Regional IT Infrastructure and Security Analyst
Universal Leaf Tobacco Company
Total years of experience :16 years, 10 Months
. ICT Security Administration and Management
2. ICT Risk Management and Control Monitoring
3. Regional ICT Coordination (South Africa, Zimbabwe, Mozambique, Tanzania and Malawi)
4. IT Service Management
5. Systems Administration
6. Server Infrastructure Administration
7. Network Infrastructure Administration
8. Strategic planning for ICT Regional operations
9. Managing IT subordinates in regional and local offices
10. Primary IT contact for Universal Leaf South Africa offices
• Participates in the development of Information Security strategic and corporate aims for the Information Security Office.
• Executes information security awareness program plan.
• Implements the enterprise information security policy, standards, guidelines and procedures to ensure on-going maintenance of information security program as directed by the Chief Information Officer.
• Enforces adherence to the information security policies.
• Investigates the information security policy violations and take appropriate action.
• Assists in review of Information security policies and procedures on annual basis and as and when required.
• Implements Information security solutions.
• Participates in the development, implementation and maintenance of the enterprise Business Continuity Plan and Disaster Recovery Plan.
• Maintains Risk, Issue and Change registers for information security.
• Conducts computer forensics when required.
• Conducts periodic security/ vulnerability assessment on enterprise IT infrastructure.
• Provides advice and takes action, where necessary, in response to Audit findings and recommendations in respect of information security.
Manage firewall and proxy devices, routing configuration and anti-virus protection in the network environment
Plan and develop operational security guidelines to ensure all network related systems/services are maintained with full security against threats, viral attacks, malware, spyware, hacking, in order to keep under control the external/internal threats to the LAN
Monitoring Compliance with ISO270001 Standards, Policies, Procedures and legislature
Information Security Threats and Risk Assessments
Configuring network devices and appliances (switches, routers and IP telephony)
Physical, Network and Logical Security
Access Controls Administration/ Security Controls implementation and enforcement
ICT Security Investigations
ICT Security Awareness Programs and Training
Facilitating Internal and External Audits
Information Security Governance/Information Risk Management
Information Security Program Development and Management
Information Security Incident Management
IT Risk Identification, IT Risk Assessment, IT Risk Response and Mitigation
IT Controls and Reporting
Website updating, maintenance and administration
Antimalware administration (Symantec, McAfee, AVG)
Setup and administration of internet security technologies (Microsoft TMG 2010, Microsoft ISA 2005, Websense, Sophos and Bluecoat)
Cisco Security appliances administration (Cisco ASA, TACACS+, Firewalls, Routers and Switches)
CCTV Administration
ICT Infrastructure Administration
Cisco IP Network Design and Administration
Systems Administration(Windows and Linux)
Infrastructure Support and Maintenance(Dell, Cisco, HP, Nexus, APC)
VMWare Sphere 5.5 and 6.0 Install, Configure and Manage (VMWare)
Dell Equalogic Storage Administration
Data Center Support (HVAC and Monitoring)
Windows Server Infrastructure Support(Server 2003, 2007, 2008, 2012)
Microsoft Exchange Support(Exchange 2007, 2010 and 2013)
Working with various service providers, contractors and outsourced services
Databases administrative support (SQL 2005, 2008, 2012 and 2014)
Microsoft Systems Center Configuration Management-SCCM (2012 R2 and 2016) administration
Participation in and leading IT projects and initiatives.
Generate ideas for expanding current service offerings based on experience and client feedback.
Ensure that all compliance and best practice requirements from Ernst Young’s Global Technology standards.
Capture and communicate leading practices and seize opportunities to grow EY's knowledge (e.g., knowledgeable networks, face-to-face events, leading practice development).
Exercise appropriate levels of communication and maintain a good relationship with clients
Clarify roles and responsibilities collaboratively with team members to improve their level of commitment and alignment with requirements.
Plan and conduct team meetings that foster open participation and focus on specific outcomes.
Identify and pursue opportunities for leveraging information and resources across assignments and teams.
Build networks with individuals at all organizational levels internally, with higher level client contacts, and start creating a sustainable external network
Adapt approaches to others based on differences in individual style and backgrounds
Contribute to a positive team environment by demonstrating consistent commitment and optimism toward work challenges
Translate organizational goals into individual and team goals.
Hold team members accountable for consistent commitment to EY values and principles.
Help clients and team members identify issues and needs for responding to planned organizational changes.
Keep negotiations or dialog moving forward, even when ways to resolve an issue are not apparent.
Ensure prudent financial expenditure and that the appropriate controls are respected.
Address opportunities for cost containment, reduction and avoidance
Fulfil IS&T service delivery within agreed budget, time, resources and quality, whilst taking cognizance of any associated risks.
Co-ordinate budgetary input and related expenditure for the department
IT Budgeting and Budgetary Control
3. Leadership and People
Ensure preparation of scorecards & development plans for the prescribed review sessions of personnel
Continuously evaluate the performance of staff in the department and submit regular reviews
Oversee the training and development of personnel to ensure ongoing development of IS&T required skills for the support, implementation, operations and maintenance of the firm’s IT infrastructure.
Promote job satisfaction, productivity and teamwork, whilst re-enforcing compliancy with firm values.
Leading and Supervising IT Team
Encourage innovation and exploration of new ideas and initiatives by team members
Consistently reinforce and integrate EY values into the way work is done and how relationships are conducted.
Develop strategies to improve commitment from team members that contribute to service line .
Participate in ongoing review and adjustments to country IT policies, procedures, guidelines and standards - Area compliancy, DRP/BCP etc.
Pro-active and proficient execution of duties and responsibilities, with regards to operations, projects & initiatives.
Involve clients as team participants in planning and preparing work/assignments, according to EY standards, helping them understand and clarify work products that produce significant positive impact on their business.
Planning, Implementation. Leading and Controlling of IT Projects from Global. Sub Area Level and local initiatives
5. Network Administration and Operations
Planning, building and troubleshooting CISCO IP Networks
Windows Server environment support
Active Directory Administration
Virtualization/VMware Administration.
Day-to-day management of Data Center/Server
Information Security Governance
Information Risk Management and Compliance
Information Security Program Development a
Ernst & Young Chartered Accountants Zimbabwe, a member firm of Ernst & Young Global
Position: ICT Engineer/IT Senior Associate
Duration: Jan 2007-December 2009
Major duties
1. Data Center Administration
§ Active Directory administration in Windows 2003 environment
§ DNS and DHCP Server Admin
§ Group Policy Management in Active Directory
§ Application Servers
BSc BM&IT Hons, Cisco Certified Network Associate (CCNA) and Professional (CCNP Routing and
Switching), Computer Society of Zimbabwe (CSZ) membership
§ File Servers
§ Data Center and Server Room Security ( DRP)
§ Air Cooling systems monitoring and control
§ Data backups and organization (Disaster Recovery)
§ Antivirus and Security threats management
§ Server infrastructure Management
§ APC Infrastructure Support/Environmental Manager
2. Networking Services Administration
§ Design of Cisco IP Networks
§ Implementation and monitoring of Cisco IP Networks
§ Configuring Network Devices (Routers/Switches/Firewalls etc.)
§ Internetworking (TCP/IP)
§ Internet and Proxy Management
§ Implementation and manage Information Security standards according to acceptable
standards.
§ Link utilization and capacity (bandwidth) monitoring.
§ Maintaining business relations with ISP and Telecommunications providers
§ Mobile Worker Connectivity
§ Wireless Technologies
3. Project Management
§ Project planning and controlling
§ Budgeting and budgetary control
§ Ensure Compliance to standards
§
4. Security and Risk Management
§ Security threats and Antivirus management
§ ICT Crime counter strategizing
§ Policies and procedures
§ IP security architecture
§ Centralize/decentralized/distributed access control methodologies
§ Risk Management
§ Email and Internet Security
§ Operations security
§ Security architecture
5. Messaging and Collaboration
§ Lotus Domino Support
§ Lotus Client Support and Sametime.
6. Knowledge Management
§ Conducting training manuals and manuals for new staff members
§ Periodic IT training for firm's employees
7. IT Auditing
§ Control Reviews and Access Control Tests
§ DRP/BCP
§ Network Security Reviews and Tests
Other Duties
§ Team leading and supervising junior technicians, graduate trainees and service desk
team
§ Assisting management in preparing monthly IT Reports
BSc BM&IT Hons, Cisco Certified Network Associate (CCNA) and Professional (CCNP Routing and
Switching), Computer Society of Zimbabwe (CSZ) membership
§ Assisting management in outsourcing services and tenders
§ Sub-offices Support
§ Incident handling and Security
DELTA BEVERAGES LAGERS MANUFACTURING (a division of Delta Corporation)
Position: Assistant Systems Administrator
Duration: December 2002-May 2004
Duties
§ Hardware and Software Support
§ Helpdesk Administration
§ Network (LAN) Support
§ Training of End Users on IT Technologies
§ Procurement of IT Consumables
§ Systems Backups
§ Administration of Servers and Applications Platforms
AMBITIONS
§ Information Systems Security and advanced Networking Certifications
§ Work in a world-class IT environment with opportunities for growth
Computer Science