Develop and implement processesfor detecting, identifying and analyzing security-relatedevents.
Ensure the development andimplementation of the client’s information securitypolicies and procedures and ensure timely updating thereof in lightof changing circumstances / best practices / regulatorydirectives.
Monitor compliance with theclient’s information security policies and procedures andreferring issues noted to appropriate divisional / departmentalheads.
Monitor controls in place (manual / system) to ensure that appropriate information access levels andsecurity clearances are maintained.
Monitorchanges in legislation and accreditation standards that affectinformation security.
Ensure that riskidentification, analysis and mitigation activities are integratedinto the information security life cycle.
Ensure adequacy of the network security architecture (includingLAN, WAN and internet), network access and manage security devicessuch as firewall, IDS, VPN, etc.
Assess theadequacy of security frameworks for existing and newsystems.