vciso
22 hours ago
Johannesburg Metropolitan Area, South Africa
Wolfpack Information Risk
Full time
Our client is looking for a vCISO, a trusted advisor, to provide strategic guidance and leadership in managing the organisation's cybersecurity program to join their team on a 6 month contract with a view to extend to 12 months if a good fit. As the organisation increasingly relies on technology and faces ever-evolving cyber threats, this role has become crucial in ensuring the security and protection of sensitive information.
Key Responsibilities:
- Conducting risk assessments and audits
- Support vCISO and GRC functions across cybersecurity operations
- Assist in policy drafting, compliance checks, and risk assessments
- Work with various teams to ensure security processes align with standards
- Track and report documentation for internal audits and compliance
- Contribute to the development and maintenance of GRC frameworks
- Evaluate existing processes and systems to identify areas for improvement
- Designing and implementing security policies and frameworks
- Ensuring compliance with regulatory requirements and industry standards
- Develop and implement ISO standards in line with the organization's requirements
- Draft and maintain security policies and procedures
- Establish governance frameworks
- Ensure alignment with ISO, NIST, or CIS controls
- Provide training to employees about ISO standards and requirements
- Work closely with management to design and implement ISO compliant processes
- Perform regular audits to ensure adherence to ISO standards
- Prepare necessary documentation for ISO certification audits
- Planning incident response and disaster recovery strategies
- Provide guidance during the ISO certification process
- Stay updated with changes in ISO regulations and standards
Education and Required Experience
- Bachelor's degree in information security or computer science, or a related field
- Relevant Certification(s) CISSP or CISM
- 5-7 years experience with information technology security
