Cyber Security GRC Specialist

4 weeks ago

Cape Town, South Africa Vodafone Full time

.

M-Pesa is a pioneering fintech business and global market leader in mobile money. Starting from 2007 as a convenient means by which the unbanked and underbanked could make digital payments, M-Pesa has now grown to offer over 60 million active customers Financial Services, Enterprise, Merchant and Retail solutions. We are proud of our work in enabling the digital economy in our markets, and in driving financial inclusion.

M-Pesa Africa is the largest FinTech providing services to more than 60 million customers and 5 million businesses solutions across Financial Services, Enterprise, Merchant and Retail. We are now well on our way to becoming the preferred digital payment method across the markets that we serve, for both in-store, remote and online payments. With headquarters in both Nairobi and Johannesburg, we serve markets that include Kenya, Tanzania, DRC, Lesotho, Ghana, Egypt, Ethiopia, and Mozambique.

We are a united, energetic and passionate team. A place where leaders coach, teams connect, and everyone is empowered to go further, faster. A place where heroes become superheroes; through growth, opportunity, and the chance to work with the best minds in FinTech.

Role Purpose:

Reporting to Manager – Cybersecurity - GRC, as the Cyber Security GRC Specialist, the successful candidate will be responsible for ensuring that the organization’s Cyber Security risks are under explicit management control and as well coordinate strategic integration of Cyber Security programs within M-Pesa Africa. They will be part of the team that drives compliance to internal and global cyber security related policies and standards, Vodafone Cyber Health & Adaptive Risk Method (CHARM)controls and applicable Kenyan laws and regulations.
 

Your responsibilities will include:

Continually reviewing and updating security policies, standards, and guidelines in response to the ever-changing cyber threats in coordination with the Risk Management team. Monitoring and driving compliance to internal and global cyber security related policies and standards, Vodafone Cyber Health & Adaptive Risk Method controls and applicable Kenyan laws and regulations. Coordinating stakeholders to deliver on targets or agreed business outcomes. Coordinating periodic independent assurance of critical products and services. Coordinating implementation of recommendations from independent assessments. Conducting Cyber Risk Assessments to determine cyber risk profile and define treatment plans. Recommending Cyber Security services improvement plans. Coordinating projects handover process within the cyber security functions. Continually reviewing, implementing and proposing improvements of the user access governance process. Coordinating periodic cyber security knowledge transfer, awareness sessions and phishing simulations to staff in line with strategy. Participating actively in cyber security events and trade shows, reporting and presentations.

.

Experience with the Vodafone Cyber Health & Adaptive Risk Method (CHARM) Program is mandatory.

Below are the details for the CHARM Activities:

Drive maturity and compliance of the Vodafone Cyber Health & Adaptive Risk Method (CHARM) Program to 100% effective and beyond. Evaluate and carry out CHARM gap assessments across all relevant MPESA Africa business processes Defining and Monitoring CHARM risks & gaps treatment plans  Utilising data driven results using KRIs to assess the controls are operating as intended Ensure new products and implementations are CHARM Compliant before Go Live Conducting deep dive control reviews and providing follow up remediation support Continually review and keep track changes in CHARM requirements  Facilitate a close working relationship with Vodafone CHARM QA team Facilitate workshops and meetings with MPA process owners for CHARM controls awareness, implementations and evidence collection Lead in planning and prioritization of CHARM Evidence collection and submission to the CHARM QA team Preparation and documentation of quality CHARM evidence work papers Supporting any CHARM external assessments within MPA

.


Impact on the business

An inception report with a project management plan at the commencement of the consultancy with the following componentsProcedures and processes for executing the tasksUnderstanding of the objectives, scope and deliverablesMethodologies, CHARM gaps & risks management plan, compliance plan, communication and planning plan CHARM compliance gap analysis. Deliverables are A report with gaps arising out of CHARM non-complianceDocumented and signed off CHARM gaps & risks treatment plan CSB Controls requirements awareness to process owners Drive compliance to CHARM 100%. Deliverables are: -Document quality CHARM evidence work papersSubmit evidence and validate to an effective score for the conforming and gaps free CHARM controls.

The ideal candidate for this role will have:


Qualifications

At least one professional Information Security Qualification: CISSP/CISM/CISA Advanced competencies in Network Security: CCNP or CCIE (Security) Advanced competencies in Microsoft, Linux or Unix Operating Systems administration Advance competencies experience in Information Security Technologies


Skills and Experience

Experience with the Vodafone Cyber Health & Adaptive Risk Method (CHARM) Program is mandatory. Minimum of 3 years Information Security Governance and Compliance Frameworks. Experience in design, delivery and support of Information Security solutions to customers will be and added advantage. Good communication skills and team player. Experience in the use of security tools. Project management skills, and proven task execution (getting things done). Superior Report writing skills. Analytical Thinking.


Closing date for Applications: 04 December 2024.

The base location for this role is, Vodacom Techno Centre, Cape Town. 


The Companys approved Employment Equity Plan and Targets will be considered as part of the recruitment process. As an Equal Opportunities employer, we actively encourage and welcome people with various disabilities to apply.
Vodacom is committed to an organisational culture that recognises, appreciates and values diversity & inclusion.

  • Cyber Security GRC Strategist

    4 weeks ago

    Cape Town, Western Cape, South Africa Vodafone Full time

    Job SummaryThe Cyber Security GRC Strategist will be responsible for ensuring the organization's Cyber Security risks are under explicit management control and coordinating strategic integration of Cyber Security programs within M-Pesa Africa.About UsM-Pesa Africa is a pioneering fintech business and global market leader in mobile money. With over 60 million...

  • Cyber Grc Consultant

    6 months ago

    Cape Town, South Africa Strategic Placements CC Full time

    **Requirements**: - Relevant qualification (CISM / GRCP / CISSP / B.Com Information Systems or similar) - Minimum 3 years’ experience as a Cyber Security practitioner with relevant knowledge in GRC - Experience in assessing and/or implementing security and risk standards (NIST, ISO 27001, PCI DSS, ITIL, COBIT) - Experience in writing risk assessment...

  • Grc Consultant

    1 month ago

    Cape Town, South Africa Cognisys Group Ltd Full time

    We have an exciting opportunity to join our GRC team as a GRC Consultant at a time of rapid growth and innovation at Cognisys. **Company Overview** Cognisys is a leading cyber security company specialising in penetration testing, GRC consulting, and managed security services. We pride ourselves on our customer service, forward thinking approach and...

  • SAP Grc Specialist

    6 months ago

    Cape Town, South Africa SM Squared Talent (Pty) Ltd Full time

    **Key Responsibilities**: - Implement and configure SAP GRC modules to manage access controls, user authorizations, and security policies within SAP systems. - Assess and address potential risks and compliance gaps related to SAP systems, proposing and implementing necessary controls to mitigate them effectively. - Collaborate with internal stakeholders and...

  • Cyber Security Risk Professional

    4 weeks ago

    Cape Town, Western Cape, South Africa IOCO Full time

    We are seeking a highly skilled Cyber Security Risk Professional to join our team at IOCO. As a key member of our IT Risk and Security department, you will play a critical role in ensuring the security and integrity of our systems and data.The successful candidate will have up to 8 years of relevant experience in IT, IT Risk, IT assurance, and/or cyber...

  • Cyber Security Analyst

    6 months ago

    Cape Town, South Africa Exclusively Remote Full time

    One of our US based clients are looking for experienced Cyber Security Analyst/Specialist with a strong background in Cyber Security and prior experience working for a Managed Service Provider (MSP). Responsibilities: - **Cyber Security**: Implement and manage cyber security solutions to safeguard clients' IT environments from potential threats,...

  • Cyber Security Specialist

    1 month ago

    Cape Town, South Africa MSP Staffing LTD Full time

    A communication specialist client is looking for an experienced Cyber Security Specialist with a strong background in securing AWS and Google Cloud resources. The ideal candidate should possess a deep understanding of cloud governance and practical security implementations. Key Requirements · 5 years experience · Bachelors Degree / BTech · Cloud Security...

  • Cyber Security Specialist

    6 months ago

    Cape Town, South Africa Adept Advisory (Pty) Ltd Full time

    Security Specialist on a renewable, 6 month contract, based in Cape Town, on a hybrid model. **INDUSTRY** Financial Services **ABOUT THE TEAM** **ABOUT THE ROLE** Your mission will be not just to strengthen our security processes but to also document all processes for knowledge dissemination. This ensures that our team continues to operate with...

  • Cyber Security Lead

    2 months ago

    Cape Town, South Africa Clicks Group Limited Full time

    To elevate the Group’s security posture through proactive analysis and mitigation of cyber security threats and risks, especially in cloud platforms and web applications. This position plays a pivotal role in leading a team to implement security assessments, measures and processes through security engineering, penetration testing and other assessment...

  • Cyber Security Lead

    4 months ago

    Cape Town, South Africa Clicks Group Limited Full time

    **Listing reference**: 017709**Listing status**: Online- **Position summary** **Industry**:IT & Internet - **Job category**:IT and Telecommunications**Location**:Cape Town - **Contract**:Permanent**EE position**:No**Introduction**Job description** **JOB OBJECTIVES**Lead, mentor, and manage a team of cyber security specialists in performing security...

  • Cyber Security Lead

    6 months ago

    Cape Town, South Africa Clicks Group Limited Full time

    **Listing reference**: 016940**Listing status**: Online- **Position summary** **Industry**:IT & Internet - **Job category**:IT and Telecommunications**Location**:Cape Town - **Contract**:Permanent**EE position**:No**Introduction**Job description** **JOB OBJECTIVES**- - Lead, mentor, and manage a team of cyber security specialists in performing security...

  • Senior Specialist Cyber Security Defense

    6 months ago

    Cape Town, South Africa Optimal Growth Technologies Full time

    **Brief Description** Reporting to **Manager Cyber Security Prevent & Defense**,as the **Specialist Cyber Security Defense**, you will be responsible for **Key Roles**: - Coordinate optimization of the Operational & Monitoring Defense cyber security baselines (CSB) controls across all relevant business areas and processes - Optimize and maintain...

  • Senior Specialist Cyber Security Defense

    6 months ago

    Cape Town, South Africa Optimal Growth Technologies Full time

    Brief Description Reporting to Manager Cyber Security Prevent & Defense ,as the Specialist Cyber Security Defense, you will be responsible for **Key Roles**: Coordinate optimization of the Operational & Monitoring Defense cyber security baselines (CSB) controls across all relevant business areas and processes Optimize and maintain respective Monitoring...

  • Cyber Security Specialist

    2 months ago

    Cape Town, South Africa Endeavour Recruitment Solutions Full time

    Cyber Security Specialist / Penetration Tester - Country: South Africa - Location: Cape Town or Gauteng - Sector: Security Engineers / Consultants - Salary: Rand Negotiable - Job Type: Contract - Technologies: Cyber Security, Penetration Testing, Ethical Hacker Posted Thursday, 16 September 2021 Endeavour Recruitment has an excellent permanent opportunity...

  • Cyber Security Manager

    6 months ago

    Cape Town, South Africa Clicks Group Limited Full time

    **Listing reference**: 016939**Listing status**: Online- **Position summary** **Industry**:IT & Internet - **Job category**:IT and Telecommunications**Location**:Cape Town - **Contract**:Permanent**EE position**:No**Introduction** - We are seeking a proficient and experienced Cyber Security Manager to shape, design and manage the implementation of the...

  • IT Security Risk Manager

    2 weeks ago

    Cape Town, Western Cape, South Africa IOCO Full time

    IOCO seeks a skilled IT Security Risk Manager to join their team in Cape Town. This is a permanent position with a hybrid work model.About the RoleThe successful candidate will be responsible for promoting a risk-conscious mindset through stakeholder engagement and awareness, identifying and managing IT and cyber risks, and coordinating internal and external...

  • IT Risk An Security Analyst

    6 months ago

    Cape Town, South Africa Progressive IT Resourcing Full time

    **Introduction** To support delivery of the IT Risk and Cyber Security programs. The analyst plays two critical roles in support of these programs; to enable IT team-embedded security analysis and business enablement, and to drive risk management. This role looks to streamline risk and security processes in support of quality and speedy delivery in a...

  • Senior Cyber Security Specialist

    6 months ago

    Cape Town, South Africa iLaunch Full time

    Develop and implement security hardening strategies Building and refining SIEM / SOC use cases and conduct thorough investigationsand resolutions for escalated threat intelligence, security breaches, and unauthorized access. Assist in cyber security incident response Manage and co-ordinate security architecture reviews, vulnerability assessments...

  • Manager - Cyber Security

    2 months ago

    Cape Town, South Africa City of Cape Town Full time

    ELIGIBILITY CLOSING DATE 15.11.2024 REFERENCE NUMBER CS 187/24 ext SALARY R1533805.00 - R1899481.00 DEPARTMENT Information Systems and Technology DIRECTORATE CORPORATE SERVICES Manager - Cyber Security **Requirements**: - A relevant three-year tertiary qualification, preferable a Bachelor’s degree in Information Systems or Computer Science - Information...

  • IT Risk

    6 months ago

    Cape Town, South Africa Armstrong Appointments Full time

    Our client in the retail industry based in Cape Town are seeking the skills of an IT Risk & Security Analyst **Main job function** To support delivery of the IT Risk and Cyber Security programs. The analyst plays two critical roles in support of these programs; to enable IT team-embedded security analysis and business enablement, and to drive risk...