Join us at Seacom

The successful candidate will report to the CIO and will be responsible for, inter alia, the following:

Key Responsibility:

Core Tasks:

• Define and lead the enterprise information security strategy aligned to business goals and risk appetite.
• Establish, maintain, and continuously enhance the Information Security Management System (ISMS).
• Develop and enforce security policies, standards, and control frameworks across the organisation.
• Own the enterprise information security risk register, consolidating risks from audits, projects, technology, third parties, and client requirements.
• Lead enterprise-wide risk assessments and define risk treatment and mitigation plans.
• Translate IT audit findings and control gaps into actionable remediation work packages with clear ownership, timelines, and control alignment.
• Govern remediation tracking, control effectiveness, and closure of audit and risk findings.
• Embed security-by-design principles into architecture, projects, procurement, and change processes.
• Oversee security architecture across systems, networks, data, and applications.
• Ensure continuous monitoring, testing, and improvement of security controls and processes.
• Lead vulnerability management, incident response, and cyber resilience practices.
• Oversee identity and access management governance, including privileged access and control reviews.
• Manage third-party security risk, including supplier assessments, contractual requirements, and ongoing assurance.
• Support client and commercial processes, including security inputs into RFPs, due diligence, and assurance responses.
• Provide strategic direction on emerging threats, technologies, and industry best practices.
• Drive organisation-wide security awareness and culture initiatives.
• Define and report security KPIs, KRIs, and risk posture to executive leadership and the Board.
• Establish and lead security governance forums, ensuring alignment, prioritisation, and accountability.

Carry out all other reasonable and lawful instructions and generally doing all such things which, although not specifically referred to herein, are necessary and/or required for the due, proper, and efficient rendering of the services for the purposes contemplated by this role.

EDUCATION:

• Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or related field (Master’s degree preferred).
• Relevant certifications such as CISSP, CISM, CISA, or equivalent are highly desirable.

SKILLS, KNOWLEDGE & EXPERIENCE

• Minimum of 10 years of progressive experience in information security leadership roles.
• Proven track record of successfully implementing and managing enterprise-wide information security programs.
• Extensive experience in developing and executing security strategies and roadmaps.
• Deep understanding of cybersecurity frameworks, standards, and regulations (e.g., ISO 27001, NIST, CIS, GDPR).
• Strong technical knowledge across networks, infrastructure, cloud environments, and application security.
• Experience in managing security incidents, threat intelligence, and vulnerability management programs.
• Familiarity with risk management and governance frameworks.

REQUIRED KEY COMPETENCIES/ATTRIBUTES:

• Strategic thinking and executive presence.
• Strong stakeholder engagement and communication skills.
• Ability to influence at all levels of the organization.
• Crisis management and decision-making under pressure.
• Ethical leadership and integrity.

Interested people should please submit an updated and condensed CV by clicking Apply Now.