that addresses emerging threats and technologies;
Provides requirements on a wide range of IT topics which impact the organization including cyber security strategy, data center security strategy, integration of business partners, intrusion detection, anti-virus capabilities, etc.
Tracks emerging trends and threats to technology, software and business operations and uses this data to support the ongoing need;
Sponsors far-reaching and high profile process improvement and cost-saving measures;
Collaborate with business partners and the business continuity office to coordinate the development, documentation, communication, testing, enforcement and maintenance of Disaster Recovery plans to ensure the organization can respond to critical business function interruption within defined tune frame;
Analyzes/ reviews information on emerging cyber threats, and is actively engaged in industry forums on threats and opportunities;
Make improvement recommendations to managers at all levels to ensure compliance with laws, standards and policies while managing business ricks;
Is up to date with best practices;
Intelligent, articulate and persuasive leader;
Able to communicate security related concepts to a broad range of technical and non-technical people.
Minimum Requirements/Skills
Prospective Candidates must possess:
Minimum of seven ago (7) years post qualification cognate, experience (expected to be proven) in a technology environment with demonstrated progressive responsibilities;
At least five years experience in a management capacity relating to information security & policy required and is with at least three (3) years in enterprise information security implementation and management;
Extensive experience in enterprise security architecture design;
Extensive experience in enterprise security document creation;
Experience in designing and delivering employee security training;
Working technical knowledge of front end and back end environment;
In-depth knowledge at information security management and practice and understanding of privacy and security regulations, i.e. PCI, GLBA, HIPAA, SOX, ISO 27001 is required;
The ability to operate on a strategic level and be politically savvy with a good knowledge of the key aspects of business is required;
Demonstrated ability to successfully organize and lead large complex projects is required;
Proven ability to influence and lead an organization is required;
Proven ability to build a team of focused people in an organization is a must;
This position requires demonstrated excel1ence in written and communication, collaboration and team, building skills;
Must be able to plan for priorities and activities associated with identity access management and enterprise security;
General understanding of application programming and design database design, networking components, security components, computer operations and operating system maintenance is required;
Possess an intimate knowledge of past, current and future cryptographic standards and their applicability to the organizations products;
Ability to demonstrate prove experience within the IT Security industry;
Possession of skills in following areas - Firewalls, intrusion detection/prevention systems, VPNs, PKI, Secure ID etc, Active-Directory knowledge;
Strong human relations skills to interface with managers and staff at all levels within the organization and to deal with vendors.
Educational Background / Qualification
Post graduate degree in Management, information Systems, information Security information technology, Information systems Management, Computer Science/ Engineering, Electrical/ electronic Engineering or related field(s).
Information Security Certification such as Certified Information Security Manager (CISM) / Certified Information Systems Security Professionals (CISSP)/ Certified Information Security Auditor (CISA)/ ISO 27000, ITIL v2/v3 and Prince 2
3.) Data Services Manager
Job Description:
The successful candidate shall be responsible for the management of the database system including designing the blueprint for development, testing and deployment of data warehouse, data mart and reporting solutions and management of entire system The individual will work with various functional team to convert the organization business requirement into optimized database, management decision support systems, business intelligence and reporting system. The individual’s, responsibility would also include participation in strategy development involvement in project management activities, all phases of the systems development life cycle; resolution of issues with existing system; providing technical guidance to other team members as well as backend vendors contracting and management. The individual would have responsibility to provide logical database management and support as the leader of the NIMS database team, provide guidance and where necessary, hand on supports to the physical database, spanning all database platforms, including oversight over new and existing systems. The successful candidate shall also
Contribute to the overall system strategy focusing on the database component;
Identify and develop the strategy for data acquisition, management and archival;
Database infrastructure management, team leadership, design and consulting using in depth RDBMS knowledge, NIMC standards, and industry best practices while working with the project teams and/or vendors;
Design supportable, stable, high performance database systems;
Vendor/ project selection work for the database unit to determine the best vendor product to meet the business needs while upholding NIMC and industry standards;
Leads creative approaches to problem solving as well as the development of quality deliverables;
Support Enterprise Data Architecture initiatives;
Work closely with the on-site DBAs to provide subject matter expert support as needed and use database native tools to perform required tasks;
Develop and implement database security that meets or exceed NIMS security standards while meeting business and operational requirements;
Steer the data architecture design and review processes, including planning and monitoring efforts, reviewing deliverables and communication with stakeholders;
Develop and maintain functional expertise in the related disciplines including database architecture, integrated business intelligence, KPI definition, analytical tools, techniques, and other infrastructure requirements,
Advise management and keep them informed on issues related to IT generally and data management;
Ensure that service level targets are met and address, all service level complaints;
Partner with the functional business owners to coordinate and develop key management reports and tools to support operational and analytical requirement
Champoin corporate value and culture within the unit / department;
Provide technical recommendations for optimized data access and retention for the data warehouse;
Manage the data system development throughout its life cycle to maximize its value to the organization;
Assist in developing, implementing and maintaining appropriate and insightful dashboards / reports to measure effectiveness and provide insight to the organization;
Codify and publish formal analytic and reporting frameworks and methodologies;
Apply various quantitative methods to analyze and interpret information from multiple data sources;
Support ad hoc analysis and projects as needed;
Identify data sources / process flows and design / execute date processes including date validation, date cleansing, data manipulation and analysis.
Minimum Requirements/Skills
Prospective Candidates must possess:
Post graduate degree in IT or related field from a reputable University or related experience and /or training; or equivalent combination of education and experience;
Minimum often (10) Years in IT experience supporting production and development databases on Oracle. MSSQL, DB2 or Sybase experience;
Minimum of eight (8) years database infrastructure design experience;
Advanced Oracle and MSSQL implementation and administration
Advanced Database infrastructure design experience utilizing advanced Microsoft and Oracle database technologies;
Six (6) or more years of Analytic Reporting experience
Extensive experience in large Reporting and Business Intelligence projects;
Solid, quantifiable experience in SQL Server Reporting and Analytics Services
Data modeling both OLIP and OLAP;
Excellent written and oral communication skills;
Experience in Web based Architecture;
Previous joint Application Design (JAD) experience;
Familiarity with ITIL V3;
Good project management skills. Ability to plan, organize, and direct the testing of emergency response, recovery support, and business resumption procedures;
All around technology proficiency electronic knowledge repository management, Internet and intranets, Microsoft applications (especially Office, Protect); data processing, voice Communication etc and familiarity with basic HTML and assist in preparation of recovery procedure;
Strong human relations skills to interface with managers and staff at all levels within the organization and to deal with vendors.
Minimum Educational Background
Post graduate degree e.g. Master in MIS, Computer Science, Statistics or related field;
Oracle Certificate: Oracle Certification Professional (OCP); Oracle RAC Expert 10g and 11g Release 2;
ITIL Version 3 Qualifications;
Microsoft Qualification: MCDBA Certificate (MCSA SQL Server 2012 and MCSE Business Intelligence).
Method of Application
All interested and suitably qualified candidates should download the relevant Request for Proposal (RFP) Documents from the Commission’s website:www.nimc.gov.ng Duly completed and signed RFP Documents should saved with Applicant’s names in Microsoft Word or Adobe PDF file format and e-mailed to: ics@nimc.gov.ng for only the advertised position of interest. Please indicate job title as subject of the email.
Application Closing Date
11th September, 2012
No comments:
Post a Comment