Responsible for the maintenance and enhancement of the information security and integrity of the company through the monitoring and rationalization of security technologies within the infrastructural and business areas.
Minimum Qualification : Bachelor
Experience Level : Mid level
Experience Length : 5 years
Responsible for the maintenance and enhancement ofthe information security and integrity of the company through the monitoringand rationalization of security technologies within the infrastructural andbusiness areas.
Conducting regular audits to ensure compliance with companypolicy and procedures including Disaster Recovery and business continuityplanning
Protects system by defining accessprivileges, control structures, and resources.
Develop security standards, processes andpolicies for IT Governance for the company.
Conducting network security assessments andaudit log reviews to evaluate the effectiveness of current security measures
Manage network, intrusion detection andprevention systems and monitor and review intrusion detection systems andfirewall logs, analysing events and patterns and coordinating mitigationresponses
Working with internal and external businesspartners on ensuring that Technology acquisitions meet network securitystandards
Monitor multiple environments to detect,validate and respond to cyber security incidents
Participate in information securityinitiatives, provide risk assessments, define security requirements and applysecurity best practices during projects.
Provide technical support in the areas ofvulnerability assessment, risk assessment, network security, productevaluation, incident management and security implementation
Provide technical evaluations and assistswith making security improvements
Responsible for designing and implementingsolutions for protecting the confidentiality, integrity and availability ofsensitive information
Respond to and assist in information securityassessment requests; evaluate vendor products and services; advise managementof risks and best security practices.
Track security trends / events to provide monthlysecurity reports.
Coordinate disaster recovery and businesscontinuity tasks for the company.
Remediating security anomalies on theend-point estate including; unprotected devices, infected devices or devicesand software with malfunction affecting security
Assessing and deploying security patches andconfiguration for endpoint devices in a timely manner, including hardware,operating systems, applications and end-user cloud services.
Creating, evolving, updating and maintainingsecurity policy and documentation.
Creating, managing, maintaining and carryingout, the procedures and processes required
Document and promote awareness of securitypractices, processes, procedures and policies.
Maintain a security risk register ofinformation risks with assigned owners and work with the Manager IT Securityand Compliance to define appropriate work packages to mitigate risks.
Mentor junior security professionals.
Developing self and others
Academic / Professional Qualifications
Degree in Electrical Eng / ComputerScience / Information Technology or other relevant Technical Degree
Advanced professional information securitycertifications e.g. CISSP / CISM / CISA / GIAC / CEH / CPTP / OSCP are preferred
Advanced Networking certifications : CCNA / CCNPare also preferred
Certifications in Microsoft Windows andLinux / Unix Operating Systems
Certifications in ITIL / ETOM also preferred
At least a minimum 5 years background in IT,Telecommunication or Service Provider environment
Experience in penetration testing andvulnerability assessments, IDS / Firewalls / VPN Administration, content filers,Security scan tools, Network and Systems
Administration Experience in enterprisesecurity architecture design
Experience in enterprise security documentcreation
Experience in designing and deliveringemployee security awareness training
Experience in developing Business ContinuityPlans and Disaster Recovery Plans