The IT Security Officer is responsible for driving the group-wide IT security strategy and implementation, protecting Serena Hotels from cyber threats and attacks, and ensuring compliance with IT policies, procedures, and standards. Reporting to the Group IT Manager, the role provides advisory support, oversees IT security projects, and ensures resilience through disaster recovery and business continuity planning across all Serena Hotels operations in Africa.

Key Responsibilities

• Formulate and implement IT security strategy and oversee IT security projects.
• Provide IT security advisory and guidance, keeping abreast of latest cybersecurity technologies.
• Conduct formal IT security audits, risk assessments, and follow up on implementation of audit recommendations.
• Ensure disaster recovery and business continuity plans are up to date.
• Perform vulnerability assessments and penetration tests (VAPT) to secure potential cybersecurity loopholes.
• Administer IT security solutions daily (secured email gateway, endpoints, firewalls, patch management, zero-trust solutions).
• Manage IT security incidents and coordinate response.
• Review, update, and enforce IT security policies, procedures, and standards.
• Develop and deliver IT security training and awareness programs.
• Guide on securing Serena’s e-commerce platforms.
• Ensure compliance with data protection regulations.
• Travel to Serena sites across Africa to support IT security operations.

Academic and Professional Qualifications

• Bachelor’s degree in Computer Science or a closely related discipline.
• Professional certification such as CISM or CISSP.
• Minimum of 3–5 years’ experience in an IT security role.
• Hands-on experience configuring and managing IT security solutions (firewalls, endpoints, mail gateways, zero-trust).
• Experience conducting IT risk assessments and VAPT.
• Knowledge of industry standards (ISO 27001) and frameworks (NIST CSF 2.0).
• Experience in formulating and implementing IT security policies and procedures.