Job Responsibilities
- Development of Information Security Services capability and initiatives in support of the IT Strategy and EA Planning / Blueprinting processes.
- Advise on and ensure the effective management of information technology and business processes access and to communicate feedback to enable associated security risk management.
- Perform Vulnerability testing and scanning.
- Report on TCTA’s vulnerability profile and recommendations to improve the profile.
- Analyse related information / reports to identify discrepancies and anomalies, recommend remedial action and ensure compliance to security policies and standards.
- Develop and/or align information security policies to identify and manage risk exposure.
- Mitigate risk by ensuring that proper IT security and information management measures are in place.
- Perform security audits and clean-ups to ensure accurate and up to date access within TCTA.
- Understand IT applications and infrastructure in alignment with policies and procedures.
- Document the information security principles and guidelines for application software as well as standards that should be adhered to for each product.
- Development of information security requirement specifications prior to the procurement or implementation of new systems and technology to ensure alignment between the business goals and the supporting system functionality.
- Maintain the Information Security Architectural repository to ensure consistency between applications and systems.
- Ensure currency of systems and technology by maintaining an environmental awareness.
- Provide guidelines for the development of life-cycle management strategies for systems and technology in conjunction with major stakeholders to ensure business continuity.
- Managing information security risks and issues and escalating where necessary.
- Researching and developing leading practices for the Information Security function.
- Benchmarking and analysis of trends to optimise internal processes.
- Engaging with business units to proactively (and reactively) provide solutions, advising TCTA’s management and other stakeholders in their relevant area of expertise.
- Benchmark TCTA’s Information Security Architecture with Local and International best practice and applications at other organisations.
- Identify strategic projects that need to be undertaken in the Information Security function.
- Preparing project definitions and detailed plans with the PMO.
- Driving and supporting the implementation of the specialised areas initiatives and strategic projects that address the needs and expectations of TCTA’s stakeholders.
- Documenting functional requirements and specifications for new information security solutions.
- Monitoring and reporting on progress against functional initiatives.
- Monitoring and reporting on compliance with information security policies, procedures, and controls.
- Promoting sound institutional governance, participating in required governance structures, and serving as a member on the required forums.
- Compiling reports on the functional performance at the required intervals reflecting all relevant statistics, e.g., monthly/quarterly cybersecurity report.
Skills
Cybersecurity Risk Assessment, IT Security, IT Solutions, Financial Services, State-Owned Enterprises (SOE), Water Supply
#J-18808-Ljbffr
