![DBSA](https://media.trabajo.org/img/noimg.jpg)
Ict Information Security and Risk Specialist
1 week ago
The purpose of this role is to perform information security responsibilities such as developing, coordinating and implementing policies, standards, and procedures to safeguard the bank's information systems and data.
Ensuring that information security policy is aligned with the bank's business strategy & benchmarked with best practice.Strategic Focus:
Define and implement ICT Security strategy for the bank
Establish a framework for the implementation of an Information Security Management System (ISMS) that reflects the bank's security needs and objectives
Develop ICT Security Policies, Processes, Procedures and Standards in line with industry benchmarks and where applicable best practices
Oversees the planning, execution and management of projects related to compliance, control assurance, risk management, security and infrastructure / information asset protection
Provide strategic / tactical direction and consultation on information security and compliance
Design an effective ICT Security Architecture
Key Responsibilities:
Financial Management:
Develop an effective stakeholder Service Level Agreement Management for ICT Security
Advise ICT management on cost effective solutions for Information Security solutioning
Implement cost effective ICT Security solutions
Information Security Management:
Design and coordinate the processes for the detection, investigation and correction of ICT security breaches and incidents
Assess and implement the controls needed to protect the bank's information as well as information from third parties
Plan and participate in ICT Continuity and Disaster Recovery process;
Perform periodic reporting to key stakeholders regarding the bank's ICT Security state
Provide ICT security advisory services to the different BU's within the bank
Initiates and conduct independent corporate security risk assessments
Coordinate corrective actions for identified security vulnerabilities and gaps.
Work with the CIO, Executive team, and Group Risk Management to determine acceptable levels of risk for the enterprise (Risk Champion)
Maintain ICT Risk Management at strategic and operational level
Ensure effectiveness and maturity growth of the bank's ICT Security Program
Ensure ICT Assets are safeguarded to protect the information
Ensure privacy and security of data and segregation of duties in maintaining confidentiality, availability and integrity of information
Develop and provide appropriate awareness training / plans and communication
Capacity Building:
Conduct continuous market research on trends and best practice relating to ICT Security
Establish communication programs that will raise and maintain awareness of information security throughout DBSA
Conduct awareness sessions to ensure that DBSA staff are educated of their roles and responsibilities relative to information security governance
Expertise & Technical Competencies:
QUALIFICATIONS & EXPERIENCE
B. degree (IT/Information systems) or BTech in IT or Information Security
Post graduate qualification in ICTSecurity information Management will be advantageous.
- 6 Years of experience in ICT Information Security Management and / or IT Risk Management
Skills & Knowledge
Relevant certification (CISM, CISA, CRISC)
Strong technical background and knowledge
Exposure to cyber risk frameworks (NIST, ISF, Iso27001/2, FFIEC)
Ability to create metrics, presentations to various stakeholders
IT Governance and risk management experience
Practical experience in IT or Information Security and Information Risk management role.
Exposure to cyber security or SOC monitoring.
Optional:
CoBIT, TOGAF, ITIL
Must be analytical and investigative.
Must display good decision making and problem-solving skills.
TECHNICAL COMPETENCIES
Planning & Organizing
Is relied on to help others plan and organise their workload.
Effectively uses advanced time management processes to deal with high workload and tight deadlines.
Organises, prioritises and schedules tasks so they can be performed within budget and with the efficient use of time and resources.
Negotiation Skills
Possesses an understanding of various unspoken communications from other parties and can decipher hidden agendas.
Is able to successfully conclude negotiations which require the development of an emotional as well as factual argument.
Is able to develop mutually-beneficial potential solutions.
Written Communication
Understands that different writing styles are required for different documents or audiences.
Write effective correspondence, prepares questions and reports, statements of circumstance and briefing notes.
Reviews others' documents for clarity and impact.
Has a solid mastery of writing principles such as grammar, sentence construction etc.
Required Personal Attributes:
**BE
-
Ict Committee Chairperson
1 week ago
Midrand, Gauteng, South Africa Railway Safety Regulator Full timeThe RSR seeks to appoint an ICT Committee Chairperson. The ICT Committee carries out its functions in line with the roles, responsibilities and powers set out in the PFMA, the National Treasury Regulations, the RSR ICT Committee Charter and King IV.REQUIRED QUALIFICATIONS, SKILLS AND EXPERIENCE: Minimum 10 years' experience at Senior Management level gained...
-
Ict Committee Chairperson
1 week ago
Midrand, Gauteng, South Africa Railway Safety Regulator Full timeThe Railway Safety Regulator (RSR) seeks to appoint an Information and Communication Technology (ICT) Chair and one (1) member. The ICT Committee carries out its functions in line with the roles, responsibilities and powers set out in the PFMA, the National Treasury Regulations, the RSR ICT Committee Charter and King IV.REQUIRED QUALIFICATIONS, SKILLS AND...
-
Ict Committee Member
1 week ago
Midrand, Gauteng, South Africa Railway Safety Regulator Full timeThe Railway Safety Regulator (RSR) seeks to appoint an Information and Communication Technology Committee (ICT Committee) member. The ICT Committee performs its functions in line with the roles, responsibilities and powers set out in the PFMA, National Treasury Regulations, RSR ICT Committee Charter and King IV.REQUIRED QUALIFICATIONS, SKILLS AND EXPERIENCE:...
-
Midrand, Gauteng, South Africa Advanced Projects and People Full timeIntroductionThe purpose of the role is to ensure that the security services are delivered as described in the SOW/agreement.Duties & ResponsibilitiesCompliance Management: Measuring performance against SLA's. Identifying major interventions to be planned for the next month. Understanding the IT Policies and Processes within the cross functional service...
-
Ict/ Network Technician
1 week ago
Midrand, Gauteng, South Africa RJPersonnel Full time1years Manage, install, configure, upgrade operating systems and software. Using standard business and administrative packages Install, assemble, configure computers, monitors, network infrastructure and peripherals, such as cables and printers. Help in maintaining departmental LAN. Analyze and monitor the ICT connectivity environment. Advise on technical...
-
Cyber Security Specialist
1 week ago
Midrand, Gauteng, South Africa Adcorp Holdings Full timeSynopsisOur Client in the Telecommunications industry is hiring for a Cyber Security Specialist as an Independent Contractor for 12 months. This role will allow you to gain experience in working with one of the largest telecommunications companies in South Africa.HybridMidrand basedon the hunt for an experienced and highly skilled Cyber Security Senior...
-
Aviation Security Risk Management Specialist
1 week ago
Midrand, Gauteng, South Africa SACAA Full timePURPOSE OF THE JOBThe South African Civil Aviation Authority (SACAA) has an exciting opportunity in our Aviation Security department.We are looking for a talented individual with the relevant skills and experience who will:- develop and manage an Aviation Security Risk Management System.- develop and monitor Cyber Security Governance Framework, incorporating...
-
Specialist: Cyber Secure By Design
1 week ago
Midrand, Gauteng, South Africa Vodafone Full timeRole purpose:The primary purpose of the role is to work within a team of Secure by Design and Security Architecture specialists, in collaboration with the Privacy and Business Risk Teams to Perform Secure by Design Assessments against Vodacom policies and standards.Your responsibilities will include:Provide technology security assurance, guidance and support...
-
Ict Infrastructure Specialist
1 week ago
Midrand, Gauteng, South Africa DBSA Full timeThe role of the Infrastructure Specialist is to ensure that the Banks' Information Communication and Technology infrastructure services are available in line with the Service Level Agreement between the Information Communication and Technology Unit and business.Key Responsibilities: Contribute to the formulation of Request for Proposals, Service Level...
-
Specialist: Cyber Secure By Design
1 week ago
Midrand, Gauteng, South Africa Vodafone Full timeRole purpose:The primary purpose of the role is to work within a team of Secure by Design and Security Architecture specialists, in collaboration with the Privacy and Business Risk Teams to Perform Secure by Design Assessments against Vodacom policies and standards.In performing this role, you will:Identify potential cyber security risks for new products,...
-
Specialist: Cyber Secure By Design
1 week ago
Midrand, Gauteng, South Africa Vodafone Full timeRole purpose:The primary purpose of the role is to work within a team of Secure by Design specialists, in collaboration with the Privacy and Business Risk Teams to Perform Secure by Design Assessments against Vodacom policies and standards. In performing this role you willIdentify potential cyber security risks for new products, services and operations and...
-
Specialist - Cyber Security Grc
1 week ago
Midrand, Gauteng, South Africa Vodafone Full timeRole Purpose:The primary purpose of the role is to support Cyber GRC functions which are all interdependent and would require good teamwork.To ensure the best delivery, exposure and create backfill capability with succession planning, the role and function for a Cyber GRC specialist would require expertise in the following areas broadly covered...
-
Senior Manager: Ict
1 week ago
Midrand, Gauteng, South Africa Construction Education & Training Authority Full timeJOB PURPOSE AND PROFILETo ensure the development, enhancement, communication, reporting and oversight of the CETA's ICT Management strategy, frameworks and associated tools and processes, ensuring that these are supportive of the CETA strategy and mitigate business risks for the organisation. Direct the planning and implementation of enterprise Information...
-
Ict Project Manager X2
1 week ago
Midrand, Gauteng, South Africa DBSA Full timeThe ICT Project Manager (PM) will implement Information Technology (IT) initiatives that improve cost effectiveness,service quality, and business efficiency in a constantly changing environment. The Project Manager will take lead inthe project management of information systems to support the organisation's internal and external businessoperations and...
-
Assistant Information Specialist
1 week ago
Midrand, Gauteng, South Africa IIE MSA and IIE Varsity College Full timeDirect Reporting Line:Head: AcademicVarsity College is an educational brand of The Independent Institute of Education (The IIE). The IIE enjoys the reputation of being at the forefront of private higher education in South Africa, and is registered with the Department of Higher Education and Training (DHET) to provide higher education qualifications...
-
Specialist: Cyber Security Defense
1 week ago
Midrand, Gauteng, South Africa Vodafone Full timeRole purpose:Cyber Defence is one of MPA's critical Cyber Security teams. The Cyber Defence team's mission is to deliver a highly effective end to end 24x7 Cyber Defence service. They are responsible for proactively identifying threats and vulnerabilities; detecting and mitigating cyber events; and managing cyber security incident responses to minimise...
-
Senior Specialist: Cyber Security
1 week ago
Midrand, Gauteng, South Africa Vodafone Full timeRole purpose:The primary purpose of the role is to work within a team of Secure by Design and Security Architecture professionals, in collaboration with the Privacy and Business Risk Teams to Perform Secure by Design Assessments against Vodacom policies and standards. In performing this role you willIdentify potential cyber security risks for new products,...
-
Information Specialist
1 week ago
Midrand, Gauteng, South Africa IIE MSA and IIE Varsity College Full timeDirect Reporting Line:Manager: Online Teaching and LearningVarsity College is an educational brand of The Independent Institute of Education (The IIE). The IIE enjoys the reputation of being at the forefront of private higher education in South Africa, and is registered with the Department of Higher Education and Training (DHET) to provide higher education...
-
Senior Specialist Cyber Security
1 week ago
Midrand, Gauteng, South Africa Vodafone Full timeRole purpose:Your responsibilities will include:The incumbent will direct, develop, implement and maintain a comprehensive Vodacom-wide vulnerability management strategy.Defining, implementing and efficiently maintaining technology security controls and requirementsEnsure timely delivery of technology security vulnerability reports and support for...
-
Senior Specialist: Cyber Security
1 week ago
Midrand, Gauteng, South Africa Vodafone Full timeRole purpose:Your responsibilities will include:Provide supervisory technology security assurance, guidance, and support to the Vodacom Group.Assure that security is embedded in IT systems and Network Infrastructure (Mobile, IS, and Enterprise) across the Vodacom Group.Defining, implementing, and efficiently maintaining technology security controls and...