Senior Cyber Security Assurance Specialist needed at Absa Group Limited

Job Description

Accountability: Security Testing

• Formulate the annual cyber security assurance book of work as part of the combined assurance plan with the various stakeholders.
• Work closely with the business and tech stakeholders to risk assess and threat model the business environment as part of the scope definition phase of penetration testing.
• Collaborate with the broader Absa Technology Risk Assurance team to perform cyber security assurance reviews.
• Understand the organization’s cyber security capabilities as part of SME discussions.
• Keep abreast of the latest cyber security developments to maintain SME skills.

Accountability: Reporting

• Document and socialize the cyber security assurance memorandum to stakeholders.
• Reword the technical penetration test results into business-friendly terminology for the senior business stakeholders.
• Socialize the cyber security assurance reports to the relevant stakeholders at various levels.
• Solicit and assess the feedback from business and technical stakeholders on possible remedial actions to the cyber security assurance issues.
• Provide the required cyber security assurance related information to the combined assurance coordinator for various committees when required.

Accountability: Vendor Management 

• Ensure vendors are onboarded timeously to avoid delays in the execution of the security testing.
• Manage the vendors throughout the security testing to ensure delivery on the agreed scope, quality and timelines.
• Serve as the escalation point in the event of any challenges during security testing.

Accountability: Stakeholder Management 

• Build effective working relationships with key stakeholders (including CIOs, Chief Security Office team, and risk managers).
• Hold regular communication sessions with relevant stakeholders (including CIOs, Chief Security Office team, and risk managers).
• Provide cyber security SME services as and when required by stakeholders.

Accountability: Financial Management

• Allocate funds to vendors based on the assigned book of work.
• Ensure purchase orders are allocated to the vendors for the work performed.
• Ensure vendor invoices are processed correctly and on time.
• Monitor expenditure against the overall available budget.

Accountability: Issue Management

• Collaborate with vendors, CIOs, Chief Security Office team, and risk managers to remediate the identified risks and vulnerabilities.
• Perform cyber security assurance issue validation as per the issue management standard.

Accountability: Governance

• Contribute to the definition and maintenance of all processes and standards related to cyber security.
• Support in the development and maintenance of security testing programmes.
• Uphold all documents relevant to the assessment on the allocated system.

Education and experience required

• Bachelor’s degree in Information Systems or related field.
• Professional certification such as CISSP, CISM, OCSP or any other related security qualification is advantageous.
• Previous working experience as a Penetration Tester is advantageous.

Education

• Bachelor`s Degrees and Advanced Diplomas: Information Systems (Required)

End Date:

• June 6, 2025 (7 days left to apply)