Officer, IT Security at Standard Bank Group

JOB DESCRIPTION

• To implement  a comprehensive Information Technology Security program with the Information Technology lines of business to protect their applications and supporting infrastructure from both internal and external threats, manage threats and incidents when these materialise, ensure compliance with regulatory requirements regarding Information Technology security, ensure the appropriate use of bank assets and educate employees about their Information Technology security responsibilities.

QUALIFICATIONS
Qualification:

• The potential candidate should either have a degree in Information Security related Certification (CISSP, CISM, CRISC, CISA).

Experience and Skills: 

• Prior industry experience in the corporate (preference Financial Institution) environment in an IT Security role.
• Experience in directly assessing and communicating Risk Exposures and developing risk mitigation plans.
• Experience in working with international and cross functional matrix environments.  Experience in engaging with a broad spectrum of stakeholders including senior executives.  
• Experience in coordinating large initiatives across multiple areas.
• Support and security of endpoints and Virtualization.
• Backup, Storage and Cloud experience
• Software Development Experience 

ADDITIONAL INFORMATION
Key Responsibilities:

• Develop and maintain relationships with key stakeholders to further embed the partnership that exists between IT Security, IT and the business.
• Research and maintain knowledge of the IT threat landscape, security trends, regulatory requirements, new technologies and best practices in order to provide sensible and pragmatic security advice to stakeholders.
• Provide ad-hoc consulting and engagement with various business units on secure, cost effective and practical control implementations across various platforms and/or systems.
• Facilitate the adoption of IT Security solutions e.g. privilege user management or access management processes and services e.g. IT Security engineering and penetration tests across the application and infrastructure landscape.
• Provide adequate IT Security input into all features and other technology solutions; this includes the requirements for the evaluation, selection, installation, configuration and maintenance of hardware, applications and software.
• Develop an effective line of business IT Security strategy that supports and enables business strategy

Competencies:

• Exploring Possibilities
• Providing Insights
• Adopting Practical Approaches
• Examining Information
• Interpreting Data
• Articulating Information
• Making Decisions
• Directing People
• Showing Composure
• Upholding Standards
• Pursuing Goals
• Knowledge of Banking & Financial Service