Information Security Administrator

About us, purpose, experience and qualifications

**about us**:

- make a promise
- be deeply invested
- value our differences
- build trust, not territory
- have courage
- always do the right thing

**purpose**:

- To assist in identifying, defining and maintaining the information security policy and base line standards for FNB**experience and qualifications**:

- Grade 12
- BCom Informatics / BSc or CISSP / CISA is an advantage
- 3-5 years working experience**additional requirements**:

- 2 to 4 years’ experience in Cryptography related infrastructure, experience in supporting Hardware Security Infrastructure and experience in Security technology and processes
- 2 to 4 years’ experience in Cryptography related infrastructure, experience in supporting Hardware Security Infrastructure and experience in Security technology and processes Experience in the following:

- Public Key Infrastructure concepts and practices
- Key management and Cryptography administration, and support experience.
- Cryptographic process and concepts (symmetric/asymmetric cryptography, secure hash, digital signatures)
- Monitoring processes
- Business Continuity Planning
- Regulatory and mandatory standards.
- Various Cryptography Hardware
- Understanding of symmetric and asymmetric algorithms
- Good understanding of security strategies and technologies including secure network design, server hardening, secure web services, compliance auditing, secure software development lifecycles, security monitoring, and encryption
- Demonstrable good knowledge of one or more Cryptography platforms or networking
- Previous experience of working in an information security, engineering or project delivery function
- Knowledgeable about existing best practices for integration of security controls
- Able to make technology recommendations supported by documented results of vendor product assessments and technical evaluations.
- Stays informed on security vendors, specific product histories, trends and directions.
- Able to work independently with limited management oversight, but with sufficient experience to know when to escalate issues or concerns
- Work with the business and project team(s) to ensure residual risks are adequately mitigated to the degree that meets the risk appetite of the business
- Public Key Infrastructure concepts and practices
- Key management and Cryptography administration, and support experience.
- Cryptographic process and concepts (symmetric/asymmetric cryptography, secure hash, digital signatures)
- Monitoring processes
- Business Continuity Planning
- Regulatory and mandatory standards.
- Various Cryptography Hardware
- Understanding of symmetric and asymmetric algorithms
- Good understanding of security strategies and technologies including secure network design, server hardening, secure web services, compliance auditing, secure software development lifecycles, security monitoring, and encryption
- Demonstrable good knowledge of one or more Cryptography platforms or networking
- Previous experience of working in an information security, engineering or project delivery function
- Knowledgeable about existing best practices for integration of security controls
- Able to make technology recommendations supported by documented results of vendor product assessments and technical evaluations.
- Stays informed on security vendors, specific product histories, trends and directions.
- Able to work independently with limited management oversight, but with sufficient experience to know when to escalate issues or concerns
- Work with the business and project team(s) to ensure residual risks are adequately mitigated to the degree that meets the risk appetite of the business