Specialist: Cyber Secure By Design
2 weeks ago
**Role purpose**:
The primary purpose of the role is to work within a team of Secure by Design specialists, in collaboration with the Privacy and Business Risk Teams to Perform Secure by Design Assessments against Vodacom policies and standards. In performing this role you will
Identify potential cyber security risks for new products, services and operations and identify controls to minimise, mitigate or remove those privacy and security risks;
Review Design and implementation of the identified controls to ensure they are built into the product (at Design & Build stages);
Provide assurance that privacy and security controls have been implemented before the product goes “live” and product complies with Vodacom/Vodafone Security requirements and applicable laws (at Test & Go-Live stages);
Assess security and privacy risks arising from changes to existing live products that impact the processing of personal data (In-Life); and
Ensuring security and privacy risks are addressed when decommissioning these products (Decommissioning).
You will also be required to drive the delivery of Cyber Security strategy and maturity improvement or risk reduction initiatives into the business unit(s) to which you will be assigned, monitor progress against agreed targets with the objective of safeguarding Vodacom Infrastructure and customer data from Cyber threat actors. This roles will involve working with Busines unit, Cyber and IT stakeholders in Vodacom South Africa to drive out Cyber Security baseline requirements - Some of these responsibilities may extend to collaboration with Group Cyber Security and other operating companies to ensure that cyber security controls are consistently applied across markets.
**Your responsibilities will include**:
Provide technology security assurance, guidance, and support to high-profile projects,
Ensure security is embedded in IT Systems and Network Infrastructure (Mobile, IS and Enterprise) across the Vodacom Group
Defining, implementing, and efficiently maintaining technology security controls and requirements
Ensure timely delivery of technology security assurance and support for projects, products and services.
Ensure compliance with Legal and Regulatory requirements
Support Technology Security awareness programs and educational efforts within the business unit to which you are asssigned
Provide accurate and timely reporting of technology security risks identified during secure by design assessments, project engagement and propose remediation and mitigation options in line with policy and good practice
Fulfil key customers’ obligations and stakeholders’ expectation
Ensure financial efficiency in Tech Security Solutions
Ensure compliance with the applicable legislative and regulatory interpretation and corporate risk appetite;
Engage with the stakeholders on compliance to control effectiveness and deficiencies in the design and operating effectiveness of information security controls, design and recommend opportunities for continuous improvement;
Manage and conduct formal information security risk analyses, reviews, tests, audits and/or self-assessments;
Design appropriate remedial actions for identified risks, drive remediation of findings and management of risks and exemptions;
Assist to compile a report of information security risks in an appropriate way for different audiences;
Develop, manage and maintain an information security incident management capability;
Collaborate with various key stakeholders, and provide information security advice to stakeholders
Together with CSO team advise on Security decisions for the Agile Team to which you have been assigned and guide the identified Security Champions to imbed security within the CI/CD pipeline.
**This will include coaching or guiding them**:
Coach identified Security Champions to gain practical cyber and devsecops understanding and knowledge
Coach Product Owners and all team members on the importance of security requirements
Support product and service development with Secure by Design expertise
Alert Cyber Security to security incidents following Vodafone Standards for reporting.
Report on risk and compliance levels for relevant product and services
Provide input into the definition of the Secure by Design blueprints, patterns and design principles to support product and service development
Give teams recommendations for remediation of vulnerabilities or weaknesses in products or services
Organise chapter meetings/scrums with Security Champions using Agile tool sets and report back to Manager Cyber Secure by Design.
Converts security requirements into stories based on needs.
Give overall guidance on different security activities across Agile teams
3-year Technical Diploma/Degree in Information Security, Computer Science or Engineering
An industry certification. The CISSP is strongly preferred, however OSCP, CISM, CISA or other relevant certifications will be considered.
Minimum of 3-5 years of experience in Tech Sec
-
Cyber Security Specialist
2 weeks ago
Midrand, South Africa TalentCru Full timeOur Client in the Telecommunications industry is hiring for a Cyber Security Specialist as an Independent Contractor for 12 months. This role will allow you to gain experience in working with one of the largest telecommunications companies in South Africa. The ideal candidate to come from or worked with clients in the : Financial Services /...
-
Cyber Security Specialist
2 weeks ago
Midrand, South Africa TalentCru Full timeOur Client in the Telecommunications industry is hiring for a Cyber Security Specialist as an Independent Contractor for 12 months. This role will allow you to gain experience in working with one of the largest telecommunications companies in South Africa.The ideal candidate to come from or worked with clients in the : Financial Services /...
-
Cyber Security Specialist
1 week ago
Midrand, South Africa Adzuna ZA B C2 Full timeOur Client in the Telecommunications industry is hiring for a Cyber Security Specialist as an Independent Contractor for 12 months. This role will allow you to gain experience in working with one of the largest telecommunications companies in South Africa.The ideal candidate to come from or worked with clients in the : Financial Services /...
-
Principal Specialist Cyber Security
2 weeks ago
Midrand, South Africa TalentCru Full timeOur company in the telecommunication industry is seeking an experienced and highly skilled Cyber Security Principal Lead or Specialist to oversee our cyber security strategies and initiatives within the financial services, insurance, and lending sector. The ideal candidate should have a deep understanding of cyber security practices and trends and possess...
-
Principal Specialist Cyber Security
1 week ago
Midrand, South Africa Adzuna ZA B C2 Full timeOur company in the telecommunication industry is seeking an experienced and highly skilled Cyber Security Principal Lead or Specialist to oversee our cyber security strategies and initiatives within the financial services, insurance, and lending sector. The ideal candidate should have a deep understanding of cyber security practices and trends and possess...
-
Principal Specialist Cyber Security
2 weeks ago
Midrand, South Africa TalentCru Full timeOur company in the telecommunication industry is seeking an experienced and highly skilled Cyber Security Principal Lead or Specialist to oversee our cyber security strategies and initiatives within the financial services, insurance, and lending sector. The ideal candidate should have a deep understanding of cyber security practices and trends and possess...
-
Principal Specialist: Cyber Security
2 weeks ago
Midrand, South Africa A 1L Realization (Pty) Ltd Full timeDesirable:An industry certification e.g. ISO 27001 Lead practitioner, DEVSECOPS, CCSP CGEIT, CRISC, CISA, CISM and CISSP is strongly preferred. Requirements:Degree\Relevant tertiary qualification in Information technology and Minimum of 8 + years of experience in Cyber Security role where you meet business deliverables. At least 8+ years experience in cyber...
-
Principal Specialist: Cyber Security
2 weeks ago
Midrand, South Africa A 1L Realization (Pty) Ltd Full timeDesirable:An industry certification e.g. ISO 27001 Lead practitioner, DEVSECOPS, CCSP CGEIT, CRISC, CISA, CISM and CISSP is strongly preferred.Requirements:Degree\Relevant tertiary qualification in Information technology and Minimum of 8 + years of experience in Cyber Security role where you meet business deliverables.At least 8+ years experience in cyber...
-
Principal Specialist: Cyber Security
1 week ago
Midrand, South Africa Adzuna ZA B C2 Full timeDesirable:An industry certification e.g. ISO 27001 Lead practitioner, DEVSECOPS, CCSP CGEIT, CRISC, CISA, CISM and CISSP is strongly preferred.Requirements:Degree\Relevant tertiary qualification in Information technology and Minimum of 8 + years of experience in Cyber Security role where you meet business deliverables.At least 8+ years experience in cyber...
-
Cyber Security Specialist
3 weeks ago
Midrand, South Africa Gijima Holdings Full timeEXPERIENCE: + 10 years experience in IT industry + 5 years experience in Technical Information Security positions Alignment and experience with good practices essential (CoBIT, ISO17799 or equivalent) Understanding of network protocols, cryptography, operating systems, and security tools is essential The ability to analyze data, identify patterns, and draw...
-
Cyber Security Specialist
3 weeks ago
Midrand, South Africa Gijima Holdings Full timeEXPERIENCE:+ 10 years experience in IT industry+ 5 years experience in Technical Information Security positionsAlignment and experience with good practices essential (CoBIT, ISO17799 or equivalent)Understanding of network protocols, cryptography, operating systems, and security tools is essentialThe ability to analyze data, identify patterns, and draw...
-
Cyber Security Specialist
3 weeks ago
Midrand, South Africa Adzuna ZA B C2 Full timeEXPERIENCE:+ 10 years experience in IT industry+ 5 years experience in Technical Information Security positionsAlignment and experience with good practices essential (CoBIT, ISO17799 or equivalent)Understanding of network protocols, cryptography, operating systems, and security tools is essentialThe ability to analyze data, identify patterns, and draw...
-
Senior Specialist Data Security
4 weeks ago
Midrand, South Africa Vodafone Full time**Role purpose**: **Your responsibilities will include**: Provide supervisory technology security operations and support to high profile projects, Ensure security is embedded in IT System and Network Infrastructure (Mobile, IS and Enterprise) across the Vodacom Group Support Cyber Incident Response actions. Defining, implementing and efficiently maintaining...
-
Cyber Security Specialist
3 weeks ago
Midrand, South Africa Gijima Holdings Full timeRESPONSIBILITIES: Administration of Vulnerability Management Security Solutions and researching, designing & developing additional protection technologies Installation, management & support of the following Products: Tenable.IO and associated products and Qualys and associated products Presenting vulnerabilities in client meetings at a CIO/CEO level Keeping...
-
Cyber Security Specialist
4 weeks ago
Midrand, South Africa Gijima Holdings Full timeRESPONSIBILITIES:Administration of Vulnerability Management Security Solutions and researching, designing & developing additional protection technologiesInstallation, management & support of the following Products: Tenable.IO and associated products and Qualys and associated productsPresenting vulnerabilities in client meetings at a CIO/CEO levelKeeping...
-
Senior Specialist: Data Security
4 weeks ago
Midrand, South Africa Vodafone Full time**Role purpose**: **Your responsibilities will include**: Provide supervisory technology security operations and support to high profile projects, Ensure security is embedded in IT System and Network Infrastructure (Mobile, IS and Enterprise) across the Vodacom Group Defining, implementing and efficiently maintaining technology security controls and...
-
Group Product Manager: Cloud
4 weeks ago
Midrand, South Africa Vodafone Full time**.**: **When it comes to putting people first, we're number 1.** The number 1 Top Employer in South Africa. Certified by the Top Employer Institute 2024. **Role Purpose/Business Unit**: - Responsible for Product strategy and support to Vodacom Group EBU and the 8 African operating companies by providing domain speciality for Cloud, Hosting and Cyber...
-
Senior Specialist: Cybersecurity Analyst
6 days ago
Midrand, South Africa Nexio Full time**ROLE PURPOSE** As part of the Customer-facing Nexio SOC team, the Senior Specialist: Cybersecurity Analyst plays a critical role in monitoring, detecting, and responding to cybersecurity incidents within a Security Operations Center. The Cybersecurity Analyst utilizes incident handling methodologies to validate security events, assess severity levels, and...
-
Senior Specialist: Security Technology
1 month ago
Midrand, South Africa Vodafone Full time**Role purpose**: The Security Technology specialist will lead the Division to optimize all security technology within the complex environment in which it operates. The Specialist Security Technology will be responsible to lead a team of technical staff (outsourced function) across all regions. The Specialist Security Technology will manage and report on all...
-
Principal Specialist: Digital Transformation
4 weeks ago
Midrand, South Africa Vodafone Full time**Role Purpose/Business Unit**: Are you ready to join Vodacom’s exciting world of Digital IT and become part of a high performing, dynamic technology team? With our customers at the heart of our purpose, you will be part of the evolution of our IT technology landscape, harnessing the latest technical innovations available.The role of a Principal Specialist...
