Cyber Security Specialist - Midrand, South Africa - Adcorp Holdings

Adcorp Holdings

Verified Company

Midrand, South Africa

1 week ago

Posted by:

Thabo Mthembu

beBee Recruiter

Description

Synopsis

Our Client in the Telecommunications industry is hiring for a Cyber Security Specialist as an Independent Contractor for 12 months.

This role will allow you to gain experience in working with one of the largest telecommunications companies in South Africa.

Hybrid

Midrand based

on the hunt for an experienced and highly skilled Cyber Security Senior Specialist to oversee and manage our cyber security initiatives within the financial services, insurance, and lending sector.

The senior specialist must be able to influence and broker conversation with executive level stakeholders to address cyber risk in financial services entity.

Qualification and Experience

Degree\Relevant tertiary qualification in Information technology and Minimum of 8 + years of experience in Cyber Security role where you meet business deliverables.
At least 5+ years' experience in cyber governance, risk, controls and compliance management in a technology environment
At least 5 years' experience in IT Audit and Assurance management in a Cyber or technology environment
Knowledge of common information technology management / compliance frameworks such as ISO/IEC 27001, SOC 2, SOX, ITIL, COBIT, and NIST.
Knowledge of legal, regulatory and privacy requirements, such as Personally Identifiable Information (PII) Protection and Payment Card Industry (PCI)/Data Security Standard.
High level understanding and Knowledge of Cloud Risk, Compliance and Assurance
Proven experience managing and operating multiple security programs, projects, and initiatives
An ability to think strategically and drive change
A deep understanding of Tech Security risks and mitigating solutions
GSM Network Infrastructure
A diverse security background with knowledge in several areas including: layered security architecture; internet protocols; firewalls; VPN technologies, IDS/IPS, network access control and network segmentation, antimalware and spam technologies; risk and vulnerability assessments, and compliance.
Security concepts related to DNS, routing, authentication, VPN, proxy services and DDOS mitigation technologies Windows, UNIX and Linux operating system Web Security & Encryption
Strong organizational skills and an entrepreneurial drive with a history of recruiting and developing highperforming teams
Ability to build and manage highly motivated and innovated technical team
Ability to work under time and resource pressure
An ability and desire to communicate and work with a broad set of stakeholders
An industry certification e.g. ISO 27001 Lead practitioner, CGEIT, CRISC, CISA, CISM and CISSP/CCSP is strongly preferred.

Roles and Responsibilities

Take a proactive approach to ongoing evaluation of cyber security policies to ensure security policy adherence related to company
Support the development and guide a 3to5year Cyber Security Strategy across the company entity.
Achieve and maintain and target Cyber Security Maturity level for company
Build relevant Business Cases for key initiatives and existing planned cyber programmes
Design, Develop and Implement a Security Programme for company
No or per target Internal Audit findings related to company for Cyber Security
Ensure a Cyber Security Incident Response Practice is in place across the company entity.
Promote awareness of security policies, training, and the governance strategy amongst all levels of company to ensure sound security governance is reflected across the entity.
Actively manage risks on the Cyber Risk Register from intake to resolution
Communicate risk assessment findings with key stakeholders to develop and monitor risk remediation plans.
Conduct regular compliance assessments with the Business to ensure that current and emerging risks are being monitored and managed.
Proactive Control design and implementation guidance provided to the Business.
Process and Control Compliance Monitoring and Reporting
Management on the recommended actions
Tracking and monitoring of audit remediation action implementation
Provide Management with status update reports as well as insight reporting across all entities