4 weeks ago
Job title : Specialist: Information & Cybersecurity
Job Location : Gauteng,
Deadline : October 19, 2024
Quick Recommended Links
Roles & Responsibilities
Strategic Function
- Support the implementation of the business unit balance score card projects and initiatives.
Product management
Anti-Virus Management:
- Monitor gateway firewall for malicious activity and restrict network access using the firewall policy as per business requirements.
- Administer and monitor the firewall to prevent virus attacks from an external source.
- Scan all emails from external and internal sources for viruses and malicious attachments at the Microsoft Exchange server.
- Administer and maintain an enterprise-wide cloud-based anti-virus solution and ensure that all clients have the most recent updates.
Access Administration and User Support:
- Administer and maintain a remote access system (SSL VPN) for AGSA users.
- Provide second-line support to AGSA users with any security related queries within the SLA time frame.
- Research security software and hardware as determined by the ICT security line manager/ senior management.
- Administer, maintain and update an access list of all server usernames and passwords stored in a secure location.
- Provide input on security related software and hardware to ICT Security line manager or senior management for budgeting purposes.
Audits and risk management:
- Communicate risk and audit findings clearly and effectively to both technical and non-technical stakeholders.
- Drive the remediation of identified security issues and vulnerabilities by collaborating with relevant stakeholders and technical teams.
- Monitor the progress of remediation efforts to ensure timely and effective resolution of issues.
- Track and report on the status of remediation activities, ensuring that corrective actions are completed and validated.
Content Filtering:
- Administer and monitor a spam management solution in order to minimise the amount of spam received by the AGSA employees.
- Administer and monitor the filtering of harmful email attachments received from external sources at the gateway (firewall).
- Administer and monitor filtering of harmful and non-business-related email attachments received from internal and external sources at the relevant mail server.
- Administer and monitor filtering for all users browsing the Internet
- restricting access as per business requirements.
Email Security:
- Monitor and analyse email traffic for potential threats such as phishing, malware, and spam.
- Implement and maintain email filtering and encryption solutions to protect sensitive information.
- Conduct regular audits of email security protocols and policies to ensure compliance and effectiveness.
- Respond to and investigate email security incidents, providing timely resolution and documentation.
- Collaborate with IT teams to ensure secure email configurations and best practices are followed.
Security Administration:
- Monitors the application and compliance of security administration procedures and reviews information systems for actual or potential breaches in security.
- Ensures that all identified breaches in security are promptly and thoroughly investigated and that any system changes required to maintain security are implemented.
- Ensures that security requirements, policies and procedures are adhered to.
- Investigates major breaches of security and recommends appropriate control improvements.
- Ensures overall security administration within the AGSA.
User Awareness Training:
- Develop and deliver information and cybersecurity awareness training programs for all AGSA employees.
- Create educational materials, including presentations and interactive content, to reinforce safe email practices and overall cybersecurity awareness.
- Assess the effectiveness of training programs through surveys, quizzes, and simulations.
- Stay updated on the latest threats and trends to ensure training content remains relevant.
- Foster a culture of security awareness by promoting best practices and encouraging reporting of suspicious activities.
Reports:
- Prepare and present regular reports on cybersecurity incidents, including email security threats, user awareness training outcomes, other relevant metrics, and overall cybersecurity posture.
- Analyse security metrics to identify trends, vulnerabilities, and areas for improvement.
- Document incidents, responses, and resolutions to maintain accurate records for compliance and auditing purposes.
- Collaborate with management to provide insights and recommendations for enhancing security measures based on report findings.
- Contribute to the development of key p
- Performance indicators (KPIs) for measuring the effectiveness of security initiatives.
Stakeholder Management
- Maintain effective relations with both internal and external stakeholders.
- Manage the feedback process to stakeholders by tracking all queries received, getting the relevant information and formulating appropriate responses according to the approved protocol.
People Management
- Manage own performance to drive productivity.
- Participate and/or take lead in the business unit transformation/culture plans.
- Provide support to the management team with regard to centre management and other people related tasks.
Financial and Operational Management
- Ensure compliance to AGSA policies and procedures.
- Ensure compliance with internal processes and procedures.
- Manage supply chain processes within scope of work.
Other responsibilities (Applicable to All JD’s)
- Perform and/or manage other projects, tasks and assignments not stipulated on the Job description as and when required.
- This position requires a minimum of a bachelor’s degree in information technology or any related qualification (NQF level 7) and
- Security+ or any Security related certification or
- CISM/ CISSP Certification
Experience
- Minimum of 5 years’ experience in an Information or Cybersecurity role which includes:
- Application Security
- Anti-Virus Systems
- Access Management
- Intrusion Detection Systems
- Encryption Software
- Patch Management
- Web Content Filtering
- Email Content Filtering
- User Awareness Training
- Security Testing
- Microsoft Security suite/platform
How to Apply for this Offer
Interested and Qualified candidates should Click here to Apply Now
- ICT jobs