Vacancy: Security Compliance Admin (IT), Gauteng ZA
Our parastatal client is looking for a Security Compliance Administrator. Salary is market related, and this is a full-time position. Preference will be given to internal applicants and candidates from previously disadvantaged backgrounds.
The candidate will be involved in the implementation of new security solutions, participation in the creation of and/ or maintenance of policies, standards, baselines, guidelines and procedures as well as conducting vulnerability audits and assessments. She/He will be expected to be fully aware of the enterprise’s security goals as established by its stated policies, procedures and guidelines and to actively work towards upholding those goals. Work with risk management and internal audit units to monitor the IT internal control system.
ROLES & RESPONSIBILITIES
IT Risk Management
• Assist in the research, development and maintenance of Enterprise IT security program and ensure adherence to IT Risk Management best practices
• Continuously evaluate of risk management processes in order to effectively assess risk exposures and identify corrective actions.
• Assist project and operational risk analysts during the risk assessments.
• Assist in the maintenance of IT risk registers timeously for submission to IT Steering, Risk, Exco and Audit committees meetings
IT Security Governance
• Participate in the planning and design of enterprise security architecture, under the direction of the IT Security Manager, where appropriate.
• Participate in the creation of enterprise security documents (policies, standards, baselines, guidelines and procedures) under the direction of the IT Security Manager, where appropriate.
• Effectively utilise recommended tools to govern IT Security
• Contribute in the provision of guidance on security strategies that assist in managing identified risks (both control and inherent risks).
• Perform investigation security breaches, and identify appropriate mitigation ensures in consultation with the IT security manager.
IT Disaster Recovery Planning (DRP) and Business Continuity Management (BCM)
• Participate in the planning and design of an enterprise Business Continuity Plan and Disaster Recovery Plan, under the direction of the IT Security Manager, where appropriate.
• Actively contribute to the alignment of IT DRP with Business Continuity Management plan and discrepancies are addressed..
Compliance Management
• Identify, implement, monitor and report on IT compliance to regulatory and legislative requirements under the direction of the IT Security Manager
• Assist in monitoring ICT compliance using international standards, frameworks and best practices for benchmarking.
Clean IT Administration (resolution of IT audit findings)
• Perform continuous monitoring and evaluation of IT processes, procedures and operations to identify and manage IT risks
• Monitor and track IT risk mitigation actions until resolution
Stakeholder Relationship Management
• Cultivating good working relationships with internal and external stakeholders to engender trust and confidence
• Assisting IT management in awareness activities iro compliance and compliance requirements
• Working with Risk management and IT functional area owners to satisfy internal and external audit requirements.
Education and Awareness
• Assist the IT Security Manager in awareness activities iro IT security compliance and compliance requirements
Ad-hoc duties
• Perform and/or manage other projects, tasks and assignments not stipulated on the Job description as and when required.
SKILLS, EXPERIENCE & EDUCATION
Formal Education
• Diploma in Information Technology/Information Systems or Computer Science
• Any graduate degree qualification in IT will be an advantage
Preferred
• CISA or CISM or CISSP or CRISC
Knowledge
• Strategy, goals and objectives
• IT - audit planning, execution and reporting; risk and security management and governance; legislation and privacy laws; and implementation, monitoring and reporting of IT Security focus areas according to (ISC)2
Experience
• Minimum three years working in IT auditing in a medium to large organisation, of which three was in managing IT audit teams
• Minimum one year working with COBIT
• IT Security or auditing experience
CLOSING STATEMENT
· This appointment is subject to the preferred candidate obtaining the necessary security clearance, reference checking and competency assessment.
· The organisation embraces employment equity, is committed to achievement of fair, equal representation of its workforce, and welcomes applications from all persons with disabilities.
Closing date: 20 July 2016
To apply, please forward your CV and certificates by e-mail to:
humanities@workmail.co.za, or: markcrompton204@gmail.com. Please state position applied for in subject line. Whatsapp/ cell number 0828103387.
If you have not received feedback within two weeks you can consider your application unsuccessful.