Manager - Cyber Security Defense - Midrand, South Africa - Vodafone

Vodafone

Verified Company

Midrand, South Africa

1 week ago

Posted by:

Thabo Mthembu

beBee Recruiter

Description

Role purpose:

Cyber Defence is one of MPA's critical Cyber Security teams. The Cyber Defence team's mission is to deliver a highly effective end-to-end 24x7 Cyber Defence service.

They are responsible for proactively identifying threats and vulnerabilities; detecting and mitigating cyber events, and managing cyber security incident responses to minimize service impact and provide a secure digital future for our customers.

The expertise of this team should drive Cyber security improvement across MPA. This requires close collaboration with Vodacom Group, Markets other Group and Operating Company operational teams and external partners.

Your responsibilities will include:

Reporting to the Head of Cyber Security (MPA), as the Manager of Cyber Security Defense, you will be responsible for:
Leading, inspiring and managing the Cyber Defense team
Coordinate operations and managing relations with Group Cyber Security Defend stakeholders
Proactively preventing Cyber incidents while reactively managing any detected Cybersecurity incidents
Implement, Upgrade, maintain and Refine End-to-End Security Logging and Monitoring tools, processes, and systems
Timely Manage Proactive & Reactive Security Incident Management Processes, Communication and Response Plans
Facilitate implementation, management and optimization of Cyber Defense policies, standards and procedures
Ensure adequate CAPEX\OPEX budget, resource and management focus is on cyber security risks
Implement actions to close MPA risks, Audit & Reviews (Internal and External) on Security Monitoring and Incident Management

Improvement of the Cyber security posture of the company through several initiatives, including but not limited to Cyber Security Baselines.

Impact on the business
Coordinate optimization of the Operational & Monitoring Defense cyber security baselines (CSB) controls across all MPA relevant business areas and processes
Optimize and maintain respective Monitoring Cyber Security controls and requirements across MPA environments
Ensure all M-Pesa and third-party systems' products, services and projects are compliant to the MPA minimum security Monitoring requirements and Cyber defense Cyber Security Baselines (CSBs)
Responsible for the set-up, execution and maintenance of the security incident management and coordination process in conjunction with incident management capabilities
Support all internal and external audits around Technology systems and processes, ensure these systems are free from known Technology audit findings and ensure all audit findings in these systems are closed within agreed timelines

Customers, supplier and third parties
Support compliance with Legal, Regulatory and key stakeholders' requirements across the Technology domains
Responsible for monitoring of compliance of the Cyber security Monitoring and Incident services contract, to ensure it is within agreed SLA
Coordination of analytical processes and incident response measures
Ensure proper monitoring implementation and change management processes compliance for all planned and emergency changes in Technology systems

Leadership, Planning and Human Resource Management:
Manage assigned the Cyber security CAPEX\OPEX budgets and planning, in alignment with the company and Group strategy
Manage the Cyber security subordinate resources (FTEs and contractors) for their tasks/job descriptions effective implementations
Skills development within Cyber security department
Performance Management of the Cyber security team
Provide input to Security Policies and requirements on Technology security methods and technologies
Support Implementation and enforcement of the MPA cyber code across all users
Provide regular and accurate management reporting on Cyber security service performance

Innovation and change
Maintain the Incident management & Monitoring (SPDA) processes of the GDPR and business requirements
Continually review and enforce security policies and controls, to support business requirements and changing security landscapes
Set-up of analytics framework and tools
Drive continuous improvement through simplification of key cyber security processes

Communication
Drive internal and third-party service review meetings covering performance, service improvements, quality and processes
Make recommendations for Cyber security service Improvement Plans and ensure actions are followed through to completion in a timely manner
Support information security awareness and training to all MPA users and third-party vendors
Driving incident planned and emergency communication processes to both internal and external audience

Qualifications
Degree in Electrical Eng/Computer Science/Information Technology or equivalent Technology-related degree
At least one professional

Information Security Qualification:
CISSP/CISM/CISA

Advanced competencies in Network Security:
CCNP or CCIE (Security)
Advanced competencies in Microsoft, Linux or Unix Operating Systems