Specialist - Cyber Security Grc

6 months ago


Midrand, South Africa Vodafone Full time

**Role Purpose**:
The primary purpose of the role is to support Cyber GRC functions which are all interdependent and would require good teamwork. To ensure the best delivery, exposure and create backfill capability with succession planning, the role and function for a Cyber GRC specialist would require expertise in the following areas broadly covered below:
Governance
Cyber Security Training, Awareness and Education
Cyber Security Document Management & Compliance
Risk and Risk Management
Cyber Security Risk and Risk Management
Reporting & Data Analytics
Compliance and Assurance
Cyber Security Baseline (CSB)
Audits and Assurance

You will also be required to drive the delivery of Cyber Security strategy and maturity improvement or risk reduction initiatives into the business unit(s) to which you will be assigned, monitor progress against agreed targets with the objective of safeguarding Vodacom Infrastructure and customer data from Cyber threat actors. This role will involve working with the respective Business units, Cyber and IT stakeholders in Vodacom South Africa to drive out Cyber Security baseline requirements - Some of these responsibilities may extend to collaboration with Group Cyber Security and other operating companies to ensure that cyber security controls are consistently applied across markets.

**Your responsibilities will include**:
Governance
Cyber Security Training, Awareness and Education
Responsible for the various components of security awareness, training and education covering which could include the following:
Cyber Security Training and Awareness planning, executing, tracking, and reporting.
Provide bespoke training for high profile staff based on their potential risk of being attacked (HR, IT, Senior Executives, Executive Pa’s.
Deliver Cyber Security inductions for all new joiners.
Deliver presentations to senior management on results of Cyber Security awareness campaigns, pain points, lessons learned and actions going forward for improvement.
Execute routine phishing simulations to assess the posture of staffs reporting and click rates.
Identify high risk users through phishing simulations and provide workshops to lower their risks.
Roll out Cyber Security training for all staff based on current trending global topics.
Provide executive reports to Vodafone regarding the Cyber Security programme.
Research common attack vectors and ways to spot them to reduce the risk
Provide security communications based on risks identified within the organisation.
Main point of contact for Cyber Security Training and Awareness.

Cyber Security Document Management & Compliance
Responsible for the various components of governance covering cyber policies, standards, processes and procedures which could include the following:
Implementation and guide policy compliance across Vodacom SA.
Review of Vodafone Security Policies, Processes and Standards against Vodacom SA for non-conformances.
Identify gaps in policies and provide input to improve them.
Communicate changes to policies to the organisation and the impact of the changes.
ISO9001 Coordinator for the department to ensure the Quality Management System is maintained.

Risk and Risk Management
Cyber Security Risk and Risk Management
Responsible for the risk management process and actions related to the various cyber security governing controls which will cover aspects like:
Risk reviews processes with partner departments to ensure good security practices are up to date as per industry standards and have applied Security by Design.
Identifying and registering new risks with the implementation and integration of new systems.

**Technical / Professional Qualifications**:
3-year Technical Diploma/Degree in Information Security, Computer Science or Engineering
Diploma or bachelor’s degree in Computer Science, Information Systems, Systems Analysis, or another related field
Minimum of 5 - 8 years of experience in Tech Security role where you meet business deliverables.

**Core competencies, knowledge, and experience**:
Knowledge of common information technology management / compliance frameworks such as ISO/IEC 27001, SOC 2, SOX, ITIL, COBIT, and NIST.
Knowledge of legal, regulatory and privacy requirements, such as Personally Identifiable Information (PII) Protection and Payment Card Industry (PCI)/Data Security Standard.
Proven experience managing and operating multiple security programs, projects, and initiatives.
An ability to think strategically and drive change.
A deep understanding of Technology Security risks and mitigating solutions.
A diverse security background with knowledge in several areas including layered security architecture; internet protocols; firewalls; VPN technologies, IDS/IPS, network access control and network segmentation, anti-malware and spam technologies; risk and vulnerability assessments, and compliance.
Security concepts related to DNS, routing, authentication, VPN, proxy services and DDOS mitigation technologies.
Windo



  • Midrand, South Africa Adcorp Holdings Full time

    **Synopsis** Our Client in the Telecommunications industry is hiring for a Cyber Security Specialist as an Independent Contractor for 12 months. This role will allow you to gain experience in working with one of the largest telecommunications companies in South Africa. Hybrid Midrand based on the hunt for an experienced and highly skilled Cyber Security...


  • Midrand, Gauteng, South Africa Planet10 Full time

    Job OverviewAt Planet10, we're seeking a highly skilled Cyber Security Defense Specialist to join our team. As a key member of our Cyber Defence team, you'll be responsible for delivering a highly effective end-to-end 24x7 Cyber Defence service. Your expertise will drive Cyber security improvement, collaborating closely with operational teams and external...


  • Midrand, South Africa A 1L Realization (Pty) Ltd Full time

    Job Description As a Senior Specialist in Cyber Security, you will play a key role in safeguarding our organization's digital assets. Your expertise will be vital in ensuring the confidentiality, integrity, and availability of our information systems. This role requires a deep understanding of security operations, solutions, and architectural principles...


  • Midrand, South Africa A 1L Realization (Pty) Ltd Full time

    Job Description As a Senior Specialist in Cyber Security, you will play a key role in safeguarding our organization's digital assets. Your expertise will be vital in ensuring the confidentiality, integrity, and availability of our information systems. This role requires a deep understanding of security operations, solutions, and architectural principles...


  • Midrand, South Africa A 1L Realization (Pty) Ltd Full time

    Job DescriptionAs a Senior Specialist in Cyber Security, you will play a key role in safeguarding our organization's digital assets. Your expertise will be vital in ensuring the confidentiality, integrity, and availability of our information systems. This role requires a deep understanding of security operations, solutions, and architectural principles...


  • Midrand, South Africa Adcorp Holdings Full time

    **Qualification and Experience** - Degree or a relevant tertiary qualification in Information technology and Minimum of 8 years of experience in cyber security role where you meet business deliverables. - At least 8 years’ experience in cyber governance, risk, controls, and compliance management in a technology environment - 8 years of experience in IT...


  • Midrand, South Africa Jobted ZA C2 Full time

    - Network Security: protection of the client network infrastructure against attacks and unauthorized access - Endpoint Security: protection of individual devices from attacks and unauthorized access e.g. Laptops, Smart Phones and Tablets - Application Security: Securing of software applications from vulnerabilities, attacks and unauthorized access - Data...


  • Midrand, South Africa Columbus Consulting Full time

    Network Security: protection of the client network infrastructure against attacks and unauthorized access Endpoint Security: protection of individual devices from attacks and unauthorized access e.g. Laptops, Smart Phones and Tablets Application Security: Securing of software applications from vulnerabilities, attacks and unauthorized access Data Security:...


  • Midrand, South Africa Columbus Consulting Full time

    Network Security: protection of the client network infrastructure against attacks and unauthorized accessEndpoint Security: protection of individual devices from attacks and unauthorized access e.g. Laptops, Smart Phones and TabletsApplication Security: Securing of software applications from vulnerabilities, attacks and unauthorized accessData Security:...


  • Midrand, South Africa Jobted ZA C2 Full time

    Job DescriptionAs a Senior Specialist in Cyber Security, you will play a key role in safeguarding our organization's digital assets. Your expertise will be vital in ensuring the confidentiality, integrity, and availability of our information systems. This role requires a deep understanding of security operations, solutions, and architectural principles...


  • Midrand, Gauteng, South Africa Planet10 Full time

    We are seeking a highly skilled Cyber Security Defense Expert to join our team at Planet10.As a key member of our Cyber Defence team, you will play a critical role in delivering a highly effective end-to-end 24x7 Cyber Defence service. Your mission will be to proactively identify threats and vulnerabilities; detect and mitigate cyber events; and manage cyber...


  • Midrand, South Africa A 1L Realization (Pty) Ltd Full time

    Role PurposeCyber Defense is one of the critical Cyber Security teams. The Cyber Defense teams mission is to deliver a highly effective end to end 24x7 Cyber Defense service. They are responsible for proactively identifying threats and vulnerabilities; detecting and mitigating cyber events; and managing cyber security incident responses to minimize service...


  • Midrand, South Africa A 1L Realization (Pty) Ltd Full time

    Role PurposeCyber Defense is one of the critical Cyber Security teams. The Cyber Defense teams mission is to deliver a highly effective end to end 24x7 Cyber Defense service. They are responsible for proactively identifying threats and vulnerabilities; detecting and mitigating cyber events; and managing cyber security incident responses to minimize service...


  • Midrand, South Africa A 1L Realization (Pty) Ltd Full time

    Role Purpose Cyber Defense is one of the critical Cyber Security teams. The Cyber Defense teams mission is to deliver a highly effective end to end 24x7 Cyber Defense service. They are responsible for proactively identifying threats and vulnerabilities; detecting and mitigating cyber events; and managing cyber security incident responses to minimize service...


  • Midrand, Gauteng, South Africa Datacentrix Full time

    Job SummaryDatacentrix is seeking an experienced Cyber Security Specialist - Firewall Engineer to provide day-to-day support for firewall engineering and operation tasks in Cape Town.About the RoleThe ideal candidate will have at least 5+ years' experience delivering Network Security Services in a customer environment. The successful candidate will be...


  • Midrand, Gauteng, South Africa A 1L Realization (Pty) Ltd Full time

    Job OverviewA 1L Realization (Pty) Ltd is seeking an experienced Cyber Security Operations Lead to safeguard our organization's digital assets.About the RoleSalary: R850,000 - R1,050,000 per annumKey ResponsibilitiesThe successful candidate will lead the development and implementation of security solutions, monitor security vulnerabilities and cyber threats,...


  • Midrand, South Africa Vodafone Full time

    **.**: **When it comes to igniting a team of trailblazers, we're number 1.** The number 1 Top Employer in South Africa. Certified by the Top Employer Institute 2024. **Role Purpose/Business Unit**: - The primary purpose of the role is to work within a team of Secure by Design and Security Architecture professionals, in collaboration with the Privacy and...

  • SAP Grc Consultant

    6 months ago


    Midrand, South Africa Full Circle Resourcing Full time

    Our client requires the services of a** Software Engineer (Advanced) Midrand/Menlyn/Rosslyn/Home Office rotation.** - **Amazing brand with innovative technology**: - **Excellent teams in Global team collaboration**: - **High work-life balance with Flexible hours**: - **Agile working environment** **POSITION**:Until December 2026 **EXPERIENCE: 4-6 Years...


  • Midrand, South Africa Liquid Tech (Pty) Ltd. Full time

    **Role Requirements**: - Take the lead technical role in projects, managing less experienced engineers to ensure a successful outcome to endpoint security projects. - Deep technical knowledge of the following endpoint security solutions and services: - Microsoft Defender for Endpoint. - Microsoft Intune - Microsoft Entra - Microsoft Purview - Microsoft...


  • Midrand, South Africa Sabenza IT Full time

    SAP Authorizations Specialist Authorizations/ Security/ GRC, Technical - SAP Menlyn - Gauteng - South Africa, Midrand - Gauteng - South Africa, Rosslyn - Gauteng - South Africa Are you ready to drive your career to the next level? Our client is seeking a talented and experienced SAP Authorizations Specialist to join their dynamic team. As a global leader...