Information Systems Security Manager (Cybersecurity / Compliance / Risk Governance)

Responsibilities:

• Develop and implement the Group-wide information systems security (ISS) strategy.
• Define and enforce security policies in alignment with regulatory standards and business objectives.
• Oversee the implementation of an ISS master plan across all group entities.
• Conduct cyber risk analyses and implement risk treatment and mitigation plans.
• Contribute to IT risk mapping in collaboration with the Group Risk Department.
• Monitor and report security indicators (KRI/KPI) and compliance levels.
• Ensure regulatory compliance with cybersecurity and data protection laws (BCEAO, COBAC, BCRG).
• Lead IT security committees and participate in Group governance forums.
• Design and manage a security awareness and training program for all employees.
• Validate and supervise the deployment of technical security systems (firewalls, DLP, SIEM, antivirus, etc.).
• Coordinate penetration testing, vulnerability assessments, and technical audits.
• Establish and manage the incident response process (SOC/CSIRT), including post-incident analysis and remediation.
• Collaborate with IT teams to define and test business continuity (BCP) and disaster recovery (DRP) strategies.
• Provide support to subsidiary CISOs, ensuring harmonization and alignment with Group practices.
• Maintain ISS dashboards and ensure effective reporting to General Management and the Board.
• Support audits and inspections by preparing necessary compliance documentation.
• Maintain a security incident database and track the implementation of corrective actions.

Requirements: Qualification and Skill

• Master’s Degree (Bac+5) in Information Security, Information Systems, or related field.
• Professional certifications preferred: CISSP, CISM, ISO 27001, CRISC.
• 10+ years of relevant experience, with at least 5 years in a senior IT security role in banking.
• Strong knowledge of banking regulations in West and Central Africa (BCEAO, COSO, ISO 22301, ISO 27001).
• Hands-on experience with cybersecurity governance, risk management, and incident response.
• Proficiency in security technologies (SIEM, firewalls, encryption, antivirus, MFA, etc.).
• Experience with cloud environments (Azure, AWS) and network/system architecture.
• Skilled in producing ISS dashboards, reports, and presenting to governance bodies.
• Excellent leadership and communication skills with the ability to influence stakeholders at all levels.
• Proven ability to manage crisis situations and make decisions under pressure.
• Key Performance Indicators:
  • ISS Compliance: Maintain a high compliance rate across entities with Group policies and regulatory frameworks.
  • Incident Management: Reduce critical incidents and improve mean time to detect (MTTD) and resolve (MTTR).
  • Risk Coverage: Ensure up-to-date cyber risk analysis for 100% of critical systems and processes.
  • Training and Awareness: Maintain high employee participation and success rates in cybersecurity programs.
  • Audit Performance: Achieve timely closure of audit findings with minimal non-compliance issues.
  • Reporting Quality: Ensure timely, clear, and actionable reporting to executive management and board committees.
  • Bilingual: Fluency in French and English.

   

   

If you wish to apply for the position, please send your CV to Caleb Ebrahim at cebrahim@caglobalint.com

Please visit www.caglobalint.com for more exciting opportunities.

Caleb Ebrahim

Recruitment Consultant

CA Finance

CA Global will respond to short-listed candidates only. If you have not had any response in two weeks, please consider your application unsuccessful however your CV will be kept on our database for any other suitable positions.

Apply now