The Infrastructure and Development Bank of Zimbabwe (“the IDBZ/the Bank”) is a national Development Finance Institution (DFI) that supports infrastructure and development across all sectors of the economy. Its infrastructure focus is on Water and Sanitation, Housing, Irrigation Infrastructure, Transport and Energy. As part of its developmental mandate, the Bank offers financial & technical assistance to undertakings of all enterprises in furtherance of the National Development Agenda. As such, the Bank promotes the infrastructure value chain, agri-businesses, tourism, health & education, mining, export-oriented businesses, metals production, and the manufacturing sector. The Bank's purpose is to uplift the livelihoods of all Zimbabweans through development financing.
In order to effectively execute its mandate, the Bank seeks to recruit the following personnel: Principal Security IT Officer
This position reports to the Chief Executive Officer
JOB PURPOSE AND RESPONSIBILITIES
The job exists to proactively identify cyber threats, protect the Bank's information assets, and ensuring that Incidence Recovery Plans (“IRPs”) are in place. The incumbent will be expected to keep the organisation abreast with IT security trends and provide security awareness training to Staff. Good analytical skills and in-depth knowledge of cybersecurity practices and frameworks are a must.
The job includes the following specific responsibilities:
- Developing and implementing comprehensive security policies and procedures based on industry best practices.
- Ensuring that the security policies comply with relevant regulations, laws and international standards.
- Identifying potential risks and vulnerabilities within the Bank's ICT network.
- Protecting the Bank’s ICT infrastructure from cyber-attacks including data protection and privacy.
- Developing and maintaining a comprehensive Computer Incident Response Plan (CIRP).
- Remediating incidents in the event of a cyber attack.
- Recommending technology, policy, governance, and training to Management.
- Monitoring security technologies and responding to alerts.
- Correlating activities across different systems by routinely reviewing logs.
- Coordinating and performing vulnerability assessments and penetration tests on the Bank’s ICT infrastructure.
- Ensuring that all ICT infrastructure is hardened in line with the Bank's ICT Policy.
- Performing cybersecurity awareness training and continuously promoting a culture of cybersecurity awareness within the organisation.
QUALIFICATIONS, EXPERIENCE AND SKILLS
Interested applicants should possess the following:
- A degree in Cybersecurity, Computer Science, Information Systems, or any other relevant field
- Professional information security certification such as CEH, CISSP, CISA, or CISM
- Previous experience in an information security role
- 5 years relevant experience
- Knowledgeable of information security frameworks
- Excellent problem-solving and analytical skills
- Effective listening, verbal, and written communication skills
Interested applicants should submit their applications together with a detailed Curriculum Vitae by no later than Friday, 30 May 2025 Disabled persons and female candidates are strongly encouraged to apply.
To be considered, interested candidates are requested to forward their applications via email to hr@idbz.co.zw. All applications should be addressed to:
Director - Corporate Services and Human Resources
IDBZ House
99 Gamal Abdel Nasser Road
Harare