CYBER SECURITY EXPERT AT SECURITY RESOURCE AND RISK MANAGEMENT ACADEMY LIMITED

About Company:

Security Resource and Risk Management Academy is a security institute, geared towards providing adequate and conducive learning environment to train personnel with modern and conventional ways of managing security challenges.

We are recruiting to fill the position below:

Job Description:

• In response to the rising frequency and sophistication of cyber threats, we are committed to strengthening our cybersecurity framework and service delivery.
• The organization seeks to engage a Cybersecurity Expert who will play a dual role , providing technical leadership in cybersecurity management and contributing to business development initiatives through proposal writing, training, and capacity-building services.
• This role is essential for our positioning as a leading provider of secure digital solutions and advisory services in the cybersecurity and ICT sector.

Objective of the Assignment

• The primary objective of the assignment is to enhance the cybersecurity resilience of Security Resource and Risk Management Ltd while supporting the organization’s growth strategy through proposal development, client engagement, and capacity-building initiatives.

Scope of Work
The Cybersecurity Expert will perform the following key tasks:
Cybersecurity and Technical Leadership:

• Conduct a comprehensive cybersecurity risk assessment across organizational systems, networks, and platforms.
• Identify vulnerabilities and recommend appropriate mitigation measures.
• Develop, review, and implement cybersecurity policies, frameworks, and standards aligned with international best practices (ISO 27001, NIST, etc.).
• Oversee the configuration, deployment, and management of firewalls, IDS/IPS, antivirus systems, and endpoint protection tools.
• Ensure data encryption, access control, and secure authentication mechanisms.
• Develop and operationalize an Incident Response and Disaster Recovery Plan.
• Monitor emerging cybersecurity trends and advise management on proactive security investments.

Business Development and Proposal Writing:

• Identify and pursue cybersecurity-related business opportunities with government agencies, private sector clients, and development partners.
• Lead the technical component of proposal and bid development - including concept notes, methodologies, budgets, and technical write-ups.
• Collaborate with the business development unit to prepare high-quality proposals and marketing materials for cybersecurity and ICT projects.
• Provide thought leadership through the development of white papers, policy briefs, and case studies that promote the organization’s expertise.

Training and Capacity Building:

• Design and deliver cybersecurity awareness and capacity-building programs for internal staff, clients, and partners.
• Develop tailored training modules on topics such as data protection, cyber hygiene, phishing prevention, and digital risk management.
• Build internal capacity of IT teams to manage and respond effectively to cybersecurity incidents.
• Facilitate workshops, simulations, and tabletop exercises for incident response preparedness.

Monitoring, Evaluation, and Reporting:

• Establish measurable cybersecurity performance indicators and monitoring systems.
• Prepare periodic progress and risk assessment reports.
• Document incidents, lessons learned, and continuous improvement actions.
• Provide management with quarterly updates on cybersecurity posture and recommendations.

Deliverables

• Cybersecurity Risk Assessment Report
• Updated Cybersecurity and Data Protection Policy
• Incident Response and Disaster Recovery Framework
• At least three (3) cybersecurity training sessions conducted annually
• Technical proposals developed for cybersecurity-related projects
• Quarterly and final progress reports.

Duration and Level of Effort:

• The assignment will be undertaken full time with specific deliverables and milestones defined in a work plan.
• The level of effort may vary based on project activities and business development opportunities.

Reporting and Supervision:

• The Cybersecurity Expert will report directly to the Chief Executive Officer and will work closely with the Business Development and Training Units.

Requirements:

• Bachelor’s or Master’s Degree in Computer Science, Information Security, or related fields
• Minimum of 5 - 7 years of relevant professional experience in cybersecurity, IT governance, or information risk management.
• Recognized certifications such as CISSP, CISM, CEH, ISO 27001 Lead Implementer/Auditor, CompTIA Security+ are required or highly desirable.
• Proven experience in cybersecurity policy formulation, risk assessment, and system protection.
• Strong record in proposal writing, business development, or consulting project acquisition.
• Experience designing and delivering cybersecurity training or workshops.
• Excellent communication, analytical, and report-writing skills.

Expected Outcomes:
By the end of the engagement, Security Resource and Risk Management Limited should have:

• A robust cybersecurity management system in place.
• Enhanced visibility and competitiveness in the cybersecurity consulting market.
• Improved staff capacity and cybersecurity awareness.
• Increased number of funded cybersecurity and ICT projects through proposal success.

Salary

Application Closing Date: 30th November, 2025

Application Instructions:

Qualified candidates should send their CV and cover letter in PDF as a single document to: hadaba.gresource@gmail.com using "ABJ01" as the subject of the email.