INFORMATION SECURITY SPECIALIST
Sunninghill
Reporting to the Information Technology, key deliverables will include:
• Overseeing the operations of the NHBRC information security solutions and establishing a maturing enterprise security stance through policy, architecture and training processes
• Developing and implementing an information security strategy for the organisation
• Developing and maintaining the enterprise information security architecture
• Developing and maintaining the enterprise security awareness training programme
• Creating and maintaining the enterprise information security documents (policies, standards, baselines, guidelines and procedures)
• Maintaining up-to-date knowledge of the IT security industry including the awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors
• Selecting and acquiring additional security solutions or enhancements to existing security solutions to improve overall enterprise security as per the enterprise existing procurement processes
• Overseeing the deployment, integration and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures generically and the enterprise security document specifically
• Ensuring the confidentiality, integrity and availability of the data residing on or transmitted to/from/through enterprise workstations, servers and other systems and in databases and other data repositories
• Ensuring enforcement of enterprise information security policies
• Supervising all investigations into problematic activity and providing ongoing communication with senior management
• Planning and executing vulnerability assessments, penetration tests and security audits
• Performing regular security awareness training for all employees to ensure consistently high levels of compliance with enterprise security document
• Engaging in ongoing communications with peers in the Applications and ICT Infrastructure teams as well as the various business units to ensure enterprise-wide understanding of security goals, to solicit feedback and to foster cooperation.
Requirements:
• National Diploma/degree in Computer Science
• Minimum of 5 years’ experience
• Related Information Security certification.
Closing date: 30 November 2015
Please e-mail your CV.
Applicants are informed that correspondence will be limited to short-listed candidates only.
If notification of an interview is not received within 1 month of the closing date, candidates may regard their application as unsuccessful.
