Port Elizabeth: IT Security Specialist posted by Top Vitae

MAIN PURPOSE OF THE JOB:

The main purpose of this role is to protect our Organizations IT systems and date from potential threats and breaches. This role is responsible for implementing and maintaining security measures to safeguard the Organizations digital assets and ensure the confidentiality, integrity, and availability of information.

ESSENTIAL FUNCTIONS & RESPONSIBILITES:

• Drive Information Security Management policy and enhancements
• Develop and deliver solutions for managing the risk of enterprise systems, applications and data through policies and controls, risk assessments, issues and exception management, and third-party risk management
• Aid with IT Security threat modelling, risk assessment and security control enhancement projects in areas such as system hardening, mobile device management, data loss prevention, antivirus, SaaS application security, and remote access
• Implement and manage solutions for data discovery in support of GDPR and other privacy requirements.
• Ensure the secure integration of SaaS and cloud-based solutions and features including integration with identity providers
• Utilize tools to monitor and govern SaaS applications, services, systems, and data
• Serve as subject matter expert in the research, recommendation, requirements definition, and deployment of new tools in support of business requirements, and conduct control tests of such tools and features
• Collaborate and lead meetings with executive stakeholders, including C-suite, IT operations, system architects, security professionals, and business leads
• Write documentation such as procedures, processes, policies, reports, training materials and user guides
• Collect, coordinate, and analyse internal security compliance data. Prepare compliance audit data
• Conduct and review vulnerability scans, monitor security alerts, and assess risks
• Plan and prioritize remediation activities
• Drive completion of management responses and mitigation plans, track progress of mitigation activities
• Provides individual and group instruction, as needed, on security process, policies, and tools.
• Assists with preparing and providing necessary project information to support the global IT strategy.
• Provides regular updates to the IT Leads on assigned projects.
• Maintains effective communication with all areas within the organization
• Adheres to all published organizational, safety policies and procedures as described in the organizations employee handbook.

TECHNICAL REQUIREMENTS:

• Strong understanding of Information Security controls and principles.
• Experience with security compliance policies, threat modelling, secure code review, risk analysis.
• Significant experience with Microsoft On-Premises and Cloud Technologies
• Experience working on Third-Party Risk Management (TPRM) and ISO standards.
• Experience with contemporary privacy regulations including GDPR and CCPA
• Strong English Language and documentation skills, with a focus on translating technically complex issues into simple, easy to understand concepts.
• Sound organizational, and leadership skills; sound business judgment

QUALIFICATIONS:

• Bachelors degree in computer science or information Technology related to field.
• 5+ years experience in Cybersecurity

Please consider your application unsuccessful should you not receive feedback with in 2 weeks of applying.