Senior Specialist: Threat and Vulnerability Management at MTN

Mission/ Core purpose of the Job: 

• This role is responsible for identification, management and remediation of technical vulnerabilities and threats across MTN infrastructure, applications and network. The role reports into the MTN SA Hub that provides security Services . The incumbent will be responsible for continuously performing threat hunting, responding to incidents and improving the security controls. The incumbent will be required to research and keep abreast on the cyber-attacks and threats in order to continuously protect MTN against new types of attacks. The Senior Specialist will take the lead during incident investigation to drive speedy resolution to minimise potential data leakage and financial loss to MTN. The role engages with key business and operational partners in managing the detection, response, and remediation of cyber related attacks on MTN’s network and its systems. 

Key Performance Areas: 
Technical Delivery

• Provide vulnerability analysis specific input to the MTN information security strategy 
• Develop, integrate and monitor detailed business plans for vulnerability analysis in accordance with the frameworks, goals and targets agreed for the holistic Group function.
• Organise and execute periodic vulnerability assessments and Pen Tests by applying knowledge of scanning tools and emerging risks. 
• Work with Group Cyber Defence to coordinate scans with all other parties involved in the Spoke Opcos, including the distribution of notices or notifications, and the management of logistical requirements. 
• Lead process optimisation, enhancement, efficiency and continuous improvement on initiatives and programmes within the threat and vulnerability management, as well as benchmark and analyse trends to optimise internal processes.
• Track and prioritise the remediation of vulnerabilities, according to their level of criticality and their potential risk to the business of the affected asset. Report on the status of the resolution of vulnerabilities on a period basis.
• Analyse and identify vulnerability analysis trends across the business and compile consolidated reports on the status of vulnerability analysis for regular updates to the Genaral Manager: Technology Security 
• Ensure incident identification, assessment, quantification, reporting, communication, and mitigation while confirming SLA compliance, process adherence, and process improvisation to achieve operational objectives
• Perform threat management, threat modelling, identify threat vectors and develop use cases for security monitoring. Maintaining working knowledge of cyber threat actor tactics and techniques
• Responsible for integration of standard and non-standard logs into the Group and review/ revise the processes to strengthen Security Operations.
• Consolidate reports, dashboards, metrics from Group and internal operations and present to Management of MTN SA Hub. 
• Co-ordinate with stakeholders, build and maintain positive working relationships with them
• Lead efforts and participate in audits covering cyber defence. 
• Assist Senior Manager Security Managed Services to implement the cyber threat and vulnerability management strategies and operational requirements (Cyber Defence)
• Assist to drive strategic alignment of the Group cyber incident response operations and cyber incident response services 
• Develop a standardised set of responses to cybersecurity breaches with responses varying according to the level of cybersecurity breaches. 
• Establish protocols for communication within the MTN Group.
• Engage and lead technology teams during a cyber-incident and collaborate with MTN SA and Group teams. 
• Revise and develop processes to strengthen the current Security Operations Framework, review policies and highlight the challenges in managing SLAs 
• Transfer knowledge of methodologies, processes and tools to relevant stakeholders (as and when required).

Budgets

• Assist with management of departmental budgets in line with business objectives and facilitate forecasting;
• Manage project initiative budgets in line with business objectives
• Drive initiatives that will ensure that the “cost of operations” are reduced, in line with a least cost operating strategy stemming from the business drivers.

Minimum Requirements  

Education:

• Minimum of 3 years degree qualification in Information Technology – BSc/BCom
• CISM/ CISSP/ CEH/ GICSP certification (one of)
• Other qualifications (ITIL, COBIT) advantage

Experience:

• Minimum of 5 years of relevant work experience in Information Security 
• 2 - 4 years working experience in the management of information security incident process would be advantageous (process definition, incident response, reporting) as well as experience in using the tools necessary to execute incident response and recovery (incident triage, forensic imaging and machine examination, log extraction and review etc across multiple endpoint and server environments)
• Experience in large scale information security projects /vendor relationships
• Experience working in Africa and Middle East and have a grasp of political, social, infrastructure and integrity challenges
• Advanced working understanding of the information technology environment of a telecom company
• In-depth knowledge and experience of security concepts such as cyber-attacks and techniques, threat vectors, threat hunting, threat intelligence (tools and sources), EDR, UEBA, CASBs, SOAR, incident management as well as TTP’s (tactics, techniques and procedures).  
• Experience in security device management and SIEM 
• Experience in threat management and continuous assessment using CMM 
• Knowledge of various operating systems including but not limited to Windows, Linux, Unix 
• Knowledge of applications, databases, middleware to address security threats against 3-tier environments 
• Familiarity and knowledge of security frameworks (NIST CSF, CIS, ISO)
• Proficient in report writing, dashboards and documentation such as technical runbooks driven by frameworks like MITRE 
• Ability to handle high pressure situations with key stakeholders 
• Excellent Analytical and problem-solving skills
• Relationship management and interpersonal skills
• Excellent communication and leadership skills 
• Understanding of current information security challenges and solutions; industry trends
• Experience leading cross functional teams
• Advanced knowledge of and experience with office software including Excel, Word, and PowerPoint, and email applications.

Please note that MTN is an equal opportunity employer.
Should you not hear from us within 14 (fourteen) days from the closing date of this advertisement, you may consider your application to be unsuccessful.