Specialist: Information & Cybersecurity at Auditor-General of South Africa

Roles & Responsibilities

Strategic Function

• Support the implementation of the business unit balance score card projects and initiatives.

Product management

Anti-Virus Management:

• Monitor gateway firewall for malicious activity and restrict network access using the firewall policy as per business requirements.
• Administer and monitor the firewall to prevent virus attacks from an external source.
• Scan all emails from external and internal sources for viruses and malicious attachments at the Microsoft Exchange server.
• Administer and maintain an enterprise-wide cloud-based anti-virus solution and ensure that all clients have the most recent updates.

Access Administration and User Support:

• Administer and maintain a remote access system (SSL VPN) for AGSA users.
• Provide second-line support to AGSA users with any security related queries within the SLA time frame.  
• Research security software and hardware as determined by the ICT security line manager/ senior management.
• Administer, maintain and update an access list of all server usernames and passwords stored in a secure location.
• Provide input on security related software and hardware to ICT Security line manager or senior management for budgeting purposes.

Audits and risk management:

• Communicate risk and audit findings clearly and effectively to both technical and non-technical stakeholders.
• Drive the remediation of identified security issues and vulnerabilities by collaborating with relevant stakeholders and technical teams.
• Monitor the progress of remediation efforts to ensure timely and effective resolution of issues.
• Track and report on the status of remediation activities, ensuring that corrective actions are completed and validated.

Content Filtering:

• Administer and monitor a spam management solution in order to minimise the amount of spam received by the AGSA employees.
• Administer and monitor the filtering of harmful email attachments received from external sources at the gateway (firewall).
• Administer and monitor filtering of harmful and non-business-related email attachments received from internal and external sources at the relevant mail server.
• Administer and monitor filtering for all users browsing the Internet
• restricting access as per business requirements.

Email Security:

• Monitor and analyse email traffic for potential threats such as phishing, malware, and spam.
• Implement and maintain email filtering and encryption solutions to protect sensitive information.
• Conduct regular audits of email security protocols and policies to ensure compliance and effectiveness.
• Respond to and investigate email security incidents, providing timely resolution and documentation.
• Collaborate with IT teams to ensure secure email configurations and best practices are followed.

Security Administration:

• Monitors the application and compliance of security administration procedures and reviews information systems for actual or potential breaches in security.
• Ensures that all identified breaches in security are promptly and thoroughly investigated and that any system changes required to maintain security are implemented.
• Ensures that security requirements, policies and procedures are adhered to.
• Investigates major breaches of security and recommends appropriate control improvements.
• Ensures overall security administration within the AGSA.

User Awareness Training:

• Develop and deliver information and cybersecurity awareness training programs for all AGSA employees.
• Create educational materials, including presentations and interactive content, to reinforce safe email practices and overall cybersecurity awareness.
• Assess the effectiveness of training programs through surveys, quizzes, and simulations.
• Stay updated on the latest threats and trends to ensure training content remains relevant.
• Foster a culture of security awareness by promoting best practices and encouraging reporting of suspicious activities.

Reports:

• Prepare and present regular reports on cybersecurity incidents, including email security threats, user awareness training outcomes, other relevant metrics, and overall cybersecurity posture.
• Analyse security metrics to identify trends, vulnerabilities, and areas for improvement.
• Document incidents, responses, and resolutions to maintain accurate records for compliance and auditing purposes.
•  Collaborate with management to provide insights and recommendations for enhancing security measures based on report findings.
• Contribute to the development of key p
• Performance indicators (KPIs) for measuring the effectiveness of security initiatives.

Stakeholder Management

• Maintain effective relations with both internal and external stakeholders.
• Manage the feedback process to stakeholders by tracking all queries received, getting the relevant information and formulating appropriate responses according to the approved protocol.

People Management

• Manage own performance to drive productivity.
• Participate and/or take lead in the business unit transformation/culture plans.
• Provide support to the management team with regard to centre management and other people related tasks.

Financial and Operational Management

• Ensure compliance to AGSA policies and procedures.
• Ensure compliance with internal processes and procedures.
• Manage supply chain processes within scope of work.

Other responsibilities (Applicable to All JD’s)

• Perform and/or manage other projects, tasks and assignments not stipulated on the Job description as and when required.
• This position requires a minimum of a bachelor’s degree in information technology or any related qualification (NQF level 7) and
• Security+ or any Security related certification or
• CISM/ CISSP Certification

Experience

• Minimum of 5 years’ experience in an Information or Cybersecurity role which includes:
• Application Security
• Anti-Virus Systems
• Access Management
• Intrusion Detection Systems
• Encryption Software
• Patch Management
• Web Content Filtering
• Email Content Filtering
• User Awareness Training
• Security Testing
• Microsoft Security suite/platform