Jobs Career Advice Signup
X

Send this job to a friend

X

Did you notice an error or suspect this job is scam? Tell us.

  • Posted: Jul 9, 2024
    Deadline: Not specified
    • @gmail.com
    • @yahoo.com
    • @outlook.com

  • Never pay for any CBT, test or assessment as part of any recruitment process. When in doubt, contact us

    The University of Pretoria is a multi-faculty research-intensive university that has remained among the top South African universities in research output and impact. UP is also the top producer of graduates in the country. With campuses in Pretoria and its surrounds, as well as in the country’s economic hub, Johannesburg, UP is conveniently situated...
    Read more about this company

     

    ITS Security Manager - Department of Information Technology Services

    JOB PURPOSE:

    The purpose of the job is to provide life cycle management of the information security environment by architecting, planning, acquiring, implementing, maintaining and retiring strategies, policies, procedures, systems and equipment, to ensure a secure and auditable data processing, storage and communication environment.

    RESPONSIBILITIES:

    The successful candidate’s responsibilities will include, but are not limited to:

    Security Architecture and Strategy:

    • Develop an Information Security Architecture;
    • Plan, develop, implement, maintain and test security strategy;
    • Ensure infrastructure architecture and security solutions are implemented in line with industry best practices;
    • Provide support to IT projects that require security solutions;
    • Advise on information security opportunities that can be adapted to meet strategic objectives;
    • Be responsible for developing and supporting cyber security strategies and initiatives;
    • Plan and co-ordinate implementation of defences against security breaches and vulnerabilities;
    • Evaluate systems based on security requirements;
    • Co-ordinate a strategy to prevent, detect and monitor possible unauthorized intrusion/access;
    • Co-ordination of IT security activities, security policies and standards:
      • Liaise with the IT Risk and Compliance Manager;
      • Study and stay current with industry standard best practices for IT security, and emerging security trends and tools;
      • Develop and maintain relevant operational security policies, practices and procedures consistent with legislation and best practices on diverse environments;
      • Provide guidance to operational teams by defining access privileges, control structures and resources;
    • Audits and security incidents:
      • Function as team leader of the ITS CSIRT;
      • Co-ordinate investigations of suspected and actual security breaches, issues and incidents, with their resolutions by the CSIRT, in accordance with the security incident management process;
      • Produce reports of investigations into suspected and actual security breaches with recommendations, and ensure that remedial action is taken;
      • Participate in audits and compliance reviews, and co-ordinate the required actions to ensure identified operational security gaps are addressed;
      • Establish relationships with law enforcement, Internet service providers, the SANReN/TENET, CSIRT, etc., to facilitate the gathering of evidence and potential prosecution of attackers;
    • Threats and risk analysis:
      • Proactively assess and identify risks and mitigating strategies within the ITS Operations Division;
      • Co-ordinate and ensure regular external and internal vulnerability scans and penetration testing;
      • Co-ordinate research into and assessment of the impact of new threats by the ITS CSIRT;
      • Analyse malware behaviour, network infection patterns, and security incidents;
      • Subscribe to, and consider, threat reports and advisories from relevant CSIRTs and vendors, and co- ordinate pro-active ITS responses as required.

    MINIMUM REQUIREMENTS:

    • B Degree in an applicable field such as Computer Science, Informatics, Information Technology, or Engineering with five years’ IT Security experience, with:
    • Four years’ experience in/with:
      • An ITS security environment;
      • A Unix/Linux and MS Server operating systems, and Oracle/SQL databases.

    REQUIRED COMPETENCIES (SKILLS, KNOWLEDGE AND BEHAVIOURAL ATTRIBUTES):

    Knowledge of:

    • Life-cycle management of IT systems and data;
    • Relevant legislation;
    • An understanding of best practices for security management;
    • Security frameworks such as Zero Trust, Defence in Depth;
    • Unified Threat Management (UTM);
    • Policy and compliance tools;
    • Technical competencies:
      • Vendor-specific products and training;
      • Computer literacy;
    • Behavioural competencies:
      • Communication skills;
      • Interpersonal skills;
      • Independent worker with initiative.

    ADDED ADVANTAGES AND PREFERENCES:

    • Honour's Degree in an applicable field such as Computer Science, Informatics, Information Technology or Engineering;
    • One-year experience in Penetration testing;
    • One to three years’ experience in:
      • Project management in IT environment;
      • Security Attack pathologies (network threat analysis);
      • Systems analysis and synthesis;
    • CompTIA Security +/ GSEC/ CISM/ / CEH / CISSP.

    Method of Application

    Interested and qualified? Go to University of Pretoria/Universiteit van Pretoria on www1.up.ac.za to apply

    Build your CV for free. Download in different templates.

  • Send your application

    View All Vacancies at University of Pretoria/Univers... Back To Home
    View Current vacancies at University of Pretoria/Universiteit van Pretoria
Jobs You Might Be Interested in

Related Companies Hiring Now

Career Advice

View All Career Advice
 

Subscribe to Job Alert

 

Join our happy subscribers

 
 
Send your application through

GmailGmail YahoomailYahoomail