Midlands State University (MSU)
DUE: 24 MAY 2024
Applications are invited from suitably qualified and experienced persons for the following post:
RISK AND LOSS CONTROL DEPARTMENT
POST: IT RISK MANAGER
QUALIFICATIONS AND EXPERIENCE
· A university degree or post graduate qualification in Data analytics / Computer Science / Information Systems / Information Technology / Information Security and Assurance / Information Systems.
· IT Governance Certification such as CRISC/CISA/CGEIT and COBIT is a must.
· Master degree in Information Technology is an added advantage.
· Three years relevant working experience in an IT Risk and governance environment
· Professional knowledge and practical experience of Zimbabwean data protection laws and regulations. The potential applicant should also be aware of the evolving nature of the Data Privacy and Protection regulations, both locally and internationally.
COMPETENCIES:
· Computer proficiency.
· Honest, reliable and good communication skills.
DUTIES AND RESPONSIBILITIES:
Reporting to the Director Risk and Loss Control, the incumbent will be responsible for:
· Develop and implement an IT monitoring framework consisting of policies, procedures, processes, guidance and metrics to ensure compliance with data protection law and regulation using a risk-based approach that aligns with relevant quality standards;
· Develop and implement data protection policies, procedures, and guidelines in alignment with the university’s overall IT risk management framework.
· Provide expert, accurate advice and guidance to senior management, staff, students, suppliers and other relevant stakeholders to ensure IT compliance with privacy regulations and build a reputation for sector-leading information management practice;
· Oversee the effective handling and processing of IT complaints, queries and information requests from Data Subjects;
· Carry out Privacy Impact Assessments where appropriate on IT systems processing personal data and ensure that all new IT systems implement privacy by design and default;
· Act as first point of contact for the assessment, resolution and reporting of any data breaches;
· Work with relevant Management and Information Governance Groups (or equivalent) and IT Services to ensure that data protection compliance is embedded into all new systems, policies and procedures;
· Maintain accurate, comprehensive and authoritative records of all data processing activities undertaken by, or on behalf of the university;
NB: Midlands State University is an equal opportunities employer. In the interest of promoting gender parity, female candidates are encouraged to apply.
TO APPLY
Applicants must submit copies of applications with the following: application letter, certified certificates and curriculum vitae giving full details of names, place and date of birth, experience, present salary, date of availability, contact telephone number (s) and names and email addresses of three referees to:
The Deputy Registrar (Human Resource)
Midlands State University
Application documents must be in a single scan pdf format.
The closing date for this advert is 24 May 2024.
Applicants should clearly state the post being applied for in the subject line.
Please note that only shortlisted candidates will be communicated to.
