Specialist: Cyber Security

**_ Equity Statement :Preference will be given to suitably qualified Applicants who are members of the_**
**_designated groups in line with the Employment Equity Plan and Targets of the Organisation/Operating_**
**_Division._**

**_ Alternative Application Methods: (Completed Curriculum Vitae to be submitted)_**

Post:
Fax:
before the closing date of the advertisement.

Note: if you have not been contacted within 30 days of the closing date of this advertisement please consider your

We urge all our employees, clients, members of the public and our suppliers to report any kind of fraud or corruption at

**_ Operating Division : Transnet Pipelines_**

**_ Position Title : Specialist: Cyber Security_**

**_ Employee Group : Permanent_**

**_ Department : ICT_**

**_ Location : Durban Central_**

**_ Reporting To : Manager: ISGRC_**

**_ Grade Level : F_**

**_ Reference Number : 40001313_**

**_ Position Purpose:_**

The primary purpose of the position is to maintain the safety of the organization's ICT systems and networks as well as

providing cyber security architecture to enable the business to achieve its strategic outcomes. The position entails creating,

testing, implementing and analysing the effectiveness of various security systems as well as preventing data breaches,

monitoring and reacting to attacks.

The incumbent will be required to evaluate the security posture of the organisations internal and external networks,

emulate threat actors attempting to penetrate the organisations network and complete defined objectives, such as obtaining

domain admin privileges, gaining access to sensitive information, or simulating a ransomware attack which will be used to

strengthen the organisations security posture.

The incumbent will also provide cyber security architecture services to enable the business to achieve its strategic outcomes.

**_ Position outputs:_**

1. Information and Cyber Security Strategy

Contribute to the definition, development, and oversight of the organisation's security management strategy and framework.

Define / develop / implement / manage standards, policies, procedures, and solutions that mitigate risk and maximize

security, availability of service, efficiency, and effectiveness.

Define, present, and promote an information security policy for approval by the senior management of the organisation.

2. Information Security

Ensure technology, processes, and governance are in place to monitor, detect, prevent, and react to both current and

emerging technology / security threats against the organisation.

Research and advocate new technologies, architectures, and security products that will support security requirements for the

organisation.

Systematically scan the environment to identify and define vulnerabilities and threats.

Record and escalates noncompliance.

Investigate security breaches in accordance with established procedures.

Assist users in defining their access rights and privileges.

Perform non-standard security administration tasks and resolves security administration issues.

Receive and responds to routine requests for security support.

Assist in the investigation and resolution of issues relating to access controls and security systems.

Work with the IT teams to ensure adequate security solutions are in place throughout all IT systems and platforms to mitigate

identified risks sufficiently, and to meet business objectives and regulatory requirements.

3. SIEM (Security Information & Event Management)

Periodically monitor the SIEM solution to eliminate any false positives.

Record and escalates high priority incidents.

Assist in the investigation and resolution of security incidents.

4. Threat Protection (incl. Penetration) and Response Management

Maintain current knowledge of malware attacks, and other cyber security threats.

Monitor emerging technologies, industry developments, directions, and best practices in the security field.

Research emerging threats, vulnerabilities disclosures and incident response reports.

Create test cases using in-depth technical analysis of risks and typical vulnerabilities. Produces test scripts, materials, and

test packs to test new and existing software or services.

Specify requirements for environment, data, resources, and tools. Interpret, execute, and document complex test scripts

using agreed methods and standards.

Ensure that offensive security tools and techniques are within regulation and policy.

Record and analyses actions and results.

Review test results and modify tests if necessary.

Provide reports on progress, anomalies, risks, and issues associated with the overall project.

Report on system quality and collect metrics on test cases.

Provide specialist advice to support others.

5. Data/Information Security and Loss Prevention Management (incl. Encryption)

technical security controls.

Act as a cyber security lead in technology controls / information security for project teams, and the org