M-Pesa security analyst Vodacom Tanzania Tanzania
Job Type: Full-Time
Closing Date: 30th October 2023
Location: Dar es Salaam, Tanzania
Apply

Role purpose:

  • Responsible for coordinating, advising and managing all operations related to M-Pesa risks, Audit & Reviews (Internal and External)

  • Execution of the company and Group strategy and deliverables, specifically related to Technology security, within M-Pesa systems

  • Overall compliance & governance management of the M-Pesa environment

  • To be the central point of contact for M-Pesa and related third-party systems security

Key accountabilities and decision ownership:  M-Pesa security

  • Continuously monitor Mpesa and related third-party systems for security incidents that may happen and perform investigation

  • Monitor implementation of information security and related policies, to ensure compliance of the Mpesa and related third-party systems, with the security policies

  • Ensure proper implementation and change management process compliance for all planned and emergency changes in Mpesa and related third-party systems

  • Analyze the feasibility and applicability of new security controls that may need to be applied in the Mpesa and third-party systems, and advise Management on the effective way of implementation

  • Ensure all M-Pesa and third-party systems’ products, services and projects are compliant to the Vodacom minimum security requirements

  • Perform information security awareness and training to all users of the Mpesa and third-party systems, and monitor effectiveness of the awareness and trainings

  • Coordinate all internal and external audits around M-Pesa and third-party systems and processes, ensure Mpesa and third–party systems are free from known Technology audit findings and ensure all audit findings in M-Pesa and third-party systems are closed within agreed timelines

  • Perform and manage the vulnerability scanning and penetration tests and resolution of vulnerabilities in Mpesa and third-party systems, per the Vodacom Vulnerability management process

  • Ensure proper validation, timely completion and accuracy of audit checklists and user access rights review for M-Pesa and third-party systems

  • Perform any other task that may be assigned to him/her from Technology Security management

 

Core competencies, knowledge and experience

Qualifications& Experience

  • Bachelor of Science Degree in Telecommunications, Information technology or Computer Science

  • Security certifications (CISA, CISM, CGIA, CISSP or equivalent)

  • Minimum of three years’ experience in Technology Systems security, with at least two years’ experience obtained in financial systems security, privacy and compliance areas.

  • Advanced knowledge of mobile telecommunications network architectures, IT systems, networks and applications.

Skills

  • Good communication skills
  • Excellent interpersonal skills;
  • High level negotiation skills;
  • Extensive computer user knowledge and skills essential; in Word, Power point and Excel
  • Strong analytical skills;
  • Excellent planning and organizing skills.
  • Good business acumen
  • Project Management skills
  • Conflict resolution skills
  • Ability to work independently and under pressure.

Personal Attributes

  • Strategic orientation balanced with operational imperatives
  • Ability to deal with issues of a complex nature
  • Ability to work under constant and changing pressure.