Internal Compliance Officer

SecureID Limited is a smart card manufacturing and personalisation bureau with expertise in the deployment and integration of digital solutions. Historically, we are positioned as the first commercially operated smart card manufacturing plant in sub-Saharan Africa with the ability to manufacture Polycarbonate Cards amongst other card types.

• Support the planning and execution of internal periodic security audits and reporting
• Performing periodic checks on hardware and software systems to identify areas where deviations from standards exist.
• Periodically reviewing system access logs to see if access to systems / information is maintained on a need to know and need to do basis.
• Conducting internal audits on quarterly basis in line with PCI, CQM, ISO and other regulatory scope
• Schedule with customers for due diligence audits that come up from time to time
• Track audit findings and ensure that they are closed and escalate delays to Assistant Manager, Compliance.
• Enforcing compliance with production room procedures, ensuring that records are adequately maintained.
• Reporting noncompliance to Compliance Manager/managers’ responsible for audited functional areas and ensuring that corrective actions are promptly taken as required by regulatory bodies
• Track audit findings & escalating outstanding non compliances to Compliance Manager/managers’ on timely basis.
• Work with the information technology team in ensuring users compliance to data protection.
• Regularly following up on the versions installed software (operating systems, application software and anti–virus) to ensure that they are always up to date and report deviations;
• Provide internal communication regarding PCI, MasterCard, Verve International, UnionPay International, American Express, GSMA and Visa compliance issues and applicable regulation changes.
• Review of the systems and network devices to ensure that the configurations are in line with the organizational policy and best practice.
• Support in the creation of gap analysis to any new/changed regulations.
• Work with the units/departments audited by our regulatory bodies to resolve compliance issues, provide recommendation, communication on status of action resolution and bringing to my Team Lead, Internal Compliance issues that require attention and tracking corrective actions.
• Maintain files generated from audit.
• Perform necessary follow-up which include communicating with auditee(s) on status of action resolution.
• Support HR in coordinating information security activities (including staff awareness training) with all units/department’s appointees in the organization.
• Maintain a comprehensive log of any incidents and remedial recommendations and actions.
• Walk through the plant on daily basis with the checklist to identify deviations/nonconformities, report on this and follow up for proper close out.
• Conduct spot-check audits within the production, outside production and as required by Team Lead, Internal Compliance.

B.Sc. Computer Science. A master’s degree will be an added advantage

Microsoft, CISA, or Cisco Certified will be an added advantage

Minimum of 2 years in a similar position

Fundamental knowledge of:

Good Communication and Interpersonal Skills

Good Analytical skills

Working knowledge of web application security

Strong research skills

Certifications

Renewal of our certificates

Undertaking internal audit in line with our regulatory bodies

Assist in coordinating internal and external audits

Timely follow up with auditees to close NCs

Conduct daily security checks/reviews