A Diversified Financial Services Group listed on the JSE has the following exciting opportunity:
Information Security Officer
We are looking for an Information Security Officer to join our Infrastructure and Operations department. As the Information Security Officer, you will be responsible for the information security vision, strategy, governance, management, processes and user education.
Responsible for creating the vision and setting the strategy for information security.
Responsibilities also include security-related governance, management and processes.
· Oversee information systems and company security
· Evaluate, report on, and suggest new ideas related to any security threats
· Develop the steps necessary to protect the company’s interests
· Provide advice and leadership to existing administrative security policies
· Auditing the current systems in place, a well as directing and implementing new standards
· Track latest IT security innovations and keep abreast of the latest cybersecurity technologies
· Create and implement a robust IT security strategy
· Manage IT security operations
· Develop, enhance and deploy cloud-centric cybersecurity model
· Deploy robust IT Security technologies
· Perform IT Security Risk assessments and investigate ways to minimise threats
· Monitor IT Security vulnerabilities and hacking threats in network and host systems
· Implement an effective process for reporting IT Security risks, incidents and investigation of breaches
· Respond to all information security incidents
· Serve as a point of contact to develop and sustain controls to ensure compliance and security throughout the life cycle of data and services
· Review new vendor requests and manage the vendor cybersecurity risk assessment process
· Review and respond to all relevant audits, including all Data Security and Compliance client audits and assessments
· Support the strategic requirements of the IT departments
· Responsible for the protection of the electronic data processed by or stored
· Develop, implement and monitor a strategic, comprehensive enterprise information security and risk management program
· Work directly with the business units to facilitate risk assessment and risk management processes
· Develop and enhance an information security management framework
· Establishing the appropriate security and governance practices
· Proactive monitoring, identifying, investigating and resolving technical incidents and problems
| Experience and qualifications: |
· Bachelor's degree in information security, computer science, or a related field
· Relevant certification(s) preferred (e.g. CIPP; CIPM; CISSP; CISM)
· 5-7 years experience with information technology security
· 5-7 years experience in security principles and security standards
· 5-7 years experience assessing, monitoring and managing security risks
· 5-7 years experience in information security management
· Experience with risk management and governance solutions
· Experience with contract and vendor negotiations and management, including managed services
· Good interpersonal and customer service skills required
· Judgement and decision-making skills
· Strong communication and organisational skills, including written and verbal communication skills
· Personal integrity
· Strong architectural design skills
· Strong problem-solving skills
· Sense of ownership and pride in performance and the impact on the company's success
· Team player
· Good time-management skills
· Willingness to adopt a flexible schedule, as security threats may arise at any time
· Advanced understanding of IT systems and computer programming
· Apply by submitting your CV online and in absolute confidence ensuring we have all your contact details including:
· Mobile telephone number and personal e-mail address or contact us for an informal discussion.
· Should you not have been contacted within 3 working days you can assume on this occasion you have been unsuccessful however we may contact you about similar vacancies.