Reporting To: GM: Enterprise Technology & PMO Services
Grade: F
Reference: req2406
The closing date is on 24/10/2024. It is the responsibility of the applicant to ensure that HR has received the application before the closing date of the advertisement.
Position Purpose
- Providing security support through monitoring, analysis, detection, and mitigation of threats against the Transnet environment.
- Evaluates the effectiveness and efficiency of existing security control measures.
- Identifies vulnerabilities that may cause inappropriate or accidental access, destruction, or disclosure of information and establishes security controls to eliminate or minimize exposure.
- Plan and carry out security measures to protect the organization's computer networks and systems.
- Monitor the organization's networks for security breaches and investigate violations when they occur.
- Analyze the installation and use of software, such as firewalls and data encryption programs, to protect sensitive information.
- Prepare reports documenting security breaches and the extent of the damage caused.
- Conduct penetration testing to simulate attacks and look for vulnerabilities in systems.
- Research the latest IT security trends.
- Develop security standards and best practices for the organization.
- Recommend security enhancements to management or senior ICT staff.
- Create awareness among computer users about new security products and procedures.
- Review security in existing technologies and propose improved solutions.
- Work with the Information Security Architect to propose changes to the architecture.
- Establish relationships with business representatives and key external information risk, security, and governance bodies.
- Develop and maintain a project security risk template to assess the need for security resources on all new/existing projects within Transnet.
- Facilitate the rollout of the project security template to all projects in the group.
- Provide a security consulting service on all Transnet projects, EIMS, Information Security Architecture, and OD IMS.
- Provide a detailed security design and facilitate implementation based on a risk assessment in accordance with the security template.
- Develop/update Information Security related policies and standards for existing or new complex technologies deployed within the enterprise.
- Provide input into the development and maintenance of strategies, policies, and standards for Information Security, Business Continuance, and IT Risk & Compliance.
- Continuously understand the Transnet information security landscape and perform investigations into solutions to mitigate real threats.
Qualifications and Experience
- 4-year degree in Information Technology is required.
- At least 3 to 5 years’ experience in at least three ICT disciplines in a large business environment, including risk management, IT audit, information security, application development, operations, project management.
- Extensive experience (5+) in the provision of information security and privacy consultation services.
- CISA, CISM or CISSP, ISO 27001, SSCP, ISSAP, ISSEP, ISSMP (CISSP Concentrations), CCSA.
Strategy & Sustainability
Strategic Thinking: Understands the link between the organization strategy and objectives and priorities in own area. Drives goals and implements plans which will achieve overall organizational goals.
Inspirational Leadership: Inspires, motivates, and empowers team members to do their best. Is visible. Listens attentively to others and positively influences those around.
Managing Talent: Provides clear direction and allocates tasks effectively. Takes an active role in the selection and retention of talent. Ensures that team members are competent to perform their job. Ensures continuous development of team members and optimal utilization of resources.
Leading Change: Manages and responds effectively to change. Adapts own style to meet the demands of the situation/environment. Adopts a pragmatic approach to change to reduce anxiety and to obtain the acceptance and ‘buy-in’ of others.
Equity Statement
Preference will be given to suitably qualified Applicants who are members of the designated groups in line with the Employment Equity Plan and Targets of the Organisation/Operating Division.
#J-18808-Ljbffr