Thursday, 23 February 2023

IT Security Risk Manager - Supply Chain(3rd parties)

 The hiring manager is based in the US.

The candidate needs to be flexible in working hours as the role involves communication with people in the US, JP, DK & NL.

Position Summary

Collaboration with third parties is of strategic value for our client. This collaboration includes the exchange of confidential information and personal data, and the outsourcing of IT services. Trust and assurance are critical factors in the relationship between IT&D and its partners and suppliers that require the assessment of their capabilities with respect to security, compliance, quality, and risk management. The Supply Chain Risk Manager is responsible for organizing and driving the activities around supply chain security and audits. This role requires a mix of business and technical acumen to influence and communicate with stakeholders across the enterprise. Creating awareness and educating stakeholders of supply chain security and act as an important link in the establishment of trusted relationships between IT&D and its partners and suppliers to ensure that our client remains in control of critical data in the context of an increasing security threat landscape.

Primary Responsibilities

Supply Chain Security

  • Create a Supply Chain Security SOP and standards documentation as required to safeguard the requirements in a security policy documents.
  • Continuously assess supply chain security risks based on an inventory of vendor landscape and supply chain security and compliance risks for IT&D.
  • Develop supply chain security metrics and requirements.
  • Examine and select tools and techniques to continuously monitor and report about supplier security risks.
  • Support the management of information security risks throughout the duration of a supplier relationship, corresponding communication, and metrics reporting.
  • Update, align and deploy current vendor and supply chain security requirements in alignment with Procurement, Corporate Compliance, Legal, Privacy, QA and IT&D.

Audit

  • Develop and maintain strong working relationships with leaders in the IT&D, Legal and Quality Assurance departments and stay ahead of new developments in security and data protection regulations.
  • Develop and manage the framework and timeline for performing regular audits and the assessment of assurance reports.
  • Based on the current vendor landscape, define audit priorities and activities for short (one year) and long (three years) term period.
  • Execute audit calendar and integrate results into an integrated dashboard.
  • Evaluate the security assurance statements of critical suppliers.

Job Requirements

Education

  • Bachelor's Degree in Computer Science, MIS, or related field of study; or any equivalent combination of relevant work experience and training

Experience

  • Minimum 5 years of experience in supply chain information security & risk management.
  • Experience in a Pharma/Biotech/Healthcare company is preferred but not a must.
  • Certified CISA, CRISC, CISM, CISSP or relevant experience.
  • Experience working with security and risk management frameworks and regulations (ISO, NIST, GDPR, SOX, HIPAA etc.).
  • Experience working with GRC tools (ServiceNow, Galvanize, Archer, WolfPAC etc.)
  • Experience in defining and implementing security management processes and controls.
  • Experience in setting up a supply chain security improvement roadmap and driving the implementation of corresponding actions and processes.
  • Experience in working in multinational organizations and global virtual teams.
  • Good understanding of current and emerging cyber security and privacy regulations and practices, and how other enterprises are employing them.

Knowledge/Skills

  • Excellent understanding of vendor management processes and related assurance frameworks (SOC 1 and 2 and type I/II audits and auditor reports).
  • Good knowledge of Regulatory Compliance Frameworks applicable for a multinational Pharma/Biotech company (eg, FISMA, GDPR, NIST, GxP).
  • Strong business acumen, including domain-specific knowledge of Pharma/Biotech.
  • Enable proactive identification/resolution of risks by collaborating across multiple teams.
  • Fosters strong relationships with IT colleagues and business leaders to enable risk mitigation through effective communication of supply chain risk status to key stakeholders.
  • Leads and contributes to outcomes for: Risk assessments, Security improvements and Audit remediations.
  • Supports alignment of security operations to policies, standards, and procedures.
  • Contributes, maintains, and reports on Key Performance and Risk Indicators (KRI/KPI).
  • Excellent communication skills to connect effectively with different stakeholders and to deal with the different interests in the organization.
  • Keen sense of self, ethics, and effort, as well as the willingness to go the extra mile to achieve important goals.
  • Good understanding of current and emerging cyber security regulations and practices, and how other enterprises are employing them.
  • Experience tracking, measuring, and communicating the quality of risk management processes and controls applicable to the IT department.
  • Strong soft and interpersonal skills, including teamwork, facilitation, and negotiation.
  • Excellent analytical and technical skills.
  • Excellent written, verbal, communication, and presentation skills.
  • Excellent planning and organizational skills and attention to detail.

Timeline

Hiring period of 12 months for 40hrs over 5 days/week.


APPLY HERECLICK

at No comments:

IT Security Architecture and Engineering

 HYBRID REMOTE SCHEDULE (3 DAYS ONSITE/2 DAYS REMOTE) UPON START

The IT Security Architect and Engineering candidate would be responsible for developing and implementing IT Security architecture and solutions using industry standard security frameworks and roadmaps for all agencies. It also includes securing enterprise information by determining security requirements, planning, implementing, and testing security systems with a team player environment. The candidate will have knowledge of and experience in developing and documenting security architecture and plans, including strategic, tactical and project plans. Knowledge of common information security management frameworks. Excellent technical knowledge of mainstream operating systems and a wide range of security technologies, such as network security appliances, identity and access management systems, anti-malware solutions, automated policy compliance tools and desktop security tools. Ability to develop, document and maintain security policies, processes, procedures, and standards. Knowledge of network infrastructure, including routers, switches, firewalls and the associated network protocols and concepts. Strong analytical skills are required to analyze security requirements and relate such requirements to the appropriate security controls. The ideal candidate will work with the business and technical teams to assess vulnerabilities and risks, then design solutions to remediate their findings following IT Security processes.

Essential Job Responsibilities

  • To evaluate and develop requirements for local area networks, wide area networks, virtual private networks, routers, firewalls, and related security and network devices.
  • Review and assess network traffic for vulnerabilities and/or gaps.
  • Document existing security architecture of the application & infrastructure environment across the organization.
  • To provide insight and function as a subject matter expert for systems hardening.
  • Prepare system security reports by collecting, analyzing, and summarizing data and trends.
  • Ability to prioritize projects and deliverables based on urgency, risk, and impact.
  • Conduct design and engineering processes to ensure that security architecture solutions maintain the confidentiality, integrity, and availability of information assets.
  • Participate in the risk assessments of new and existing technology solutions to identify opportunities for improvement, and engineering solutions to mitigate associated risks adequately.
  • Define the appropriate architecture, technical requirements, and standards necessary to address information security needs for the organization.
  • Diagram process flows and create initial security configurations based on real traffic and business efficiency needs balanced against security risk demands.
  • Ensure security architecture reviews are conducted for new technology to ensure best practices, document security solutions, and enable common solutions across the enterprise
  • Implement security systems by specifying intrusion detection methodologies and equipment; directing equipment and software installation and calibration; preparing preventive and reactive measures; creating, transmitting, and maintaining keys; providing technical support; completing documentation.
  • Maintain an awareness of existing and proposed security-standard-setting groups, state and federal legislation, and regulations pertaining to information security
  • Work with IT leadership to develop strategies and plans to enforce security requirements and address identified risks

Requirements

Required Qualifications

  • Bachelor’s degree in Computer Science, Information Technology, or equivalent job-related experience
  • Solid understanding of security protocols, cryptography, authentication, authorization, and security within IT and OT environments
  • Knowledge of network infrastructure, including routers, switches, firewalls and the associated network protocols and concepts
  • Ability to interact with a broad cross-section of personnel to explain and enforce security measures
  • 5 or more years hardening Windows OS, Network systems, and/or VMware Infrastructure
  • 8 or more years of experience in the following areas:
  • System and Network design and hardening
  • Industry standard firewalls and switches
  • Routing, network TAPs and switching including the ability to distinguish L2 vs L3

Preferred Qualifications

  • CISSP or other cybersecurity certification preferred
  • Operational Technology experience preferred

Benefits

Lynx offers a comprehensive benefits package to include:

  • Health and welfare benefits
  • Life Insurance
  • Retirement benefits
  • Paid Holidays
  • Remote working options

 

LYNX is an Equal-Opportunity Employer, who does not make hiring and/or promotional decisions based on race, color, national origin, religion, sex, pregnancy, marital status, sexual orientation, gender identity, age, physical or mental disability, or covered veteran status.


APPLY HERE CLICK

at No comments:

USA JOB VACANCY: Senior IT Infrastructure Auditor

Our client a full service community oriented commercial bank based in New York is looking for a Senior Infrastructure IT Auditor.

In the role you will collaborate with the Internal Audit team in the reporting, planning and delivering of Infrastructure IT audits and Data Analytics implementation for the Audit Department.

 

Responsibilities:

  • Execute, design and perform control tests for general IT control reviews, application operating system reviews, detailed information security reviews either in an independent or team based environment.
  • Look up activities in transition with applicable regulatory, IT standards, Internal Audit, create concise and clear audit work papers
  • Plan and deliver IT audits of the Banks IT infrastructure, include cyber security/ information and data center facilities and tech operations, also vendor management
  • Visual tools and data extraction to support IT and Business specific audits for audit objectives, Risk Assessment and Risk Monitoring activities.
  • Document and define control weakness, planning manuals and draft audit reports, Correction with management to discuss suggestions
  • Provide support and implement for data analytics solutions used by Audit department, including data completed and effectiveness, as well as data acquired.

 

Qualifications:

  • Bachelors degree in Computer Science, Statistics, Data Science, Accounting, Finance required
  • At least 3 years of IT infrastructure experience preferred
  • Financial services or Banking preferred
  • Strong knowledge of technology risk and controls including information/cyber security, technology operations, and relevant regulations.
  • Strong analytical skills and hands-on experience in retrieving and analyzing data through automated data extraction and visualization tools a plus (SQL, Tableau, ACL, Idea, Advanced Excel).
  • Must have specific knowledge of most IT infrastructure platforms (Unix, Linux, Databases, etc.)
  • Excellent hands on experience and communicative, analytical skills
  • Tech experience, CISSP, CISA, CIA, CPA a bonus

APPLY HERE CLICK
at No comments:

Fully Funded Scholarships and Grants 2023 - 2024

 Below is a list of scholarships and grants offered annually. You will need to subscribe to our newsletter to receive a list of scholarships not necessarily given annually.

These will be sent as soon as they are announced by the relevant institutions, usually once a week.

The list below also includes organizations that grant scholarships.

Be sure to familiarize yourself with eligibility conditions, what the scholarship covers, and application deadline.

Obtaining a scholarship or grant funding requires a good understanding of the application process and skill in making the application.

It also takes dedication, perseverance and patience.

Most grants and scholarships require you to submit your application several months in advance of actual disbursement.

You must follow every little rule to the letter.

Please bear in mind that you must have the necessary qualifications as stipulated by the scholarship/grant providers.

Funds are sparse for undergraduate students (but not nonexistent).

Scholarships and funds become increasingly available as one goes up the scale to graduate student, post-graduate etc.

Main Scholarship and Grants Categories

  • Emergency Student Funds
  • Engineering Scholarships
  • Erasmus Mundus Scholarships
  • Fellowship Programs
  • Government Scholarship Grants
  • How to Get a Scholarship
  • LLM Scholarships
  • Make Advance Africa Better!
  • Master Scholarships
  • MBA Scholarships
  • NGO & Organisation Grants - Funding for NGOs in Developing Countries
  • Opportunities for Entrepreneurs Worldwide
  • Opportunities for Journalists Worldwide
  • PhD Scholarships
  • PhD & Masters by Research Scholarships
  • Public Health Scholarships
  • Research Grants

  • Scholarships & Grants FAQ
  • Scholarships for Africa
  • Scholarships for African Students
  • Scholarships for International Students in USA
  • Scholarships for Muslims
  • Scholarships for Primary and High School students
    • at No comments:

    Jobs in Kenya February 2023

     Daily Kenya Jobs Today - Thursday - 23rd February, 2023 - Kenyan Jobs - Top Jobs Kenya - Current Jobs Kenya 2023 - Latest Job Vacancies in Kenya 2023 February Jobs 2023 in Kenya

    Daily Jobs in Kenya - Thursday - 23rd February 2023

  • Etihad Cabin Crew Jobs for Kenyans - Applications Ongoing (Airhostess / Flight Attendant Jobs - KCSE D and Above)
  • AFRIKA KOMMT! 2023 - 2025 Now Open! - Fully Funded One-Year Stay, Internship and Work in Germany for Kenyan Students and Young Professionals - Apply by 26th March 2023
  • ICIPE Research Officer Human Health Theme Jobs in Kenya - Apply by 3rd March 2023
  • Bible Translation and Literacy Chuka Bible Translator Jobs in Kenya - Apply by 26th February 2023
  • Bible Translation and Literacy Rendille Bible Translator Jobs in Kenya - Apply by 26th February 2023
    • at No comments:

    Jobs in Canada for Foreigners 2023

     

    Unskilled Jobs in Canada for Foreigners 2023

    Unskilled Jobs in Canada for Foreigners 2023. Jobs in Canada for Foreigners With Visa Sponsorship 2023.


    New Brunswick - Food Production and Processing / Fish and Seafood Labourers / Machine and Process Operators - Fall 2023


    Immigration Program Officers will be giving information sessions on New Brunswick's Provincial Immigration Programs - Canada.

    These programs are ONLY for individuals intending to reside in New Brunswick Canada.

    We are interested in learning more about you, and we invite you to submit a profile.

    New Brunswick employers are hiring!

    Registration is open for those with recent (within the past five - 5 - years) experience in the hospitality sector for the following positions:


  • 7445 – Other repairers and servicers - Net Cleaning Technician
  • 8441 – Fishing vessel deckhands
  • 8613 – Aquaculture and marine harvest labourers
  • 9461 – Process control and machine operators, food and beverage processing
  • 9463 – Fish and seafood plant workers
  • 9617 – Labourers in food and beverage processing
  • 9618 – Labourers in fish and seafood processing

    Information regarding a virtual information session will be determined at a later date.

    BEFORE YOU BEGIN THE REGISTRATION PROCESS, PLEASE READ THE FOLLOWING CAREFULLY:

  • There are four (4) pages in the registration form.
  • Once you complete a page and click NEXT, you cannot go back and change any information previously entered.
  • Before you click NEXT at the bottom of any page, be sure to review the page to ensure that all information entered is correct and all requested documents have been uploaded.

    Before you begin, you will need to have .jpg or .pdf copies of the following documents organized and ready for upload:

  • The photo page of your current passport (required)
  • Visa for your current country of legal residence (required if your current country of legal residence is not your country of citizenship)
  • Your language test results (required if you 
    have completed a language test)
  • Your ECA report (required if you have completed an ECA assessment)
  • Your CV (optional)
  • Your Spouse's CV (optional) (if applicable)

    Once you’ve registered, you will receive an email confirming we have received your information.

    Only individuals selected will receive an invitation to participate.

    By registering for this event, understand that there is NO GUARANTEE or IMPLIED EXPECTATION that you will receive an invitation.
  • For more information, jobs application details and registration; see - Jobs in Canada for Foreigners With Visa Sponsorship 2023 - Application Form
    • at No comments:

    STAMIGOLD Company Limited: JOB VACANCY>>>CCTV Operator Position

     CCTV Operator at STAMIGOLD Company Limited

    CCTV Operator at STAMIGOLD Company Limited

    CCTV Operator at STAMIGOLD Company Limited 

    Location: Kagera, Tanzania

    Job Description

    STAMIGOLD Company Limited – Biharamulo Mine is a subsidiary company of the State Mining Corporation(STAMICO) operating a gold mine. The Mine is located in the Biharamulo Forest Reserve, South West of Mwanza in Kagera Region. In order to run the mine effectively and efficiently, the Company invites applications from qualified Tanzanians to fill the following existing vacancies: –

    Post Title: CCTV Operator (01) Post

    More descriptions and details about all posts are available on stamigold.co.tz;

    MODE OF APPLICATION

    • All interested Tanzanian are invited to send their applications with detailed current curriculum vitae(CV), and academic qualifications;
    • More descriptions and details about all posts are available on stamigold.co.tz;
    • All applications shall be addressed to the Mine General Manager, PO. Box 103, Biharamulo.
    • The positions will attract a competitive salary package, which will include excellent benefits.

    All applications should be sent through hr.biharamulo@stamigold.co.tz

    Stamigold offers equal employment opportunities to qualified men and women;

    Only shortlisted applicants will be contacted.

    The deadline for submitting the application is 8 March 2023.

    at No comments:

    UN JOBS AT ARUSHA: Associate Procurement and Administration Officer

     


    VACANCY ANNOUNCEMENT

    Title: Associate Procurement and Administration Officer

    Department: Procurement

    Location: Arusha

    Reports To: Senior Finance and Administration Manager

    Classification: Full-time

    How will you fight for an AIDS-free generation?

    Associate Procurement &Administration Officer is responsible for acquisition, coordination, facilitation of goods, services, logistics and assist in the administration of the front office, reporting, invoice management and purchase requests processing under supervision and guidance from the Procurement Manager.

    No two days are alike at EGPAF, but what can you expect in this role?

    1.1 Procurement

    •  Coordinate Procurement of office goods and services for the Arusha, Kilimanjaro and Manyara sub offices.
    •  To process purchase requests in accordance to the Foundations procurement policy under the guidance of the Procurement Manager.
    • To ensure coordination of invoices management process to Finance department by updating the invoice tracker, maintain and update its dispatch book and maintain the Procurement copies in files sequentially.
    •  Ensure that all procurement is done using the agreed terms & conditions and is done in transparency way with high integrity.
    •  Ensuring that accurate and detailed specifications are submitted in writing prior to initiation of purchasing and coordinates the efficient pickup and delivery of purchases
    •  Maximize the best value for money for Foundation procurement activities and in line with the policies and procedures
    •  Establishing and developing professional working relationships with service providers and vendors based on transparency and honesty, evaluation and monitoring of vendor performance.
    •  Preparing weekly and monthly procurement reports for management review.

      • 1.2 Reception

      •  Ensure that all visitors are correctly referred and attended to and that at all times there is someone at the reception.
      •  Answer/redirect telephone calls, taking messages, receive/assist visitors
      •  Maintain reception information/literature and general mail service.
      •  Keep the reception area tidy and welcoming during office hours
      •  Maintain the notice board at the reception and update the information on notice board as needed

      1.3 Mail & invoice Administration

      •  Liaise with the Driver in charge of the mailing function and assist in the administration of the weekly courier. Receive and distribute mail accordingly.
      •  Ensure all utility bills are received on time and payment processed on time;
      •  Assist various departments to send out parcels and documents and follow up on receiving the same from different couriers recommended by the office.

      1.4 Secretarial Duties

      •  Prepare daily staff attendance record and send to Dar Office and Admin Manager on monthly basis.
      •  Update staff extension list and distribute to staff on monthly basis
      •  Carry out other secretarial duties as assigned by the Senior Finance and Admin. Manager.

      1.5 Office Equipment

      •  Assists to oversee the use and maintenance of the office equipment including the photocopier, fax, binding machine to ensure that they are in working order and arrange with Dar Office and Administrative Manager for their repair and maintenance.

      1.5 Stores and cleanliness of the building

      •  Maintain EGPAF stores and ensure that all materials in the stores are well sorted out and arranged at all times.
      •  Conduct store inventory and prepare monthly stationery order.
      •  Ensuring that the building is clean and organized at all times.
      •  Liaise with various key staff to ensure that the materials brought to the store are distributed accordingly.

      1.6 Other duties

      •  Provide administrative support to other departments in the operations as requested
      •  Have in depth capacity to interpret policies, procedures rules and regulations and assist staff with their comprehension of these
      •  Review and ensure compliance with all local legal requirements including registration, taxes and local labour laws.
      •  Identify potential areas of compliance exposure/vulnerability and assist in the development of corrective action plans for the resolution of problematic issues.

      To be successful, you will have:

      •  Bachelor’s Degree or Advanced Diploma in Procurement and Supply Management or related Field
      •  Registration with Procurement and Supplies Professionals and Technicians Board (PSPTB) at minimum graduate level
      •  3+ years of experience as a procurement and admin officer or in a similar position
      •  Report and Records Management Skills
      •  Integrity
      •  Strong communication and negotiation skills
      •  Ability to multitask, prioritize, and manage time efficiently
      •  Accurate attention to detail
      •  Goal-oriented, organized team player
      •  Strong Computer Skills

      Bonus points if you have:

      •  Friendly disposition
      •  Fluent reading, writing, and speaking in both Kiswahili and English
      •  Previous experience in working with international NGOs is an added advantage

      Elizabeth Glaser Pediatric AIDS Foundation (EGPAF) is on a mission to create a world where no mother, child, or family is devastated by HIV and AIDS, and we are making an impact. We are a proven leader in the global fight to end HIV and AIDS, and an advocate for every child to live a full and healthy life into adulthood. For more than 30 years, EGPAF has been a leader in meeting urgent needs in pediatric HIV and AIDS in the world’s most affected regions. We carry out our values of passion, innovation, teamwork, leadership, integrity, excellence and equity every day, while maximizing our impact in the communities we serve . Join us on our fight for an AIDS-free generation!

      The Elizabeth Glaser Pediatric AIDS Foundation (EGPAF) began supporting HIV and AIDS programming in Tanzania in 2003 and established a country office in 2004. Ever since, in close collaboration and partnership with the Ministry of Health Community Development, Gender, Elderly and Children and Presidents Office Regional Administration and Local Government, EGPAF expanded scope to supporting quality comprehensive and integrated HIV, GBV, TB and Family planning services in the supported regions. Recently, EGPAF in collaboration with consortium partners Amref Health Tanzania, Engender Health, D-tree International and Matchboxology won the U.S. Agency for International Development

      (USAID)/Tanzania Afya Yangu Northern is designed around client – centred approaches to address gaps in HIV, TB and Family Planning (FP) service delivery, while continuously building and transferring the capacity of local stakeholders for sustainable and country- led ownership. USAID Afya Yangu Northern will focus on intensely on direct service delivery across all regions in early project years, ensuring that gaps to epidemic control are identified, and tailored solutions are designed to meet the needs of vulnerable populations

      As a global, multinational and multicultural organization, EGPAF believes that diversity in the workplace enriches our work and enhances our impact and effectiveness. We believe that employees have the right to work in a climate of mutual respect and integrity that promotes dignity and respect for all, and that enables them to reach their full potential. The Foundation is committed to advancing diversity, equity, inclusion, and belonging (DEI&B).

      EGPAF is an equal opportunity employer and affords equal opportunity to all employees and applicants for employment regardless of race/ethnicity, color, religion, sex, national origin, age, disability or genetics. In addition to country law requirements, EGPAF complies with US laws governing nondiscrimination in employment in every location in which the Foundation has facilities.

      The Foundation does not charge any fees at any stage of the recruitment process. If you are asked to pay a fee at any stage of recruitment, please contact fraud@pedaids.org

      HOW TO APPLY

      EGPAF is an equal opportunities employer and the position is open to all. Qualified candidates should submit a CV, cover letter and relevant certificates explaining how the experience detailed in the CV will contribute to the requirements of the position and references to EGPAF.

      Submissions to be sent to the below Link: Link to job posting: https://phe.tbe.taleo.net/phe02/ats/careers/v2/viewRequisition?org=PEDAIDS&cws=41&rid=2950

      Or via

      www.pedaids.org/careers

      Closing Date: February 28th 2023

      Only shortlisted candidates will be contacted.

     


    at No comments:

    JOBS AT MKOMBOZI COMMERCIAL BANK >>>>>>>>>>>APPLY NOW

     Job Vacancies at Mkombozi Commercial Bank PLC (MKCB)- Tanzania

     Mkombozi Commercial Bank PLC (MKCB) started as an initiative of the Tanzania Episcopal Conference in 2009 to establish a Commercial Bank with the main objective of serving and supporting the emerging Tanzanian businesses for provision of financial services. MKCB target markets are small and medium sized entrepreneurs, companies, SACCOS, intitutions such as schools, universities, hospitals and corporations. MKCB serves the need of growing companies, middle-market and large corporations, institutional investors, financial institutions and Government entities.   MCKB has 11 branches and more than 200 agents across Tanzania, currently our branches we are available in 8 Regions; Dar es Salaam, Mwanza, Moshi, Bukoba, Morogoro, Dodoma, Iringa and Njombe. 

       
     Vacancy – Branch manager & Relationship Manager How to Apply:

    Click the link below to Apply 

    Qualified candidates MUST send their CV & Cover letter attached with all academic certificates through; Email: recruitment@mkombozibank.co.tz    
    Deadline for application is 23rd February 2023.
    at No comments: