Information Security Expert

at Broxel Services
Location East London, East London, South Africa
Date Posted
Category Computer & IT
Work Hours Day
Salary Units MONTH
Currency ZAR


Job Description

Employment Type: One-year Contract with possibility of renewal

In order to support our digital finance strategy, we are looking for an experienced Information Security Expert to be the lead person for e-wallet  Information Security and security of relevant Information Assets. We are providing an attractive package to experienced individuals with minimum 3 years of experience in Information Security/Information Technology. Only shortlisted candidates will be contacted.

Main Responsibilities

Ensure strategic alignment between our digital finance projects and Information Security (IS) Risk Control framework;

Design, monitor and implement the relevant IS strategy and roadmap;

Act as an advisor on IS related risks;

Define requirements for risk controls during the introduction of new Software, Hardware and Information assets related to our digital finance projects;

Control the technical readiness aspect of new products launched

Provide assurance on implemented security controls

Design and implement controls to help monitor day-to day quality and accuracy of IS policies and processes implementations relevant to our digital projects;

Manage gaps between current and desired states through applying the Plan-Do-Act-Adjust Cycle and ensure overall quality of control outcomes as executed by team members;

Report to Management and the Group Information Security office regarding the status of operationalization of the relevant IS policies and processes;

Manage and report of IS incidents;

Perform due diligence on with vendors and other 3rd parties for identifying IS related risks;

Ensure timely follow-up and resolution of findings related to IS.

Minimum Qualifications

At least three years of experience as an Information Security or Information Technology Professional with a technical background in a Bank or Mobile Money operator

Knowledge of ISO 27001/2 and other frameworks (e.g., NIST, PCI DSS etc.) is an added advantage

Experience with creation of ISMS policies, standards, procedures, and other documents with a firm understanding of their impact on the organization

Certification in Information Security (e.g., CISM, CISSP, CRISC etc.) is desirable

Excellent analytical, communication and presentation skills

Knowledge & Competencies:

Strong understanding of audit/risk management methodologies pertaining to IS;

Project management experience highly desired;

Analytical aptitude with an emphasis on investigative, methodical critical questioning and logical thinking; a data-driven decision maker;

Strong working knowledge related to Network Connectivity, Infrastructure, Operating Systems, Architecture Security, Production Support and Asset Management.

Only registered members can apply for jobs.