Pretoria Information Security Officer (Safety) 25000 - 30000
Our client in the is looking to hire an Information Security Officer.
Key Performance Area • Management & Governance • Security Policy Enforcement and Monitoring (Operational) • Maintain the IT Security Policy, Security Procedures and Standards and provide guidance consistent with the entity's requirements. • Serve as an advisory role in application development and infrastructure projects to assess security requirements and controls and ensure that security controls are implemented as planned. • Deliver on Governance, Security Awareness, Stakeholder satisfaction, Assessment and Review Reports. • Knowledge of South African Information Security regulations and ensure adherence to any country specific regulatory requirement and benchmarks with industry. • Enforce IT security policies and procedures within SAMSA. • Develop and maintain IT Risk Register & Security Awareness and Compliance Training Programs with IT staff, and SAMSA employees in all offices. • Establish a process for identifying, tracking, and reporting security incidents. • Conduct reviews of all systems to ensure that effective IT security policies are in place for each system. • Conduct regular review of administrator's actions on operating systems and application level to ensure that no unauthorized changes on the systems, and ensure correct procedures are followed, in line with management's instructions and intentions. • Ensure that security assessment and penetration test are conducted regularly. • Preparation of monthly/quarterly and annual report.
Minimum Requirements • A relevant Bachelor Qualification or Equivalent (360 credits). • Must be Certified in any of the two Courses below:
o Ethical Hacking.
o ISACA CISM (Certified Information Security Manager).
o CISSP (Certified Information System Security Professional).
o ISO27001. • 5-7 years' relevant working experience. • Knowledge of Cyber security. • Knowledge of industry best practice e.g., ITIL and COBIT. • Firewall Administration Experience. • IT Security environment. • Solid knowledge of Information Security principles and practices. • Intrusion detection systems. • Good presentation skills. • Open -minded person. • Good communication skills. • Time Management.