Specialist: Cyber Secure By Design

3 weeks ago

Midrand, South Africa Vodafone Full time

**Role purpose**:
The primary purpose of the role is to work within a team of Secure by Design and Security Architecture specialists, in collaboration with the Privacy and Business Risk Teams to Perform Secure by Design Assessments against Vodacom policies and standards.

**Your responsibilities will include**:
Provide technology security assurance, guidance and support to high profile projects,
Ensure security is embedded in IT System and Network Infrastructure (Mobile, IS and Enterprise) across the Vodacom Group
Defining, implementing, and efficiently maintaining technology security controls and requirements
Ensure timely delivery of technology security assurance and support for projects, products and services.
Ensure compliance with Legal and Regulatory requirements
Support Technology Security awareness programs and educational efforts within the business unit to which you are asssigned
Provide accurate and timely reporting of technology security risks identified during secure by design assessments, project engagement and propose remediation and mitigation options in line with policy and good practice
Fulfil key customers’ obligations and stakeholders’ expectation
Ensure financial efficiency in Tech Security Solutions
Ensure compliance with the applicable legislative and regulatory interpretation and corporate risk appetite;
Engage with the stakeholders on compliance to control effectiveness and deficiencies in the design and operating effectiveness of information security controls, design and recommend opportunities for continuous improvement;
Manage and conduct formal information security risk analyses, reviews, tests, audits and/or self-assessments;
Design appropriate remedial actions for identified risks, drive remediation of findings and management of risks and exemptions;
Assist to compile a report of information security risks in an appropriate way for different audiences;
Develop, manage and maintain an information security incident management capability;
Collaborate with various key stakeholders, and provide information security advice to stakeholders

**Technical / professional requirements**:
3 year Technical Diploma/Degree in Information Security, Computer Science or Engineering
An industry certification. The CISSP is strongly preferred, however CCSP, OSCP, CISM, CISA or other relevant certifications will be considered. Security/IT Architecture qualifications such as SABSA, TOGAF etc and relevant security architecture experience will be an added advantage
Minimum of 3-5 years of experience in Cyber Security role
Knowledge of common information technology management / compliance frameworks such as ISO/IEC 27001, NIST CSF, ISF, PCI DSS, OWASP, SANS etc.
A deep understanding of Technology Security risks and mitigating solutions
A diverse security background with knowledge and experience in three or more of the Security Domains including: Security Assessment and Testing; Software Development Security; Security Governance and Risk Management; Security Architecture and Engineering; Communication and Network Security; Identity and Access Management; Security Operations; Asset Security.
Specialist experience in Either DevSecOps, Application Security, Security Architecture or Offensive Security will be an added advantage.

**Core competencies, knowledge and experience**:
Knowledge of operating systems such as Windows and Linux and how to secure them
Knowledge of and/ or experience in creating and managing DevSecOps pipelines practicing CSA, SAST, DAST, and Security as Code will be an added advantage
Be well-versed in at least one of the programming languages like Java, PHP, Python, Ruby, and Perl so as to collaborate competently with software engineering teams within the organization to identify and implement opportunities for improvement and automation in the CI/CD pipeline.
Knowledge of Cloud and container technologies such as AWS/GCP/Azure, Docker, Kubernetes, and how to implement developer tools such as GitHub and Dependency management will be an added advantage.
Knowledge of configuration management tools such as Chef, Puppet, and Ansible will be an added benefit.
Ability to work under time and resource pressure.
An ability and desire to collaborate and communicate with a broad set of stakeholders.
A customer-focused, responsive, and transparent attitude

Closing date for Applications**:30 April 2023.**

The base location for this role is **Midrand, Vodacom Campus**

The Company’s approved Employment Equity Plan and Targets will be considered as part of the recruitment process. As an Equal Opportunities employer, we actively encourage and welcome people with various disabilities to apply.
Vodacom is committed to an organisational culture that recognises, appreciates and values diversity & inclusion.

  • Cyber Security Specialist

    1 week ago

    Midrand, South Africa TalentCru Full time

    Our Client in the Telecommunications industry is hiring for a Cyber Security Specialist as an Independent Contractor for 12 months. This role will allow you to gain experience in working with one of the largest telecommunications companies in South Africa.The ideal candidate to come from or worked with clients in the  : Financial Services /...

  • Cyber Security Specialist

    1 week ago

    Midrand, South Africa TalentCru Full time

    Our Client in the Telecommunications industry is hiring for a Cyber Security Specialist as an Independent Contractor for 12 months. This role will allow you to gain experience in working with one of the largest telecommunications companies in South Africa. The ideal candidate to come from or worked with clients in the  : Financial Services /...

  • Cyber Security Specialist

    1 week ago

    Midrand, South Africa Adzuna ZA B C2 Full time

    Our Client in the Telecommunications industry is hiring for a Cyber Security Specialist as an Independent Contractor for 12 months. This role will allow you to gain experience in working with one of the largest telecommunications companies in South Africa.The ideal candidate to come from or worked with clients in the : Financial Services /...

  • Principal Specialist Cyber Security

    1 week ago

    Midrand, South Africa TalentCru Full time

    Our company in the telecommunication industry is seeking an experienced and highly skilled Cyber Security Principal Lead or Specialist to oversee our cyber security strategies and initiatives within the financial services, insurance, and lending sector. The ideal candidate should have a deep understanding of cyber security practices and trends and possess...

  • Principal Specialist Cyber Security

    1 week ago

    Midrand, South Africa TalentCru Full time

    Our company in the telecommunication industry is seeking an experienced and highly skilled Cyber Security Principal Lead or Specialist to oversee our cyber security strategies and initiatives within the financial services, insurance, and lending sector. The ideal candidate should have a deep understanding of cyber security practices and trends and possess...

  • Principal Specialist Cyber Security

    1 week ago

    Midrand, South Africa Adzuna ZA B C2 Full time

    Our company in the telecommunication industry is seeking an experienced and highly skilled Cyber Security Principal Lead or Specialist to oversee our cyber security strategies and initiatives within the financial services, insurance, and lending sector. The ideal candidate should have a deep understanding of cyber security practices and trends and possess...

  • Principal Specialist Cyber Security Grc

    6 days ago

    Midrand, South Africa Vodafone Full time

    **Role purpose**: Defining Cyber Governance, Risk & Compliance to: To lead the ongoing evaluation of security policies, and relevant standards and support the continuous improvement of the security governance program. To ensure that comprehensive Information Security Risk management programs are established. Ensure the alignment of Information Security Risk...

  • Cyber Security Specialist

    2 weeks ago

    Midrand, South Africa Network Contracting Full time

    **Role Purpose**: The purpose of the role is to manage and lead the Technology Security Cyber Security Baseline Assurance. To further provide security assurance, guidance and support to high profile projects according to company defined policies and requirements, best practice and local/international standards (PCI, SOX, ISO27001, GDPR, POPIA and Cyber Crime...

  • Principal Specialist: Cyber Security

    1 week ago

    Midrand, South Africa A 1L Realization (Pty) Ltd Full time

    Desirable:An industry certification e.g. ISO 27001 Lead practitioner, DEVSECOPS, CCSP CGEIT, CRISC, CISA, CISM and CISSP is strongly preferred.Requirements:Degree\Relevant tertiary qualification in Information technology and Minimum of 8 + years of experience in Cyber Security role where you meet business deliverables.At least 8+ years experience in cyber...

  • Principal Specialist: Cyber Security

    1 week ago

    Midrand, South Africa A 1L Realization (Pty) Ltd Full time

    Desirable:An industry certification e.g. ISO 27001 Lead practitioner, DEVSECOPS, CCSP CGEIT, CRISC, CISA, CISM and CISSP is strongly preferred. Requirements:Degree\Relevant tertiary qualification in Information technology and Minimum of 8 + years of experience in Cyber Security role where you meet business deliverables. At least 8+ years experience in cyber...

  • Principal Specialist: Cyber Security

    1 week ago

    Midrand, South Africa Adzuna ZA B C2 Full time

    Desirable:An industry certification e.g. ISO 27001 Lead practitioner, DEVSECOPS, CCSP CGEIT, CRISC, CISA, CISM and CISSP is strongly preferred.Requirements:Degree\Relevant tertiary qualification in Information technology and Minimum of 8 + years of experience in Cyber Security role where you meet business deliverables.At least 8+ years experience in cyber...

  • Senior Specialist: Cyber Security

    3 weeks ago

    Midrand, South Africa Vodafone Full time

    **Role purpose**: **Your responsibilities will include**: Provide supervisory technology security assurance, guidance, and support to the Vodacom Group. Assure that security is embedded in IT systems and Network Infrastructure (Mobile, IS, and Enterprise) across the Vodacom Group. Defining, implementing, and efficiently maintaining technology security...

  • Senior Specialist:cyber Security Officer

    6 days ago

    Midrand, South Africa Vodafone Full time

    **Role purpose**: The primary purpose of the role is to work within a team of Secure by Design and Security Architecture professionals, in collaboration with the Privacy and Business Risk Teams to Perform Secure by Design Assessments against Vodacom policies and standards. **In performing this role you will**: Identify potential cyber security risks for new...

  • Cyber Security Specialist

    2 weeks ago

    Midrand, South Africa Gijima Holdings Full time

    EXPERIENCE:+ 10 years experience in IT industry+ 5 years experience in Technical Information Security positionsAlignment and experience with good practices essential (CoBIT, ISO17799 or equivalent)Understanding of network protocols, cryptography, operating systems, and security tools is essentialThe ability to analyze data, identify patterns, and draw...

  • Cyber Security Specialist

    2 weeks ago

    Midrand, South Africa Adzuna ZA B C2 Full time

    EXPERIENCE:+ 10 years experience in IT industry+ 5 years experience in Technical Information Security positionsAlignment and experience with good practices essential (CoBIT, ISO17799 or equivalent)Understanding of network protocols, cryptography, operating systems, and security tools is essentialThe ability to analyze data, identify patterns, and draw...

  • Cyber Security Specialist

    2 weeks ago

    Midrand, South Africa Gijima Holdings Full time

    EXPERIENCE: + 10 years experience in IT industry + 5 years experience in Technical Information Security positions Alignment and experience with good practices essential (CoBIT, ISO17799 or equivalent) Understanding of network protocols, cryptography, operating systems, and security tools is essential The ability to analyze data, identify patterns, and draw...

  • Senior Specialist Data Security

    6 days ago

    Midrand, South Africa Vodafone Full time

    **Role purpose**: **Your responsibilities will include**: Provide supervisory technology security operations and support to high profile projects, Ensure security is embedded in IT System and Network Infrastructure (Mobile, IS and Enterprise) across the Vodacom Group Support Cyber Incident Response actions. Defining, implementing and efficiently maintaining...

  • Specialist Data Security

    6 days ago

    Midrand, South Africa Vodafone Full time

    **Role purpose**: **Your responsibilities will include**: Ensure security is embedded in IT System and Network Infrastructure (Mobile, IS and Enterprise) across the Vodacom Group Defining, implementing and efficiently maintaining technology security controls and requirements Ensure timely delivery of technology security assurance and support for...

  • Cybersecurity Incident Management Specialist

    6 days ago

    Midrand, South Africa Nexio Full time

    **ROLE PURPOSE** As part of the Customer-facing Nexio SOC team, the Cybersecurity Incident Management Specialist is a crucial role within an organization's cybersecurity team. The primary responsibility of the Cybersecurity Incident Management Specialist is to detect, respond to, investigate, and mitigate cyber threats and incidents that occur within the...

  • Senior Information Security Manager

    6 days ago

    Midrand, South Africa StaffCentral Consulting Full time

    **Job Duties/Responsibilities will include**: Facilitate risk assessments to assess and mitigate the identified vulnerabilities at all OT environments Develop OT policies and procedures to help customers reduce the risk of a security breach at an installation and sustain OT safety and security Work closely with both the Cyber Risk Team, Group Internal...