Business Engagement Lead - Randburg at Absa Group Limited (Absa)

Job Summary

Overall job purpose

• The Lead CSO Business Engagement (G&A) will support the Head of Business Engagement to serve as an advisor to the CSO operational teams, and the CIO’s business operational leaders (technology and security), to ensure the security of the CSO, business technology and environments they are hosted on.

Job Description

Key accountabilities

• This role aims to create a dedicated CSO first line of defence capability to serve the CSO and the businesses served by the CSO.
• This capability aims to provide risk-based advice and guidance to operational and project teams for the hosting and delivery of secure systems and solutions. The Lead - BE G&A provides support to the CSO security operations team to ensure that security solutions are securely hosted.
• The BE G&A Lead supports the CSO teams to proactively identify security gaps for remediation. The role will support the CSO on assurance engagements, including liaising with assurance providers, and providing quality assurance over the issue remediation and management process.
• The Lead will be involved in supporting the development of security standards and guidelines for use across the organisation.

Accountability:

• Ensure the CSO and Business deliver and host solutions securely in line with best practice and enterprise-wide security principles and standards Provide support and advice on Cyber security practices to first line teams (technology and cyber security) including Technology procurement and vendor technologies.
• Software development practices and Secure Development Lifecycle (SDLC). Support the Business Engagement Head to ensure the embedment of security requirements in the business units development lifecycle/processes as well as the culture.
• Current and emerging technologies and their security features, including securing legacy systems approaching end of life.
• Data security requirements in line with the Bank’s requirements and relevant regulations.
• Leading assessments of outcomes of the CSO Remediation Programs and Activities.
• Assessing CSO Solutions provided to business to ensure they are secure and fit for purpose.
• Facilitate the identification of key controls supporting critical processes and technologies and ensure that they are suitably documented.
• Assisting CSO operational teams in the execution of self-assessments of key controls supporting key processes and technologies.
• Performing security assessments on Newly Implemented Solutions to ensure appropriate baseline security requirements are in place, and where gaps exist provide guidance and advice on the appropriate remediation or security controls.
• Support the CSO and business teams with the remediation of issues or security weaknesses within processes and technologies.
• Facilitate the CSO issue management and remediation process in line with the Bank’s Issue Management standard. The Lead will be responsible for the tracking of CSO issues raised by assurance providers across all lines of defence, and will facilitate the completion of Issue Closure Packs(ICP) and provide quality assurance over the ICPs prior to submission to the relevant assurance providers for issue validation.
• Provide guidance and advise on the prioritisation and remediation of Internal and External Audit cyber security issues.
• Plan and deliver knowledge sharing through engagement with key technical stakeholders.
• Communicate the outcomes of assessments with stakeholders, and provide input for reporting to the relevant committees and forums, e.g. Executive Risk Committee, Issue Management Committee, Board Reporting, etc.

People

• Design, implement and lead cross-functional collaboration processes across technology and security teams (first line and second line), set cross-team commitments and achieve security scale by enabling the work of others.

Education

• Bachelor`s Degrees and Advanced Diplomas: Physical, Mathematical, Computer and Life Sciences (Required)