Director - IT Governance Job at Etisalat Nigeria

[Jobrib]

Job Title: Director, IT Governance  

Job Location: Lagos, NIGERIA

Organisation: Etisalat Nigeria

Job Summary: Provide strategic leadership in Compliance Strategy and Execution to support governance processes deployment and improvement initiatives.

Principal Functions:

•   Develop strategy and processes related to all areas of Governance, Risk Management and Compliance.

•   Co-ordinate the efforts of several groups to ensure compliance with NCC, NOTAP, EFCC, NIMC as well as other federal and industry regulations and requirements.

•   Oversee the management of IT GRC and disaster recovery and business continuity activities.

•   Establish processes and tools necessary to effectively identify, document and appropriately escalate IT risks within Etisalat Nigeria's IT functions across the enterprise.

•   Oversee an effective business continuity and disaster recovery programme for Etisalat Nigeria's global enterprise, as well as remediation of known security threats across the enterprise.

•   Plan, co-ordinate, direct and design all operational activities of the IT Department as well as provide direction and support for IT solutions which enhance mission-critical business operations.

•   Work closely with decision-makers in other Departments to identify, recommend, develop, implement, and support cost-effective technology solutions for all aspects of the IT organization.

•   Establish a comprehensive Business Continuity and Disaster Recovery program that provides planning, documentation, communication, testing and incident response for Etisalat Nigeria's global enterprise

• Plan and ensure implementation of relevant internal processes using best practice standards which include Six Sigma, PAS56, COSO, ISO31000, OCTAVE, NIST, MOR, ISACA SOX, COBIT, Val IT, BS25999, ITIL, ISO27001, BS17799, MSF, PMBOK, Prince 2, ISACA CGEIT, eTOM, SOA, TOGAF, Zachmann, SFIA, ISO 20000 and MOF using both internal and managed external resources/suppliers.

• Co-ordinate the definition of, and adherence to, IT Strategy, Plans, Policies, Projects and Service Levels, and serve as the Customer Advocate within the IT organization

• Identify IT risks from across Etisalat Nigeria?s enterprise; co-ordinate and communicate with risk owners, document risks and work within an enterprise risk management framework to resolve, assign or accept known risks

• Establish IT governance processes, procedures and oversight mechanisms to ensure the efficient and effective operation of the global IT enterprise

• Co-ordinate and facilitate the business response to all non-financial assessments and audits of Etisalat Nigeria?s IT

• Provide strong central oversight to deliver consistency and quality in compliance work across the organization ? all IT functions and capabilities

• Communicate governance and compliance objectives to ensure an appropriate compliance and risk aware culture

• Support the evaluation of program resources and assist in the procurement of tools, internal resources and/or external resources, as applicable, to ensure proper execution of the compliance program

• Evaluate general and specific training needs and perform such to support the control environment and associated control framework

• Interact with various business groups to understand how they use IT systems in order to assess whether systems should be included within the scope of the various compliance areas (NCC, NOTAP, NICM, EFCC, etc.)

• Oversee the teams which perform IT Testing and General Computer Controls (GCC) testing and ensure quality of testing results and working paper documentation

• Identify gaps in the design and operating effectiveness of controls, and identify opportunities for more efficient and effective controls

• Lead the innovation and continuous improvement of internal control framework, including the integration of multiple compliance requirements

• Regularly interact with Senior Management to convey findings identified through walkthroughs and testing, assess the risk and impact of deficiencies, and make recommendations for remediation

• Develop, publish and maintain all IT policies for Etisalat Nigeria?s enterprise

• Establish and maintain metrics and dashboards of Security, IT GRC, BCP and DR performance and effectiveness for Etisalat Nigeria's enterprise

• Oversee vendor security management for Etisalat Nigeria according to prescribed standards

• Establish and maintain effective and efficient processes and tools to respond to RFP?s and customer due diligence inquiries around Etisalat Nigeria's security capabilities and practices

• Oversee Etisalat Nigeria?s data privacy activities for employees and end users in support of company policies and relevant regulatory requirements across Etisalat Nigeria's global footprint.

Educational Requirements:

•   First degree in Electrical/ Electronic Engineering or any other relevant discipline

•   Post-graduate/ professional qualifications/ certifications in a related field will be an added advantage

•   Certifications in Core IT and mobile technologies will provide a distinct advantage

•   Other solutions life cycle certifications in IT or telecoms best practices ? such as Microsoft Solutions Framework (MSF), Microsoft Operations Framework (MOF), Rational Unified Process (RUP), IT Infrastructure Library (ITIL),  Project Management, ISO 20000, SIX SIGMA, COBIT or ETOM, IT Governance, IT Audit, IT Architecture and the CMM – are optional and of advantage.

Experience, Skills & Competencies:

•   At least 15 years directly relevant post-NYSC work experience including:

•   5-7 years experience in business continuity or related fields

•   5 years in a management or senior technical support position

•   5 years relevant experience in a telecoms operator or supplier organization preferably in GSM and 3G networks implementing and supporting subscriber products and services with best practice processes and standards

•   7 years hands-on experience leading to an extensive and accurate knowledge of IT, GSM and 3G network architectures

•   At least 10 years experience in user support, application support or service desk management

•   At least 5 years experience within a NMC/ NOC-based management system implementing At least 5 years experience within a NMC/NOC based management system, implementing FCAPS with best practice fault identification, root cause analysis, incident management, escalation and problem management, and other system-based Service Management components, such as Asset and Configuration Management

Ideal candidate must be able to demonstrate:

•   Prior experience with integration of IT Management Systems and Network OSS/ BSS Management Systems in a Unified NOC or Service Desk environment

•   Proficient use of MS Office

•   Ability to identify and resolve exact root causes of project execution exceptions within IT projects and processes

•   Highly developed effective understanding of the systems development life cycle and the fine balance required between competing demands of project execution and controls and standards

•   Strong understanding of security, BCP, DR, risk management principles and implementation practices, IT governance and IT compliance

•   General knowledge of COBIT, Sarbanes Oxley, ITIL or other control frameworks

•   Senior management experience overseeing the governance, risk and compliance of IT operations which are global in scope

•   Senior level experience in driving remediation efforts of IT shortcomings

•   Ability to work collaboratively in problem-solving

•   Ability to operate successfully in a dynamic, complex and fast-moving environment

•   Experience with implementing controls and monitoring of compliance with international data privacy regulations

•   Strong written and verbal communications skills which span all levels of the enterprise hierarchy ? but more particularly with senior executive management

•   Good understanding of the processes by which Audit assesses IT in general and Security in particular

•   Strong experience in supporting audit activities of heavily regulated businesses, both domestic and international

•   Good sense of propriety in orchestrating IT compliance activities

•   Highest ethical standards

•   Readiness to travel and flexibility to handle non-standard work shifts

•   Proven experience in IT infrastructure strategic planning and development, project management and policy development

•   Good understanding and technical knowledge of current network and PC operating systems, hardware, protocols and standards

•   Good experience with systems design and development from business requirements analysis through to day-to-day management

Apply to this job

[Jobrib]