Information Security Officer
2 weeks ago
Implement the Technology Strategy & Innovation for your area of responsibility
Organize outputs aligned to the Technology risk strategy, internal controls and budget of internal resourcing and partnerships to assure Technology Compliance to best practise and regulatory compliance (including but not limited to data protection compliance (e.g., POPI and GDPR), ECT Act, ESG, Cyber laws.
Manage and coordinate a Zero data or Technology loss approach, internal controls and budget of internal resourcing and partnerships to manage and optimise the Cyber Risk landscape. Drive a proactive, predictive and continuous improvement Cyber Risks managed environment
Implement and continuously enhance an information security management framework
Develop and implement Technology Security, policies and standards that supports and enables business strategy at the strategic planning, tactical and operational business unit levels
Form and cascade a communication plan to the Technology team relating to the compliance of IT Security Policies, Standards and Guidelines. Escalating non-compliance matters to CTO
Execute Analysis & Planning Activities
Research, develop and maintain a knowledge base of the IT threat landscape, security trending, regulatory requirements, mobile and other new technologies and best practices to mitigate and plan against threats
Contribute to the organization’s overall technology planning by providing current knowledge and an understanding of future technologies
Create and manage a repository for all security related documentation.
Annual review of IT Security Policies, Standards and Guidelines according to technology objectives and update in accordance to changes in the organization and legislation
Craft a viable roadmap of activities, post collaboration with internal stakeholders, linked to the technology strategy but sequenced in alignment with organisational readiness
Implement the Design for your Area of Responsibility
Design and manage a roadmap for information security related to internal controls, compliance, regulatory and a proactive risk mitigation plan for the Technology department
Design, implement and monitor a comprehensive enterprise information security and IT risk management program in alignment with the Technology Risk strategy.
Contribute to project risk management consulting and technical reviews as required.
Cascade of the Enterprise risk framework into the Technology Risk Framework and functional area responsibilities.Provide SME guidance and consultancy in solution design and/or daily operations across the company ecosystem
Implement & Execute on activities within your area of responsibility
Build and measure business relationships with key internal and external stakeholders to proactively consult and mitigate security threats
Lead programs of work (of various complexity) pulling in necessary stakeholders to deliver agreed outcomes and measure the adoption of Technology Security solutions e.g., logical access management or e.g., IT Security risk assessments and penetration tests toward zero audit findings
Provideconsulting and engagement services to various business units in the procurement process and/or any investigative/exploratory ventures. Not limited to investigation, RFI, RFQ, selection and assessments of current technologies. Benchmark best of breed security practices
Provide a recommendation to senior management on the fit of the product/service against the company technology standards and governance
Establish relevant internal control metrics and audits to measure outcomes and performance related to security
Advise Technology business partners on regulatory, compliance (POPI, PAIA, etc) and/or legal requirements as it relates to securing of data as well as project manage internal controls to mitigate threats
Create and manage a risk register and IT risk management schedule and drive all information and technology risks to closure
Review reporting templates in relation to audience and value add adjusting and implementing new templates as need be
Compile reports/BI as per agreed frequency
Review any draft reports provided by the team, making amendments as required to be fit for distribution/submission to senior management for final review
Risk & Quality Management
Develop and maintain an internal security audit framework to implement standards toward zero downtime and zero audit findings.
Constant management of general control reviews, technical system reviews including Penetration Testing aligned to the Risk strategy of zero audit findings and material breaches
Co-ordinate and track the implementation of remediation plans in accordance with agreed upon timeframes
Management and coordination of incidents and consult with disciplinary and legal matters
Drive all internal controls to full automated controls, zero audit findings and predictive/proactive view of risks. Formulate vendor/supplier standards for information security
Contribute and fo
-
Information Security Officer
5 days ago
Johannesburg, South Africa WePlace Full timeGauteng, JHB - Northern Suburbs - Market - Related Annually Basic Salary - We have an exciting opportunity as an Information Security Officer based at our client in the Commercial Banking sector which is located in Sandton. **Role Description**: - The focus of the role will be to assess, identify and address the cyber and information security risks in the...
-
Information Security Officer
Found in: Talent ZA C2 - 3 weeks ago
Johannesburg, South Africa Telebest Full timeOur client has an EE opportunity available for an Information Security Officer based in Selby.Requirements:7 years’ experience in technology security or risk management roles of which should include:4 years in technology policy writing.4 years’ experience in designing implementing and closing technology general control gaps.3 years’ experience in...
-
Business Information Security Officer
1 day ago
Johannesburg, South Africa Nedbank Full time**Job Purpose** - The BISO must support the business cluster in the implementation and execution of the cyber resilience risk management framework that includes implementation of cyber risk assessments, strategy, cyber security programme, policies, standards, reporting of all cluster-specific cyber security programme elements and regulatory matters as it...
-
Information Security Analyst
20 hours ago
Johannesburg, South Africa K2 Human Capital Consultancy Full timeJob Description **Support Technology Transformation & Innovation in your area of responsibility** - Support with developing and maintaining Cyber Security Road Map and interventions - Support with developing company-wide best practices for Technology security - Support improving the maturity, or efficiency, of the Cyber Security team, by identifying...
-
Chief Information Security Officer
20 hours ago
Johannesburg, South Africa Hera Group Full timeAre you a visionary leader with a passion for cybersecurity and a proven track record of driving security initiatives? Hera Group, a prominent company operating across Africa, is seeking an accomplished Chief Information Security Officer (CISO) to steer our cybersecurity strategies and ensure digital resilience. **About Us**: Hera Group is a trailblazing...
-
Snr Spec: Information Security Officer
Found in: beBee S ZA - 4 weeks ago
Gauteng, Johannesburg, South Africa Liberty Group South Africa Full timeLiberty Group South Africa’s job vacancy, Career and Recruitment Job title : Snr Spec: Information Security Officer jobs in Gauteng Job Location : Gauteng, Johannesburg Deadline : May 04, 2024 Quick Recommended Links Jobs by Location Job by industries Purpose To implement a comprehensive Information Technology security program with the Information...
-
Snr Spec: Information Security Officer
Found in: beBee S ZA - 3 weeks ago
Gauteng, Johannesburg, South Africa Liberty Group South Africa Full timeLiberty Group South Africa’s job vacancy, Career and Recruitment Job title : Snr Spec: Information Security Officer jobs in Gauteng Job Location : Gauteng, Johannesburg Deadline : May 04, 2024 Quick Recommended Links Jobs by Location Job by industries Purpose To implement a comprehensive Information Technology security program with the Information...
-
Information Security Administrator
3 days ago
Johannesburg, South Africa Sanlam Full timeWho are we? Sanlam Developing Markets [SDM] (a wholly-owned subsidiary of Sanlam Life Limited) is one of the top financial services providers in the South African entry-level and emerging middle market. It aims to understand the unique requirements of clients and offers a wide range of simple and affordable financial solutions that cover needs such as...
-
Information Security Analyst
Found in: Talent ZA C2 - 3 weeks ago
Johannesburg, South Africa Telebest Full timeOur client has an opportunity available for an Information Security Analyst.Requirements:5 years’ experience within either an Information Security position or Cybersecurity, which include protection against social engineering, or security vulnerability remediation, of which:2 years’ IT administration experience.2 years’ Ethical Hacking...
-
Microsoft Windows Server Security Specialist
2 weeks ago
Johannesburg, South Africa Sabenza Information Technology Full time**Requirements**: - Design, implement, and maintain security policies and procedures for our Windows server environment - Conduct regular vulnerability assessments, penetration testing, and security audits to identify and address security risks - Monitor server logs and alerts to identify and respond to security incidents - Investigate and resolve security...
-
Information Security Analyst Iii
1 day ago
Johannesburg, South Africa Nedbank Full time**Job Classification** - **REQ: 131922 - Refilwe Falatsi**: - **Closing Date: 15 March 2024**: - **Division: Wealth Centre | Risk**: - **Employment Equity Statement: Preference will be given to Individuals from Underrepresented Groups.** - Job Family- Information Technology - Career Stream- It Risk - Leadership Pipeline- Manage Self: Expert - FAIS...
-
Information Security Engineer
Found in: Talent ZA C2 - 3 weeks ago
Johannesburg, South Africa Level-Up Full timeInformation Security Engineer will be responsible for ensuring the security of our information systems and protecting them against unauthorised access, modification, or destruction. The role involves hands-on operations with various security tools and platforms, as well as the development and implementation of secure networks and systems.Key...
-
Information Security Manager
3 days ago
Johannesburg, South Africa THE SKILLS MINE (PTY) LTD Full time**Requirements**: - Bachelor’s or Master’s degree in Information Technology or Computer Science - 5-6 years of experience in Information security Management - Minimum Certified ISO 27001 Lead Auditor/ Lead Implementer - Background in technical security roles or operations, with a clear and abiding interest in security **Responsibilities**: - Develop...
-
Information Security Manager
3 days ago
Johannesburg, South Africa Platinum Placements Full time**Key Accountabilities** - Develop and maintain robust security controls to protect Organization business from security breaches/ incidents. - Deliver Security demand from the business for security controls. - Maintain a good relationship with key stakeholders including business, other IT departments & security teams to deliver on security requirements...
-
Chief Information Security Officer
Found in: Talent ZA C2 - 5 days ago
Johannesburg, South Africa Standard Bank Group Full timeJob Description To lead global approach with technical, business, industry across geographies achieving interoperable information security partnerships securing 3rd party integration in platforms, ecosystems. To provide Information Security expertise to SBG on effective InfoSec to prevent reputational, financial losses. To lead, direct InfoSec...
-
Senior Information Security Architect
4 days ago
Johannesburg, South Africa PPS Recruitment Full time**Job Advert Summary**: The incumbent will direct, develop, maintain and implement an enterprise information security architecture aligned with the strategic and business objectives of the PPS, as well as regulatory and technical context The role will involve working with other teams in the organisation as a non-technical resource in all matters, such as...
-
Senior Information Security Manager
7 days ago
Johannesburg, South Africa Quantanite Full timeTo ensure Quantanite's Information Security Management System is maintained and the compliance of staff and policies, procedures, guidelines and standards used to support the effectiveness of the ISMS. **Key Responsibilities**: - Carry out all ISMS activities to ensure maintenance of SOC-2 type 2, ISO 27001:2005, PCI-DSS certifications at South Africa and...
-
Information Security Analyst L2
Found in: Talent ZA C2 - 3 weeks ago
Johannesburg, South Africa Telebest Full timeOur client has an EE opportunity available for an Information Security Analyst based in Selby.Requirements:5 years’ experience within either an information security position or in cybersecurity.2 years IT administration experience.2 years ethical hacking experience.Knowledge of:Cloud security platforms.Firewalls and malicious code defense.Cybersecurity...
-
Information Security Solutions Architect
3 weeks ago
Johannesburg, South Africa A 1L Realization (Pty) Ltd Full time**Skills required** - Security architecture - Information security solutions. - At least 3 years experience within a non-traditional FinTech, Banking, Financial Services or Telecommunication sector - Security Products - information Security Architect - Mobile Network Security, Hardware Configuration, Network Protocols, Networking Standards, Windows, Linux...
-
Information Security Analyst L1
Found in: Talent ZA C2 - 3 weeks ago
Johannesburg, South Africa Telebest Full timeOur client has an EE opportunity available for an Information Security Analyst based in Selby.Requirements:Bachelor’s degree in information security or a similar field.Industry certifications.Knowledge of:Cloud security platforms.Firewalls and malicious code defense.Cybersecurity technical assignments, standards, tools and processes.Common attack...