Specialist: Cyber Secure By Design

2 weeks ago

Midrand, South Africa Vodafone Full time

**Role purpose**:
The primary purpose of the role is to work within a team of Secure by Design and Security Architecture specialists, in collaboration with the Privacy and Business Risk Teams to Perform Secure by Design Assessments against Vodacom policies and standards.

**In performing this **role,** you will**:
Identify potential cyber security risks for new products, services and operations and identify controls to minimise, mitigate or remove those privacy and security risks;
Review Design and implementation of the identified controls to ensure they are built into the product (at Design & Build stages);
Provide assurance that privacy and security controls have been implemented before the product goes “live” and product complies with Vodacom/Vodafone Security requirements and applicable laws (at Test & Go-Live stages);
Assess security and privacy risks arising from changes to existing live products that impact the processing of personal data (In-Life); and
Ensuring security and privacy risks are addressed when decommissioning these products (Decommissioning).

You will also be required to drive the delivery of Cyber Security strategy and maturity improvement or risk reduction initiatives into the business unit(s) to which you will be assigned, monitor progress against agreed targets with the objective of safeguarding Vodacom Infrastructure and customer data from Cyber threat actors. This role will involve working with Busines unit, Cyber and IT stakeholders in Vodacom South Africa to drive out Cyber Security baseline requirements - Some of these responsibilities may extend to collaboration with Group Cyber Security and other operating companies to ensure that cyber security controls are consistently applied across markets.

**Your responsibilities will include**:
Provide technology security assurance, guidance and support to high profile projects,
Ensure security is embedded in IT System and Network Infrastructure (Mobile, IS and Enterprise) across the Vodacom Group
Defining, implementing, and efficiently maintaining technology security controls and requirements
Ensure timely delivery of technology security assurance and support for projects, products and services.
Ensure compliance with Legal and Regulatory requirements
Support Technology Security awareness programs and educational efforts within the business unit to which you are asssigned
Provide accurate and timely reporting of technology security risks identified during secure by design assessments, project engagement and propose remediation and mitigation options in line with policy and good practice
Fulfil key customers’ obligations and stakeholders’ expectation
Ensure financial efficiency in Tech Security Solutions
Ensure compliance with the applicable legislative and regulatory interpretation and corporate risk appetite;
Engage with the stakeholders on compliance to control effectiveness and deficiencies in the design and operating effectiveness of information security controls, design and recommend opportunities for continuous improvement;
Manage and conduct formal information security risk analyses, reviews, tests, audits and/or self-assessments;
Design appropriate remedial actions for identified risks, drive remediation of findings and management of risks and exemptions;
Assist to compile a report of information security risks in an appropriate way for different audiences;
Develop, manage and maintain an information security incident management capability;
Collaborate with various key stakeholders, and provide information security advice to stakeholders

Together with CSO team advise on Security decisions for the Agile Team to which you have been assigned and guide the identified Security Champions to imbed security within the CI/CD pipeline. This will include coaching or guiding them:
Coach identified Security Champions to gain practical cyber and devsecops understanding and knowledge
Coach Product Owners and all team members on the importance of security requirements
Support product and service development with Secure by Design expertise
Alert Cyber Security to security incidents following Vodafone Standards for reporting.
Report on risk and compliance levels for relevant product and services
Provide input into the definition of the Secure by Design blueprints, patterns and design principles to support product and service development
Give teams recommendations for remediation of vulnerabilities or weaknesses in products or services
Organise chapter meetings/scrums with Security Champions using Agile tool sets and report back to Manager Cyber Secure by Design.
Convert security requirements into stories based on needs.
Give overall guidance on different security activities across Agile teams

3 year Technical Diploma/Degree in Information Security, Computer Science or Engineering
An industry certification. The CISSP is strongly preferred, however CCSP, OSCP, CISM, CISA or other relevant certifications will be considered. Security/IT

  • Cyber Security Specialist

    1 week ago

    Midrand, South Africa TalentCru Full time

    Our Client in the Telecommunications industry is hiring for a Cyber Security Specialist as an Independent Contractor for 12 months. This role will allow you to gain experience in working with one of the largest telecommunications companies in South Africa.The ideal candidate to come from or worked with clients in the  : Financial Services /...

  • Cyber Security Specialist

    1 week ago

    Midrand, South Africa TalentCru Full time

    Our Client in the Telecommunications industry is hiring for a Cyber Security Specialist as an Independent Contractor for 12 months. This role will allow you to gain experience in working with one of the largest telecommunications companies in South Africa. The ideal candidate to come from or worked with clients in the  : Financial Services /...

  • Cyber Security Specialist

    1 week ago

    Midrand, South Africa Adzuna ZA B C2 Full time

    Our Client in the Telecommunications industry is hiring for a Cyber Security Specialist as an Independent Contractor for 12 months. This role will allow you to gain experience in working with one of the largest telecommunications companies in South Africa.The ideal candidate to come from or worked with clients in the : Financial Services /...

  • Principal Specialist Cyber Security

    1 week ago

    Midrand, South Africa TalentCru Full time

    Our company in the telecommunication industry is seeking an experienced and highly skilled Cyber Security Principal Lead or Specialist to oversee our cyber security strategies and initiatives within the financial services, insurance, and lending sector. The ideal candidate should have a deep understanding of cyber security practices and trends and possess...

  • Principal Specialist Cyber Security

    1 week ago

    Midrand, South Africa TalentCru Full time

    Our company in the telecommunication industry is seeking an experienced and highly skilled Cyber Security Principal Lead or Specialist to oversee our cyber security strategies and initiatives within the financial services, insurance, and lending sector. The ideal candidate should have a deep understanding of cyber security practices and trends and possess...

  • Principal Specialist Cyber Security

    1 week ago

    Midrand, South Africa Adzuna ZA B C2 Full time

    Our company in the telecommunication industry is seeking an experienced and highly skilled Cyber Security Principal Lead or Specialist to oversee our cyber security strategies and initiatives within the financial services, insurance, and lending sector. The ideal candidate should have a deep understanding of cyber security practices and trends and possess...

  • Principal Specialist Cyber Security Grc

    6 days ago

    Midrand, South Africa Vodafone Full time

    **Role purpose**: Defining Cyber Governance, Risk & Compliance to: To lead the ongoing evaluation of security policies, and relevant standards and support the continuous improvement of the security governance program. To ensure that comprehensive Information Security Risk management programs are established. Ensure the alignment of Information Security Risk...

  • Cyber Security Specialist

    2 weeks ago

    Midrand, South Africa Network Contracting Full time

    **Role Purpose**: The purpose of the role is to manage and lead the Technology Security Cyber Security Baseline Assurance. To further provide security assurance, guidance and support to high profile projects according to company defined policies and requirements, best practice and local/international standards (PCI, SOX, ISO27001, GDPR, POPIA and Cyber Crime...

  • Principal Specialist: Cyber Security

    1 week ago

    Midrand, South Africa A 1L Realization (Pty) Ltd Full time

    Desirable:An industry certification e.g. ISO 27001 Lead practitioner, DEVSECOPS, CCSP CGEIT, CRISC, CISA, CISM and CISSP is strongly preferred.Requirements:Degree\Relevant tertiary qualification in Information technology and Minimum of 8 + years of experience in Cyber Security role where you meet business deliverables.At least 8+ years experience in cyber...

  • Principal Specialist: Cyber Security

    1 week ago

    Midrand, South Africa A 1L Realization (Pty) Ltd Full time

    Desirable:An industry certification e.g. ISO 27001 Lead practitioner, DEVSECOPS, CCSP CGEIT, CRISC, CISA, CISM and CISSP is strongly preferred. Requirements:Degree\Relevant tertiary qualification in Information technology and Minimum of 8 + years of experience in Cyber Security role where you meet business deliverables. At least 8+ years experience in cyber...

  • Principal Specialist: Cyber Security

    1 week ago

    Midrand, South Africa Adzuna ZA B C2 Full time

    Desirable:An industry certification e.g. ISO 27001 Lead practitioner, DEVSECOPS, CCSP CGEIT, CRISC, CISA, CISM and CISSP is strongly preferred.Requirements:Degree\Relevant tertiary qualification in Information technology and Minimum of 8 + years of experience in Cyber Security role where you meet business deliverables.At least 8+ years experience in cyber...

  • Senior Specialist: Cyber Security

    3 weeks ago

    Midrand, South Africa Vodafone Full time

    **Role purpose**: **Your responsibilities will include**: Provide supervisory technology security assurance, guidance, and support to the Vodacom Group. Assure that security is embedded in IT systems and Network Infrastructure (Mobile, IS, and Enterprise) across the Vodacom Group. Defining, implementing, and efficiently maintaining technology security...

  • Senior Specialist:cyber Security Officer

    6 days ago

    Midrand, South Africa Vodafone Full time

    **Role purpose**: The primary purpose of the role is to work within a team of Secure by Design and Security Architecture professionals, in collaboration with the Privacy and Business Risk Teams to Perform Secure by Design Assessments against Vodacom policies and standards. **In performing this role you will**: Identify potential cyber security risks for new...

  • Cyber Security Specialist

    2 weeks ago

    Midrand, South Africa Gijima Holdings Full time

    EXPERIENCE:+ 10 years experience in IT industry+ 5 years experience in Technical Information Security positionsAlignment and experience with good practices essential (CoBIT, ISO17799 or equivalent)Understanding of network protocols, cryptography, operating systems, and security tools is essentialThe ability to analyze data, identify patterns, and draw...

  • Cyber Security Specialist

    2 weeks ago

    Midrand, South Africa Gijima Holdings Full time

    EXPERIENCE: + 10 years experience in IT industry + 5 years experience in Technical Information Security positions Alignment and experience with good practices essential (CoBIT, ISO17799 or equivalent) Understanding of network protocols, cryptography, operating systems, and security tools is essential The ability to analyze data, identify patterns, and draw...

  • Cyber Security Specialist

    2 weeks ago

    Midrand, South Africa Adzuna ZA B C2 Full time

    EXPERIENCE:+ 10 years experience in IT industry+ 5 years experience in Technical Information Security positionsAlignment and experience with good practices essential (CoBIT, ISO17799 or equivalent)Understanding of network protocols, cryptography, operating systems, and security tools is essentialThe ability to analyze data, identify patterns, and draw...

  • Senior Specialist Data Security

    6 days ago

    Midrand, South Africa Vodafone Full time

    **Role purpose**: **Your responsibilities will include**: Provide supervisory technology security operations and support to high profile projects, Ensure security is embedded in IT System and Network Infrastructure (Mobile, IS and Enterprise) across the Vodacom Group Support Cyber Incident Response actions. Defining, implementing and efficiently maintaining...

  • Senior Specialist Data Security

    4 weeks ago

    Midrand, South Africa Vodafone Full time

    **Role purpose**: **Your responsibilities will include**: Provide supervisory technology security operations and support to high profile projects, Ensure security is embedded in IT System and Network Infrastructure (Mobile, IS and Enterprise) across the Vodacom Group Support Cyber Incident Response actions. Defining, implementing and efficiently maintaining...

  • Specialist Data Security

    6 days ago

    Midrand, South Africa Vodafone Full time

    **Role purpose**: **Your responsibilities will include**: Ensure security is embedded in IT System and Network Infrastructure (Mobile, IS and Enterprise) across the Vodacom Group Defining, implementing and efficiently maintaining technology security controls and requirements Ensure timely delivery of technology security assurance and support for...

  • Cybersecurity Incident Management Specialist

    6 days ago

    Midrand, South Africa Nexio Full time

    **ROLE PURPOSE** As part of the Customer-facing Nexio SOC team, the Cybersecurity Incident Management Specialist is a crucial role within an organization's cybersecurity team. The primary responsibility of the Cybersecurity Incident Management Specialist is to detect, respond to, investigate, and mitigate cyber threats and incidents that occur within the...