Job Vacancies at MTN

Mission/ Core purpose of the Job: 

• Oversee and run the SA Hub security services across the various security domains required . The role provides a holistic management, governance and specialist skills to support MTN on their security needs and drive the team's performance. The role reports to the General Manager Technology Security, MTN SA

Key Performance Areas: 

• Develop goals, strategies, and plans needed to achieve the MTN Group and Spoke Opco Information Security Requirements
• Build the capabilities to enable optimal Network and IT Security; directly responsible for significantly contributing to the overall technical architecture, stability, resiliency and general health related to security solutions in the Spoke Opcos.
• Provide governance and technical leadership and guidance to Hub Specialists and business partners in Opco for monitoring, provisioning, SLA’s, development and response activities related to Hub security Services.
• Validate that security architectural standards are being met in Spoke Opco and alignment to Group Information Security and assist with the enablement of Security Architecture within Technology to define standards . 
• Drive the design, development and deployment efforts related to security architecture, scalability, availability and performance ; provide guidance and review on business and technology solutions – design phase security solution architecture and post implementation. 
• Provide on-going subject matter expert level consultation to the Hub and project and operational teams, application owners, and other technology and network teams on relevant security controls requirements.  
• Model threats and risks as well as the controls necessary to mitigate them, on both an organisational and technical level – thinking like a malicious hacker, understanding and anticipating the moves and tactics that a hacker might use to attack MTN Mobile network and systems. 
• Work closely with the teams to identify and select the right security controls to protect MTN's network & IT infrastructure, cloud and IoT solutions; define functional and non-functional security requirements and criteria to conduct technology evaluation and selection. 
• Serve as a technical lead and mentor to the Hub and team members 
• Work with the application functions, network teams and IT infrastructure teams to identify and assist with the implementation of Security policy, process, people and technology improvements. This includes the use of automation and security specific testing; Analysing and providing remediation guidance for identified weaknesses or vulnerabilities; validating and verifying remediation implementation.
• Create and continuously review governing principles to guide information, technology, and solution decision making.
• Drive the implementation of security governance and ensure adherence to it. 
• Support the prioritisation process to drive prioritisation of requirements and initiatives in functional areas to ensure timeous delivery of requirements.
• Drive assessments of security risk and audits; work with Technology Risk and Audit teams in the Opcos to review compliance and audit requirements for Information Security and ensure they are addressed.
• Foster a security-conscious culture within the Technology and Business teams.
• Forecast, plan, develop and review Hub budgets in line with MTN Group financial guidelines and requirements. 
• Publish baseline policies, manage and run governance for Information Security function for the allocated Hub and Spoke in line with Group Information Security.
• Enable training for staff on Information Security policies and procedures with Group guidance for Spoke Opco. 
• Reports to Information Security lead concerning residual risk, and other security exposures against the proposed security standards and policies including misuse of information assets and noncompliance.
• Ensure and manage wide implementation of baseline security functions and subsequently the intermediary and Enhanced capabilities.  
• Measure and report on the effectiveness of Information Security management and control activities to the GM Technology Security and the requisite governance framework.
• Report at operations and audit committees and manage the actionable outcomes related to security. 

Tactical Planning

• Manage and develop the capability of the team to deliver security services needs of MTN. 
• Partner with business leaders and peer-level managers to assess the technological cost and impact of recommended changes, help clarify priorities, and coordinate cross-organizational/ consortia where common needs have been identified.
• Assess risks and the effects of specific requirements on other business processes and system priorities to ensure security services are aligned with business strategic objectives. 
• Identify high risk/priority security areas for improvement 
• Work closely with Finance teams in MTN SA and business to ensure budgets and cost recovery procedures are in place and working effectively 
• Build a strong relationship with the business to ensure delivery
• Develop, monitor and deliver on SLAs
• Where there are challenges to perform tasks remotely, ensure the executes actions that are in line with above mentioned activities. 

Supervisory / Leadership / Managerial Complexity:  

• Recruit, develop and retain people with outstanding skills, qualifications and potential. 
• Performance management and identification of training needs. 
• Accountable for a customer-centric culture and shift to legendary service provision.
• Employee relations and collaborative teamwork. 
• Coaching and guidance of subordinates. 
• Build professionalism, loyalty and commitment to the organization. 
• Communicate actively and effectively resolving any potential conflicts that may arise. 
• Living the MTN Brand – changing and influence employees’ behaviour. 
• Clarify roles within the team to enhance collaboration and results 
• Reward practices conducive to building individuals and team confidence 
• Optimal human resource allocation / redeployment in line with strategic objectives 
• Manage conflict proactively and monitor disciplinary and grievance actions and trends 
• Team learning and knowledge sharing within team; appropriate strategic timing for people up-skilling in line with newly developed technologies and strategic practices 
• Train, motivate & develop resources 

Minimum Requirements  

Education:

• Minimum of 4 years tertiary qualification in Information Technology
• MBA or Masters advantageous
• CISSP/CISM/CEH CRISC

Experience:

• Manager with track record of at least 5 years supervisory experience. 
• At least 8 years in technical security disciplines.
• At least 3 years in telecommunications industry
• Must have a wide breadth of knowledge and experience across security products, tools, and industry trends 
• Good working knowledge of current security risks, risk management and assessments
• Ability to interact with a broad cross-section of personnel to explain and enforce security measures
• Ability to maintain a high level of discretion and personal integrity in the exercise of duties, including the ability to professionally address confidential matters
• Expert knowledge of regulatory compliance requirements (PCI-DSS, ISO 27001, GDPR, etc.)
• Excellent written and verbal communication skills as well as business acumen and a commercial outlook
• Understanding of emerging markets advantageous
• Worked across diverse cultures and geographies
• Pan Africa multi-cultural experience is advantageous

go to method of application »

Mission/ Core purpose of the Job: 

• This role is responsible for embedding and maintaining technical security architecture and controls requirements in mobile money and new products and applications areas in the Fintech, digital, IoT and Cloud environments. This includes planning and preparing solution designs, architecture standards and configurations, and engagement models to be implemented across all business areas, core systems, third-party interfaces, and the internal core network interfaces. This role will be a valued partner to development and engineering teams to ensure secure architectures, patterns, and solutions are created and maintained.

Key Performance Areas:

• Participate in and lead the security design and implementation of all products across Financial Services, Consumer, Enterprise, Technology and Digital - design phase security and post implementation.
• Evaluate the ongoing effectiveness of security controls established to ensure the safety of the MTN SA product and application suits. 
• Partner with IT, Risk management and Group Security to develop a comprehensive set of cyber-security policies and procedures governing hosted and SaaS environments. 
• Provide security guidance and review on business and technology products/ solutions, model threats and risks as well as the controls necessary to mitigate them, on both an organisational and technical level – thinking like a malicious hacker, understanding and anticipating the moves and tactics that a hacker might use to attack MTN systems. 
• Research, validation and evaluation of all new product initiatives, with phase gates reviews presented to all stakeholders during the process
• Ensure that third party solutions and products follow MTN Controls standards.
• Review the security design of MTN applications and products, drive the testing process (prior to deployment). 
• Perform best-practices risk assessment of MTN’s product security stacks – Mobile Money, Digital, Consumer, etc.
• Build security into MTN Software Development Lifecycle; creating and maintaining secure software development/ acquisition methodology - secure application development/ acquisition and coding practices across all development teams (internal and 3rd Party), security testing for existing and new systems, defining processes and establishing meaningful metrics for management. 
• Implement API security practices and container security management. 
• Work with the product teams to identify and assist with the implementation of policy, process, people and technology improvements. This includes the use of automation and security specific testing tooling; Analysing and providing remediation guidance for identified weaknesses or vulnerabilities; validate and verify remediation implementation.

Evaluate and oversee the security of outsourced / third-party technologies and hosting environments to ensure they provide adequate protection for the processing, transmission, and storage of MTN’s information:

1. Implement Group reference architecture for integrating with third parties and partners
2. Implement mechanisms for vetting and implementing integration with cloud providers
3. Implement architectural and development standards for third party application security

• Deliver technical security solutions, standards and configurations for the MTN SA Mobile Money technology stack, including the mobile money core system, third-party interfaces, and the internal core network interfaces. Special focus on integrating disparate systems, encryption, cryptographic protocols and algorithms, automatic patch management, security hardening of applications and devices, networks segregation with strong access controls, audit management and security monitoring, and ensuring the management of security compliance of MTN’s mobile money products, services and infrastructure. 
• Evaluate outsourced Mobile Money integration points to ensure they provide adequate protection for the processing, transmission, and storage of transactions.
• Act as a subject matter expert to application development and support personnel for any/all issues regarding the security design or use of applications. This includes enterprise operational staff and business unit personnel.
• Create and execute a training and awareness program for secure development and best practice 

Operational Delivery:  

• Assist Senior Manager Security Architecture to develop and implement the product security architecture requirements and framework, overarched by the business risk strategy
• Develop and implement the security solution architecture roll-out definition and actualization of products, including via third parties
• Drive the design and implementation of secure applications in support of Enterprise-wide and Business Unit applications. Ensure thorough security design and testing is built into them, new and existing applications and products (inhouse & applications, on-prem or cloud)
• Roadmap definitions for security of key products by monitoring security environment; identifying security gaps; evaluating and implementing enhancements. 
• Utilize security tools for the appsec program such as static and dynamic code analysis tools and develop continual improvement program.
• Supervise and manage collaboration with relevant vendors/stakeholders for vulnerability scanning and penetration testing exercises. Coordinate red teams and penetration testers to facilitate exercises and work with application engineering teams on remediation. Oversee remediation efforts
• Assist with code reviews and create secure reusable patterns.
• Perform risk and threat assessments.
• Ensure implementation of technical security standards on the application platforms as well as ongoing monitoring and reporting of compliance against the standards 
• Ensure the integration of the financial technology and digital platforms into the security compliance and monitoring eco-system both at opco and Group level then regularly confirm and report on ongoing effectiveness
• Participate in information security operations duties, including incident response escalations. Liaise with other relevant functions to facilitate the timeous closure of incidents and vulnerabilities in relation to the financial technology and digital platforms 
• Assist relevant business owners and custodians in identifying and setting activities logs, audit trails, functional and technical requirements, and ensure adequate custody of such.
• Stay abreast of current and evolving technologies in the application security area.

Budgets

• Assist with management of departmental budgets in line with business objectives and facilitate forecasting;
• Manage project initiative budgets in line with business objectives; and
• Drive initiatives that will ensure that the “cost of operations” are reduced, in line with a least cost operating strategy stemming from the business drivers.

Minimum Requirements  

Education:

• Minimum of 3 years tertiary qualification in Information Technology/ Engineering
• CISSP/CEH/ CGEIT certification (one of)
• SABSA and/or TOGAF qualification will be an advantage
• Business analysis/architecture qualifications
• Other qualifications (ITIL, TMF, COBIT) advantage
• Fluent in English

Experience:

• Minimum of 5 years of relevant work experience in Information Security 
• Experience in designing and implementing application security systems architecture
• Experience in managing and implementing large scale security projects
• Advanced working understanding of the information and technology environment of a bank or telecom company
• Other security experience such as incident handling (from appsec perspective), architecture, operations, GRC, OWASP, etc
• Experience in application development with at least one modern programming language.
• Knowledge of DevOps and Agile methods
• Experience performing code reviews and with associated applications such as static code analysis tools and dynamic code scanners in several languages
• Knowledge of web application architectures
• Knowledge of threat modelling
• Knowledge of dynamic code 

Please note that MTN is an equal opportunity employer.
Should you not hear from us within 14 (fourteen) days from the closing date of this advertisement, you may consider your application to be unsuccessful.

go to method of application »

Mission/ Core purpose of the Job: 

• This role is responsible for identification, management and remediation of technical vulnerabilities and threats across MTN infrastructure, applications and network. The role reports into the MTN SA Hub that provides security Services . The incumbent will be responsible for continuously performing threat hunting, responding to incidents and improving the security controls. The incumbent will be required to research and keep abreast on the cyber-attacks and threats in order to continuously protect MTN against new types of attacks. The Senior Specialist will take the lead during incident investigation to drive speedy resolution to minimise potential data leakage and financial loss to MTN. The role engages with key business and operational partners in managing the detection, response, and remediation of cyber related attacks on MTN’s network and its systems. 

Key Performance Areas: 
Technical Delivery

• Provide vulnerability analysis specific input to the MTN information security strategy 
• Develop, integrate and monitor detailed business plans for vulnerability analysis in accordance with the frameworks, goals and targets agreed for the holistic Group function.
• Organise and execute periodic vulnerability assessments and Pen Tests by applying knowledge of scanning tools and emerging risks. 
• Work with Group Cyber Defence to coordinate scans with all other parties involved in the Spoke Opcos, including the distribution of notices or notifications, and the management of logistical requirements. 
• Lead process optimisation, enhancement, efficiency and continuous improvement on initiatives and programmes within the threat and vulnerability management, as well as benchmark and analyse trends to optimise internal processes.
• Track and prioritise the remediation of vulnerabilities, according to their level of criticality and their potential risk to the business of the affected asset. Report on the status of the resolution of vulnerabilities on a period basis.
• Analyse and identify vulnerability analysis trends across the business and compile consolidated reports on the status of vulnerability analysis for regular updates to the Genaral Manager: Technology Security 
• Ensure incident identification, assessment, quantification, reporting, communication, and mitigation while confirming SLA compliance, process adherence, and process improvisation to achieve operational objectives
• Perform threat management, threat modelling, identify threat vectors and develop use cases for security monitoring. Maintaining working knowledge of cyber threat actor tactics and techniques
• Responsible for integration of standard and non-standard logs into the Group and review/ revise the processes to strengthen Security Operations.
• Consolidate reports, dashboards, metrics from Group and internal operations and present to Management of MTN SA Hub. 
• Co-ordinate with stakeholders, build and maintain positive working relationships with them
• Lead efforts and participate in audits covering cyber defence. 
• Assist Senior Manager Security Managed Services to implement the cyber threat and vulnerability management strategies and operational requirements (Cyber Defence)
• Assist to drive strategic alignment of the Group cyber incident response operations and cyber incident response services 
• Develop a standardised set of responses to cybersecurity breaches with responses varying according to the level of cybersecurity breaches. 
• Establish protocols for communication within the MTN Group.
• Engage and lead technology teams during a cyber-incident and collaborate with MTN SA and Group teams. 
• Revise and develop processes to strengthen the current Security Operations Framework, review policies and highlight the challenges in managing SLAs 
• Transfer knowledge of methodologies, processes and tools to relevant stakeholders (as and when required).

Budgets

• Assist with management of departmental budgets in line with business objectives and facilitate forecasting;
• Manage project initiative budgets in line with business objectives
• Drive initiatives that will ensure that the “cost of operations” are reduced, in line with a least cost operating strategy stemming from the business drivers.

Minimum Requirements  

Education:

• Minimum of 3 years degree qualification in Information Technology – BSc/BCom
• CISM/ CISSP/ CEH/ GICSP certification (one of)
• Other qualifications (ITIL, COBIT) advantage

Experience:

• Minimum of 5 years of relevant work experience in Information Security 
• 2 - 4 years working experience in the management of information security incident process would be advantageous (process definition, incident response, reporting) as well as experience in using the tools necessary to execute incident response and recovery (incident triage, forensic imaging and machine examination, log extraction and review etc across multiple endpoint and server environments)
• Experience in large scale information security projects /vendor relationships
• Experience working in Africa and Middle East and have a grasp of political, social, infrastructure and integrity challenges
• Advanced working understanding of the information technology environment of a telecom company
• In-depth knowledge and experience of security concepts such as cyber-attacks and techniques, threat vectors, threat hunting, threat intelligence (tools and sources), EDR, UEBA, CASBs, SOAR, incident management as well as TTP’s (tactics, techniques and procedures).  
• Experience in security device management and SIEM 
• Experience in threat management and continuous assessment using CMM 
• Knowledge of various operating systems including but not limited to Windows, Linux, Unix 
• Knowledge of applications, databases, middleware to address security threats against 3-tier environments 
• Familiarity and knowledge of security frameworks (NIST CSF, CIS, ISO)
• Proficient in report writing, dashboards and documentation such as technical runbooks driven by frameworks like MITRE 
• Ability to handle high pressure situations with key stakeholders 
• Excellent Analytical and problem-solving skills
• Relationship management and interpersonal skills
• Excellent communication and leadership skills 
• Understanding of current information security challenges and solutions; industry trends
• Experience leading cross functional teams
• Advanced knowledge of and experience with office software including Excel, Word, and PowerPoint, and email applications.

Please note that MTN is an equal opportunity employer.
Should you not hear from us within 14 (fourteen) days from the closing date of this advertisement, you may consider your application to be unsuccessful.

go to method of application »

Mission/ Core purpose of the Job

• Responsible for leading MTN’s mobile advertising business, ensuring mobile advertising inventory is developed and grown; sales channels are managed; and sales targets are achieved, optimised and sold at the correct price by using relevant insights. The Senior Manager will also collect and analyse all external data regarding the broader digital advertising market and engage with advertisers in order to leverage available business opportunities. The Senior Manager is also responsible for contributing towards MTN’s overall strategic goals, to achieve profitable growth and to continuously improve the operations performance. The Senior Manager: Mobile Advertising reports to the Chief Digital Officer.

Context (Global influences, environmental / industry demands, organizational mission etc.)

• MTN is entering a new phase in its lifecycle where operational and commercial excellence has become critical for success. The urgency for change has become more heightened amidst increased competitive intensity in South Africa. The Senior Manager, Advertising must therefore ensure the successful delivery in context of:
• An expertise-based multicultural organisation
• A dynamic and evolving field of Telecommunications
• Revolutionary workforce practices which are bringing together global labour markets
• Management of executive and local shareholder expectations across MTN SA and Group
• Achievement of top quartile operating efficiency and effectiveness through scale and common policies and processes
• Dynamic legal and regulatory environment
• Convergence in markets and exploration of non-traditional revenue streams requiring complex interpretation and structuring
• Evolving industry sector constantly presenting new challenges and opportunities to the core businesses
• Rapid horizontal and vertical expansion of MTN, in terms of size, products, customers and geographic distribution

Key Performance Areas: Core, essential responsibilities / outputs of the position (KPA's)

Key Deliverables

The Senior Manager, Advertising will be accountable to achieve the following objectives:
Strategy Development and Implementation

• Development and execution of the functional strategy in line with the overarching business goals
• Ensure effective implementation of the strategy by means of providing direction, structure, frameworks, models, plans and roadmaps
• Conduct regular review of the functional strategy and roadmap to ensure its alignment with the changing dynamics of the internal and external ecosystem

Governance

Strategic Meetings

• Participate and provide input in strategic meetings
• Perform evaluation baseline of key performance indicators (KPIs)
• Request for relevant budget for internal projects and new initiatives
• Facilitate preparation of proposals on change initiatives, policies and procedures

Escalations

• Escalate issues that will result in severe time, scope, productivity, and cost or resource or reputational impact
• Manage and provide solutions to escalations that have multiple processes / functions impact on critical path of service delivery
• Manage and provide solutions through stakeholder consultation where relevant

Function Tactical

• Review all projects initiated (internal or global)
• Prepare objectives, targets and budgets for Advertisements as applicable
• Review key risks, issues and dependencies and set mitigation actions
• Facilitate in sign-off / making decisions regarding tactical changes

Performance

• Monitor performance and alignment with MTN SA strategy
• Ensure alignment between/across other functions within the SA Digital team and other commercial functions e.g. Consumer Business Unit, Enterprise Business Unit, Fintech

Reporting

• Report on a periodic basis to the Reporting Manager relating to progress made within the function and in accordance with the measurement metrics set by the organisation
• Report on an ad hoc basis on specific projects, as required

Budgets

• Manage functional budgets in line with overall business objectives
• Manage project initiative budgets in line with business objectives
• Ensure that the cost of operations is reduced, in line with a least cost operating strategy stemming from the business drivers

Operational Delivery

• Lead and build the Mobile Advertising business for MTN SA
• Develop and implement the Advertising inventory roadmap ensuring customers receive advertising trough their preferred channel.
• Lead and manage the mobile advertising pricing.
• Appoint and manage Sales partners to drive Sales of Mobile Advertising.
• Develop MTN’s digital advertising strategy, including but not limited to Search, email/sms campaigns, social, and retargeting
• Embed and measure Advertising in MTN SA and ensure that SA’s strategy is aligned to the Group-wide advertising strategy.
• Create an optimal advertising matrix to sell inventory for 3rd parties while also promoting MTN products and services as well as 3rd party products and services.
• Develop relationships with Media Agencies and directly with advertising clients
• Ensure advertising is relevant, targeted and timeous by leveraging off various sources including customer insights.
• Ensure advertisements are actionable and reported via the approved reporting standards e.g. click through options/number to dial etc.
• Optimise advertising space sold at the correct price to maximize the revenue opportunity.
• Create templates for Contracting, User requirement specifications, Code of Conduct, Pricing, Guidelines, Training Material and Go to Market and utilise it to run the business more efficiently and effectively.
• Ensure that all inventory is also sold programmatically.
• Manage Mobile Advertising products and processes with the objective to optimize revenue/ROI, protect customer privacy, and increase the value of Advertising for MTN
• Identify opportunities to enhance the current environment and work with technical teams to modify, enhance, or replace relevant platforms.
• Collaborate with respective Digital Product Managers, their partners and teams in South Africa’s other commercial units
• Drive a digital market segmentation program across MTN South Africa
• Manage and coordinate the digital products and services (both business and consumer) services across South Africa
• Strategically manage all electronic advertising environments including managing relationships with service providers such as content suppliers the areas of Digital Marketing Portal, Digital Web Environment and Digital Content Portal
• Manage the relationships with Mobile Advertising technology suppliers
• Identify future challenges and opportunities, create marketing plan and identify trends to optimise market share, improve marketability and profitability of products and services
• Create digital advertising campaigns for increasing brand and product awareness
• Create digital advertising campaigns to increase the Mobile Advertising opt-in base
• Develop advertising models and frameworks based on Big Data insights
• Monitor, analyze and share products performance trends from financial, competitive and operational perspectives.

Job Requirements (Education, Experience and Competencies)

Education:

• Minimum of 4-year tertiary degree (Bachelor of Science, Commerce, Engineering or related field)
• MBA or Masters (advantageous)

Experience:

• Manager track record of 5 years or more; with at least 3 years’ experience in advertising, telecommunications, digital marketing, digital product management and/or content management
• Experience in Advertising Sales will be advantageous
• Hands on experience in managing and implementing digital products and initiatives
• Deep understanding of the digital advertising ecosystem, players, business models and industry related best practices.
• Understanding emerging markets advantageous
• Worked across diverse cultures and geographies
• Entrepreneurial spirit, self-driven and ability to motivate a fast-paced team
• Attitude of Innovation, inventiveness and thought leadership
• Abreast of global mind-set and best practice
• Willing and flexible to travel
• English speaker. Other African languages a plus.

Competencies:

• Functional Knowledge:
• Advertising Sales
• Value Added Services
• Digital content, media and/or applications
• Advertising Product and Content Management
• Digital marketing

Skills

• Sales Management
• Business Acumen
• Analytics and Interpretation
• Strategic Thinking
• Organizational Agility
• Digital mind-set
• Dealing with ambiguity and complexity
• Decision Making
• Conflict Management
• Negotiation
• Financial and Numerical
• Project Management