Overall Job Purpose
To ensure the security, integrity, and resilience of cGrate Zambia Limited’s network infrastructure and digital assets by implementing robust cybersecurity measures, identifying vulnerabilities, managing risks, and responding to potential cyber threats. The Cyber Security Specialist will play a critical role in safeguarding the company’s data and systems while promoting a secure organizational environment.

Key Responsibilities:

Network Security:
Design, implement, and maintain security measures to protect the organization’s network infrastructure from unauthorized access, breaches, and cyberattacks.

Cyber Threat Management:
Monitor network traffic, security logs, and other relevant sources to detect and address potential cybersecurity threats, intrusions, and anomalies.

Incident Response:
Develop and execute incident response plans to ensure timely containment and resolution of security breaches or cyber incidents.

Vulnerability Assessment:
Conduct regular security assessments, vulnerability scanning, and penetration testing to identify and mitigate weaknesses in the network infrastructure and applications.

Security Policy Development:
Develop, update, and enforce cybersecurity policies, standards, and guidelines in alignment with industry best practices and compliance requirements.

Access Control:
Manage user access and permissions to network resources and data, applying least privilege principles to minimize unauthorized access risks.

Firewall Management:
Configure and manage firewalls and intrusion prevention systems (IPS) to enforce network security policies effectively.

Security Awareness Training:
Provide cybersecurity awareness training to employees, equipping them with knowledge of cybersecurity risks and best practices.

Data Protection:
Implement data encryption, data loss prevention (DLP), and data backup strategies to safeguard sensitive information and ensure business continuity.

Network Monitoring:
Continuously monitor network performance and security systems, investigating and responding promptly to security alerts.

Compliance and Reporting:
Ensure compliance with relevant cybersecurity regulations and standards, preparing regular reports on security incidents, vulnerabilities, and risk assessments.

Security Architecture:
Collaborate with the IT team to design secure network architectures for new projects and system deployments.

Requirements:

• Bachelor’s degree in Computer Science, Information Technology, or a related field.
• Proven experience in managing enterprise-level security operations.
  Strong knowledge of networking protocols, firewalls, intrusion detection/prevention systems, and security best practices.
• Familiarity with cybersecurity frameworks and regulations (e.g., NIST, ISO 27001, GDPR, HIPAA).
• Experience in conducting vulnerability assessments, penetration testing, and security audits.
• Proficiency in using security tools such as SIEM, IDS/IPS, antivirus, and DLP solutions.
• Excellent analytical and problem-solving skills with the ability to anticipate and address security threats strategically.
• Strong communication and interpersonal skills, capable of explaining complex technical concepts to non-technical stakeholders.
• Industry certifications such as CISSP, CompTIA Security+, or CISM are an advantage.