TELKOM SPECIALIST: INFORMATION SECURITY RISK

TELKOM SPECIALIST: INFORMATION SECURITY RISK

Location: Centurion, South Africa

Core Description:

Responsible for the identification, measurement, control and minimisation of loss associated with uncertain risks throughout the ICT environment. The development, documentation, implementation and monitoring of an Information risk management framework including policies, standards, procedures, and security architecture to ensure delivery and awareness of sound Information Security management practices company wide, including compliance with national legislation and international standards. Researches and stays abreast of worldwide best practice and regulations. Provides expert advice and consultancy with respect to risk management practices and concerns within IT and business architectures, applications, changes, solutions and operational processes.

Competencies:

FUNCTIONAL KNOWLEDGE

Information Risk Assessment & Management; Change Management & Change Risk; Security Standards, Policies & Practices; Information Risks within Systems & IT Architecture; Information Risks within People & Processes; Enterprise & Security Architecture; Operational Security Practices; Management Information Security Awareness

FUNCTIONAL SKILLS

Analytical & Investigative; Communication & Interpretation; Decision Making; Problem Solving; Project & Task Management; Risk Awareness

ATTITUDES/ LEADERSHIP COMPETENCIES

Integrity; Assertive; Confident; Initiator; Supportive; Persuasive; Team Player; Problem Ownership

Job Responsibilities:

Information Security Risk Management

– Report on Enterprise Information Risk
– Research, Identify and Assess Information threats to business (New and existing)
– Project and Change Consultation and Assessment of Risk
– Information Risk assessment, rating, management, and resolution
– Represent Information Security in Governance and Business processes
– Monitor, Assess and Report on Operational Security Assurance process

Information Security Governance

– Create/ Maintain/ Communicate Information Security Policies and Standards
– Ensure Regulatory and Security Policy Compliance and Business Risk alignment
– Manage Policy review, update and approvals process
– Support Security Governance Forum and ISMS Processes
– Maintain Information Security Strategy ensuring Business Strategy Alignment
– Ensure Information Security Awareness of Policy and Business Risks

Information Security Architecture

– Ensure Enterprise Security Architecture aligns with business requirements and risks
– Advise and recommend Technical Security direction in support of Enterprise Security Architecture
– Define, Assess and Communicate Information Security elements within Business and IT Architecture
– Information Security input to Business cases and projects
– Ensure Information Security Architecture requirements are met within all systems and processes

Required Certification:

Preferred: CISM, CRISC
CISSP, CISA, SABSA
Optional: CoBIT, TOGAF, ITIL

Qualifications:

Relevant 3-year Degree or Diploma in IT or Information Security (at least NQF level 6)

Experience:

7 years or more practical experience in IT or Information Security, of which 5 years must include an IT, Network or Information Security role, with the last 3 years in an active Information Risk management role.

Special Requirements:

• Prepared to work all hours as required
• Valid driver’s license
• No Criminal record

Closing Date: 2019/05/29

How To Apply:

Click Here To Apply Online 

Leave a Comment

Your email address will not be published. Required fields are marked *

Don`t copy text!
Scroll to Top