Manager: Cyber Assurance

**Requisition Details & Talent Acquisition Contact**
- REQ: 138394
- Talent Acquisition Consultant: Lerato Sithole
- Location: Johannesburg
- Closing Date: 10 March 2025

**Job Family**
- Risk, Audit and Compliance

**Career Stream**
- Auditing

**Leadership Pipeline**
- Manage Self Professional

**Job Purpose**
- To perform assurance activities in the form of control reviews and risk assessments on various cyber elements in the bank,
- Collaborate with other functions in the bank to execute on the cyber resilience programme.

**Responsibilities**:

- Build and maintain professional relationships by information sharing and professional networking within the bank.
- Build and maintain internal stakeholder relationships through collaboration with stakeholders and regular communication via various media.
- Assist with coordinating group wide cyber-resilience risk and control assessments in line with the group's risk management frameworks.
- Analyse data to form a repeatable, defendable opinion.
- Identify, develop and enhance policies, standards, procedures and guidelines and drive implementation and compliance throughout the group.
- Maintain a view of current cyber-resilience threats and trends globally by conducting research.
- Support the achievement of the business strategy, objectives and values by ensuring delivered systems, process, services and solutions are aligned.
- Identify training courses and career progression for self through input and feedback from management.
- Ensure all personal development plan activities are completed within specified timeframe.
- Share knowledge and industry trends with team and stakeholders during formal and informal interaction.
- Obtain buy-in for developing new and/or enhanced processes (e.g. operational processes) that will improve the functioning of stakeholders' businesses by highlighting benefits in support of the implementation of recommendations.
- Seek opportunities to improve business processes and systems by identifying and recommending effective ways to operate and adding value to Nedbank.

**Essential Qualification
- NQF Level**
- Matric
- Relevant bachelor’s degree
- Preferred Certifications
- Certified Information Security Manager (CISM) or Certified in Risk and Information Systems Control (CRISC) or Certified Information Systems Auditor (CISA) or Certified Information Systems Security Professional (CISSP)
- Minimum Experience Level
- 3 years of audit/risk management experience specific to cyber and/or information security.

**Type of Exposure**
- Exposure to cyber risk frameworks. One or more of the following (NIST cyber framework / NIST standard, ISF, ISO27001/2, FFIEC)
- Passion for Cyber
- Eager to learn
- Ability to work with people outside of the direct team in order to achieve objectives
- Ability to create and present reports to various stakeholders

**Technical/ Professional Knowledge**
- Administrative procedures and systems
- Banking knowledge
- Banking procedures
- Data analysis
- Governance, Risk and Controls
- Microsoft Office
- Principles of project management
- Relevant regulatory knowledge
- Relevant software and systems knowledge
- Business writing skills
- Cluster Specific Operational Knowledge
- System Development Life cycle(SDLC)
- Information Security terms and definitions
- Basic computer concepts
- Relevant Operating System
- Information Security policies and procedures
- Vendor Management Principles

**Behavioural Competencies**
- Applied Learning
- Analytical skills
- Communication
- Collaborating
- Customer Focus
- Initiating Action
- Managing Work
- Technical/Professional Knowledge and Skills

**Disclaimer**

**_Please contact the Nedbank Recruiting Team at +27 860 555 566_**
- **_Please contact the Nedbank Recruiting Team at +27 860 555 566_