Information Security Administrator - Johannesburg, South Africa - FirstRand

FirstRand

Verified Company

Johannesburg, South Africa

1 week ago

Posted by:

Thabo Mthembu

beBee Recruiter

Description

About us, purpose, experience and qualifications

about us:

- make a promise
- be deeply invested
- value our differences
- build trust, not territory
- have courage
- always do the right thing

purpose:

To assist in identifying, defining and maintaining the information security policy and base line standards for FNB
experience and qualifications:

Grade 1

BCom Informatics / BSc or CISSP / CISA is an advantage
35 years working experience
additional requirements:
2 to 4 years' experience in Cryptography related infrastructure, experience in supporting Hardware Security Infrastructure and experience in Security technology and processes
2 to 4 years' experience in Cryptography related infrastructure, experience in supporting Hardware Security Infrastructure and experience in Security technology and processes

Experience in the following:

Public Key Infrastructure concepts and practices
Key management and Cryptography administration, and support experience
Monitoring processes
Business Continuity Planning
Regulatory and mandatory standards.
Various Cryptography Hardware
Understanding of symmetric and asymmetric algorithms
Good understanding of security strategies and technologies including secure network design, server hardening, secure web services, compliance auditing, secure software development lifecycles, security monitoring, and encryption
Demonstrable good knowledge of one or more Cryptography platforms or networking
Previous experience of working in an information security, engineering or project delivery function
Knowledgeable about existing best practices for integration of security controls
Able to make technology recommendations supported by documented results of vendor product assessments and technical evaluations.
Stays informed on security vendors, specific product histories, trends and directions.
Able to work independently with limited management oversight, but with sufficient experience to know when to escalate issues or concerns
Work with the business and project team(s) to ensure residual risks are adequately mitigated to the degree that meets the risk appetite of the business
Public Key Infrastructure concepts and practices
Key management and Cryptography administration, and support experience

Cryptographic process and concepts (symmetric/asymmetric cryptography, secure hash, digital signatures)
Monitoring processes
Business Continuity Planning
Regulatory and mandatory standards.
Various Cryptography Hardware
Understanding of symmetric and asymmetric algorithms
Good understanding of security strategies and technologies including secure network design, server hardening, secure web services, compliance auditing, secure software development lifecycles, security monitoring, and encryption
Demonstrable good knowledge of one or more Cryptography platforms or networking
Previous experience of working in an information security, engineering or project delivery function
Knowledgeable about existing best practices for integration of security controls
Able to make technology recommendations supported by documented results of vendor product assessments and technical evaluations.
Stays informed on security vendors, specific product histories, trends and directions.
Able to work independently with limited management oversight, but with sufficient experience to know when to escalate issues or concerns
Work with the business and project team(s) to ensure residual risks are adequately mitigated to the degree that meets the risk appetite of the business