The Caribbean Development Bank (CDB or the Bank) is seeking to recruit a national from its member countries to fill the position of Information Technology Officer (Internal Controls) [IT Officer] in the Information Technology Solutions Division (ITSD). The successful candidate will be based at CDB’s headquarters in St. Michael, Barbados.
THE ROLE
Reporting to the IT Governance Manager (ITGM), the IT Officer supports the IT Internal Control Studio, which is focused on information security, compliance, and risk management. The IT Officer coordinates information security controls, cybersecurity and IT risk management programmes based on industry-accepted information security and risk management frameworks.
IT Officer supports the ITGM, ensuring that CDB processes personal data in compliance with the Policy, Guidelines, and applicable data privacy best practices. IT Officer s oversee the adoption of best practices and standards for Records Management practices.
KEY RESPONSIBILITIES
The IT Officer will be required to:
· Support the development and implementation of CDB`s Data Protection framework under the direction of the ITGM, preparing reports, answering queries, and all other tasks as defined in the IT Officer`s Terms of Reference.
· Coordinate the continuous development, implementation and updating of security and privacy policies, standards, guidelines, baselines, processes, and procedures in compliance with Bank standards.
· Develop and implement frameworks, processes, tools, and lead consultancy vital for IT to manage risk effectively and to make risk-based decisions related to IT activities.
· Proactively identify and mitigate IT risk as well as responding to observations identified by third-party auditors or examiners while assisting in the development of periodic reports and dashboards communicating the level of controls compliance and current IT risk posture.
· Assist with the audits and facilitate management response and remediation efforts. Ensure overall IT compliance with regulatory requirements through proactive planning and communication, ownership, and relationships.
· Broaden and deepen knowledge of the business and environment of IT with respect to the delivery of projects, critical initiatives, and systems portfolio to effectively assist with risk and compliance management.
· Identify residual risk and assist with action plans, policy, and procedural changes for risk mitigation.
· Provide strategic recommendations to key IT projects to help improve project results, quality of work, risk optimization, security processes and compliance with regulations.
· Conduct investigations into security incidents; prepare written findings, recommendations, and follow-up evaluation; and analyse patterns and trends.
· Coordinate with the Cloud Studio information security incident response and reporting for events or exploited vulnerabilities, including unauthorised system or network access, denial of service, inappropriate data access, data corruption, and/or collection of private or confidential information.
· Facilitate information systems security management education and training in data protection, regulatory and industry standards for all employees.
· Obtaining and demonstrating ‘expert’ knowledge of data protection regulations and best practices.
· Promote data protection culture within CDB and respond to queries and requests concerning data privacy.
· Update privacy-related process documentation.
QUALIFICATIONS
The Ideal candidate for this role must have:
The following would be considered assets:
COMPETENCIES
Function-Specific Competencies
The IT Officer must demonstrate strong ability to:
· Be able to work across multiple groups within a complex organisational structure.
· Demonstrate a firm grasp of information security, compliance and risk policy design, deployment, and monitoring.
· Build out digital capabilities to transform organisations and have a strong record of accomplishment in agile project management.
