Specialist: EUC Information System Security Operations needed at SITA SOC

Key Responsibility Areas 

• Perform ongoing monitoring of information systems and assess threats and risks to information security. 
• Coordinate security awareness and training programs to increase employees ‘ overall understanding, reaction time and the ability to envisage the company’s potential safety and compliance requirements. 
• Perform compliance assessments and vulnerability assessments to ensure government and citizen information is secure. 
• Attend to all logged security incidents. 
• Collaborate and partner with internal business representatives to recommend appropriate products so that the solutions are developed with relevant security system design specifications. 
• Execute activities related to the implementation, and maintenance of information security controls and services aligned to the cyber security framework, policies, standards and procedures. 
• Management and Administration of the PFMA act. 

Qualifications and Experience 

• Required Qualification: 3 Years National Diploma / National Degree in Computer Science or Information Technology or Network Management or a relevant discipline NQF level 6 qualification. 
• Certification: Security + or Microsoft Security Certifications. Added Advantage: ITIL foundation and COBIT Introduction, Certified information system security professional (CISSP) or Certified Information Security Management (CISM) 

Experience:

• 3-5 years Information and Communication Technology (ICT) Infrastructure or Information Security (IS) or application life cycle management which should include the following: Working knowledge of information technology security configurations on the LAN/WAN infrastructure. Understanding firewalls and switch management technology.
• Exposure to enterprise architecture frameworks (e.g. TOGAF; GWEA; MIOS). knowledge of governance processes and standards (e.g. ISO 27001/ 27002; COBIT; ITIL). Exposure to information system security technical standards (e.g.: SSL certificates, anti-virus protection, etc.).
• Knowledge of technical monitoring and administration of various technical security solutions e.g. Anti-malware Management, Email Security Management, Privileged Account Management, Microsoft Security and Azure Security (MFA, Defender, DLP, Bitlocker, Sentinel, Intune, etc.).