Job Description

Information Security LeadOur client is seeking a Information Security Lead who would be responsible for developing and managing Information Systems cyber security, including disaster recovery, database protection and software development. Develop and deliver Information Security standards, best practices, architecture and systems to ensure information system security across the company is South Africa.Responsibilities:OperationalEnsure that all policies developed are in line with contractual, legislative and industry best practiceEnsure that all policy exceptions are documented and tracked through their risk life cycleDrive implementation and policy compliance across all business unitsCreate and rollout an awareness programDefine and measure metrics to ensure awareness programs are effectiveEstablish and implement an information security risk management frameworkManage and maintain an information security risk register that document, evaluates, and tracks all information security risks and feeds into the organisational risk registerOversee, identify, and manage all related operational costs in accordance with financial policies, procedures, processes, prescribed schedule of payments, procurement and subcontractor management policies and proceduresEstablish and maintain appropriate internal controls and reporting systems to meet performance expectationsEnsure operating efficiencies through enhanced resource management and budget controlKey Service areaEnsure that there are regular information security audits and penetration testing on various levels of application, database, policy etcEnsure that all contracted security requirements are fulfilledControl the management of organisational risks through monitoring and reporting mechanismsReview the Business Continuity and Disaster Recovery plans annually to ensure all tasks are correctly assigned and are implementable by designated personnelMonitor compliance of organisational policies and procedures and adherence to all statutory and regulatory requirements prescribed for overall corporate governanceReportingCompile and submit reports on policy compliance levels per business unitCompile and submit Information Security Management report to SSCCompile and submit report information security risks and remediation plansPeople ManagementManage employees directly under supervision and to maintain effective utilisation and discipline required to achieve business objectivesCreate an enabling environment that facilitates effective performance by direct reports and instilling behaviour that supports the organisational valuesProvide access to skills development and capacity building opportunitiesRequirements:MatricRelevant undergraduate degree/diploma and/or certificateCertification or completion of CISSP, CISM, CISA, ISO/ IEC 27001 Lead Implementor and/or CompTIA Security+Strong technical background in systems and network securityProject Management skills (ability to plan, organize, coordinate, and implement)Experience in compilation of management reportsUnderstanding of, and practical experience of applying the Data Protection Act, the Freedom of Information Act and other related legislation, standards and codes of practicePlease note only shortlisted candidates will be contactedhttps://www.manpower.co.za/job-listings

Manpower