Business Protection Manager

At Zaintech we are proud of our culture and how it drives everything we do. We are looking for individuals who share our values and want to be part of a unique and engaging culture that revolves around collaboration and innovation. If you are looking for a role where you can drive engagement and excellence across teams through commitment and collaboration, and are someone who is customer-centric and appreciates an organization with uncompromised integrity that focuses on employee engagement then read on to learn more about how you can become part of the Zaintech family.

At Zaintech we strictly adhere to our code of conduct, which is there to serve as a moral compass, offering a framework for responsible behaviours and enabling ethical choices that cultivate positive relationships and a better future. It also outlines policies, standards, and procedures for our global operations, promoting integrity and ethical excellence across the countries we engage with.

Every year, all employees are required to review, comprehend, confirm, and adhere to the code of conduct. Additionally, all newly hired employees are subject to the same as part of their onboarding process.

Designs, performs and manages cybersecurity audits to assess an organization’s compliance with applicable requirements, policies, standards and controls. Prepares audit reports and communicates them to authorized parties.

• Maintain a deployable cyber defense audit toolkit based on industry best practice to support cyber defense audits.
• Perform system administration on specialized cybersecurity applications and systems.
• Perform risk analysis whenever an application or system undergoes a major change.
• Prepare cybersecurity assessment and audit reports that identify technical and procedural findings, and include recommended remediation strategies and solutions.
• Track audit findings and recommendations to ensure that appropriate mitigation actions are taken.
• Effectively manage vulnerability remediation.
• Ensure an audit log of evidence of security measures is maintained.
• Review, conduct, or participate in audits of cyber programs and projects.
• Maintain knowledge of applicable cybersecurity defense policies, regulations and compliance documents as they pertain to cybersecurity defense auditing.
• Carry out an audit of application software/network/system security against documented cybersecurity policies and provide recommendations for remediation where gaps appear.
• Develop cybersecurity compliance processes and audits for services provided by third parties.
• Regularly review and ensure that cybersecurity policies and related documentation are aligned with the organization's stated business objectives and strategy.
• Ensure that security design and cybersecurity development activities are appropriately documented.
• Ensure that cybersecurity audits test all relevant aspects of the organization's infrastructure and policy compliance.
• Develop processes with any external auditors on information sharing in a secure manner.