Cybersecurity Manager: Business Information Security

JOBNUMBER

**iOCO03531**
- CONTRACT TYPE

**Permanent**
- CONTRACT TYPE:
**Hybrid**

**The Role**:
Protecting business-critical information isn’t just a task—it’s a mission.

Our Client is on a mission to maintain and develop a high-performing cyber security function in support of a complex business undergoing digital transformation. They are looking for a Senior Leader in the cybersecurity team to take responsibility for scaling information and cyber security across the South Africa business. The focus is on business-related security capabilities including access management, security training and culture, third party and ecosystem security, and data security and protection.

**Skills and Experience**:
**What you’ll do**:
**People**
- Enhancing cyber intellectual capital: Leadership and management of the business information security team covering talent development and performance management.
- Building culture and teaming: Management of internal partnerships for execution, including context setting, skills transfer, and up-skilling.
- Management of key external security partner and service relationships.
- Fostering business and IT relationships to define requirements in the context of business risk.

**Process**
- Work closely with Cyber Delivery Management, Architecture and Engineering capabilities to provide proactive advisory services to IT and business stakeholders.
- Take responsibility for core capabilities of access management, data security, third party security and awareness training, bridging the gap between business and cyber technical functions.
- Work with the SOC to manage threat and vulnerability management.
- Work with other cybersecurity team leaders, the CISO, and other key stakeholders to define and drive a threat-informed and risk-based cyber security strategy.
- Contribute to the ongoing improvement of cyber security processes and ways of working.
- Translate strategic security operational requirements into practical solutions and drive implementation.
- Contribute to the ongoing maintenance and enhancement of Cyber and Information Security Policies, Standards, Procedures and Guidelines.
- Remain aware of global security industry trends and influence the strategy accordingly.
- Manage forecasts and budgets.

**Customer**
- Understand Cyber, IT and Business strategies and contribute to the creation and delivery of the annual cyber security roadmap and execution with a specific focus on business information security and advisory.
- Plan and prioritize projects and workload to deliver to the roadmap.
- Provide updates, context and feedback to relevant stakeholders.
- Build close relationships with business and IT stakeholders to scale security and to drive the required level of controls over core assets.

**Your expertise**:

- 8+ years relevant experience in the cyber and information security discipline.
- Demonstrable experience in leading a specialised cybersecurity team within a large environment.
- Experience with security operations tools, frameworks, practices, and processes.
- Resiliency, determination, and pragmatism.
- May be required to assist outside of working hours
- **Additional criteria**
- Comfortable giving presentations and training.
- People leadership experience is advantageous.
- Good report and technical writing skills.
- Working knowledge of PCI-DSS.
- Practical experience with the industry frameworks (e.g. CIS and COBIT).
- Hands-on technical security experience is highly advantageous.

**Qualifications required**:

- 4-year IT qualification.
- Industry certifications (e.g. CISA, CISM, CISSP).

**Other**:
**Key competencies**:

- Makes sound technical decisions based on understanding of what is commercially achievable within technological constraints.
- Evaluates the applicability of solutions with the ability to challenge and qualify its suitability for the business.
- Leverages research on technology-related concepts, trends and best practices to provide guidance on IT roadmap.
- Set technical policies and procedures to support IT stability and success aligned to evolving technologies and methodologies.
- Responsive to external influences (positive or negative) on the organisation.
- Understands what is commercially achievable and makes sound business decisions.
- Supports the development of business acumen of team through knowledge sharing and upskilling.
- Maintains advanced knowledge of business operations and organisational metrics and trends.
- Effectively applies substantial in-depth analysis in order to determine and meet requirements.
- Quickly identifies key issues, stakeholders and viewpoints in a complex situation or problem.
- Finds ways to condense large amounts of information into a useful form.
- Anticipates the consequences of situations and proactively works to overcome potential obstacles.
- Asks perceptive, probing questions to get to the heart of the matter.
- Plans and ensures implementation of activities/projects identified in business st