isecjobs.com

Business Information Security Officer

Johannesburg, ZA

Applications have closed
Nedbank logo

Nedbank

Get a financial partner who will help, guide and support you on your personal journey.

View all jobs at Nedbank

Find more jobs like this Jobs in South Africa

Requisition Number and Talent Acquisition Contact

REQ: 134658

Location: Sandton, Johannesburg

Closing Date: 18 July 2024

Talent Acquisition: Saranya Govender

Job Family

Information Technology

Career Stream

IT Risk

Leadership Pipeline

Manage Self: Technical

Job Purpose

To analyse information security related tasks within the ambit of existing information security policies, standards and processes, procedures and practices as well as business rules. Working independently to deliver on work tasks.  Mentor Administrators and Analyst I. Collaborate with other specialists to execute analysis work tasks, perform operational tasks, question, recommend and update improvements to the existing policies, process and procedures. To ensure stability and up-time for areas the incumbent takes responsibility for, which could require availability  on demand to perform job related duties outside of normal working hours.   

Job Responsibilities

  • Capture timesheets timeously and accurately
  • Capture claims timeously and accurately
  • Propose solutions that must be cost effective whilst meeting information security requirements within budget. 
  • Participate in negotiations on fair pricing from vendors for new technologies procured. 
  • Manage and or resolve low, medium and high incidents and engage with Specialists to resolve the high complexity incidents. 
  • Build relationships with stakeholders to facilitate the flow of knowledge, input and discussion on new products and solutions as required by stakeholders. 
  • Facilitate and manage the incident and problem management process when stakeholder environments are affected. 
  • Oversee the implementation of the information security changes and check for the short comings and risks.
  • Interpret MIS and system logs/ reports with the view to analyse and correct any deviations against standards and best practices. 
  • Participate in the implementation of new products as provided in the selection criteria.
  • Act as the 1st point of problem resolution for non routine incidents and 1st line support for problems. 
  • Ensure compliance to standards and practises  by familiarizing  and keeping abreast of information security policies, rules, standards and processes, procedures and practices as well as business rules.
  • Document and maintain all relevant processes and procedures mindful of current policies and standards.  
  • Create and maintain information security standards.  
  • Oversee and monitor the information security  environment according to set standards.
  • Review and contribute to project documentation including business requirements, designs and implementation.
  • Create design documentation according to relevant standards and practices  
  • Implement specific Information security technologies.  
  • Gain further exposure and experience  on multiple technologies by job shadowing Information Security analysts III and Technical Specialist. 
  • Log submit and implement low, medium and high risk changes independently.
  • Provide guidance and supervision to Administrators and Analyst I on implementation and changes. 
  • Oversee and ensure change was successful in certain cases and when required perform unit testing. 
  • Oversee and ensure back-ups are done, documents are stored and statuses updated.
  • Analyse logs and reports independently and provide supervision to Administrators and Analyst I. 
  • Monitor and action Service Manager low, medium and high impact incidents and e-mails related to Information Security.
  • Ensure job related tasks and processes are in place.
  • Ensure that the logging and submitting of all relevant incidents have taken place and resolve low, medium and high incidents.
  • Conduct risk and root cause analyses around exceptions, queries, incidents as per operational procedures with the relevant internal and external stakeholders and provide feedback, confirm stakeholder satisfaction.  
  • Keep abreast of legislation and other industry changes that impacts on role by reading the relevant newsletters, websites and attending sessions.
  • Improve personal capability and to stay abreast of developments in field of expertise by identify training courses and career progression opportunities for self through input and feedback from managers.
  • Ensure information is provided correctly to stakeholders by maintaining knowledge sharing knowledge with team.
  • Transfer of knowledge to team members.
  • Identify and recommend opportunities to enhance processes, systems and policies and support implementation of new processes, policies and systems.  

Essential Qualifications - NQF Level

  • Matric / Grade 12 / National Senior Certificate
  • Advanced Diplomas/National 1st Degrees

Preferred Qualification

A+, N + S+ or equivalent 

Preferred Certifications

Relevant Information Security Certification 

Minimum Experience Level

At least 8 years in an IT environment of which at least 5 years in information Security

Technical / Professional Knowledge

  • Administrative procedures and systems
  • Data analysis
  • Governance, Risk and Controls
  • Principles of project management
  • Relevant regulatory knowledge
  • Relevant software and systems knowledge
  • Cluster Specific Operational Knowledge
  • System Development Life cycle(SDLC)
  • TCP/IP
  • Information Security terms and definitions
  • Relevant Operating System
  • Information Security policies and procedures
  • Vendor Management Principles

Behavioural Competencies

  • Applied Learning
  • Communication
  • Collaborating
  • Customer Focus
  • Initiating Action
  • Managing Work
  • Technical/Professional Knowledge and Skills

---------------------------------------------------------------------------------------

Please contact the Nedbank Recruiting Team at +27 860 555 566 

Find more jobs like this Jobs in South Africa

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  12  6  0
Categories: Compliance Jobs Leadership Jobs

Tags: BISO Compliance Governance SDLC TCP/IP Vendor management

Perks/benefits: Career development

Region: Africa
Country: South Africa

More jobs like this

« Back to job search To the top ↑

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.

Information Security Manager jobsInformation Security Officer jobsInformation System Security Officer jobsSenior Cloud Security Engineer jobsInformation Security Specialist jobsSenior Cybersecurity Engineer jobsSenior Network Security Engineer jobsIT Security Engineer jobsCyber Security Specialist jobsSystems Administrator jobsSystems Engineer jobsSecurity Consultant jobsSenior Information Security Analyst jobsIT Security Analyst jobsSecurity Specialist jobsChief Information Security Officer jobsSenior Cyber Security Engineer jobsInformation System Security Officer (ISSO) jobsSenior Penetration Tester jobsInformation Systems Security Engineer jobsStaff Security Engineer jobsThreat Intelligence Analyst jobsCyber Threat Intelligence Analyst jobsSecurity Operations Analyst jobsCyber Security Architect jobs
Kubernetes jobsEncryption jobsGDPR jobsJava jobsSaaS jobsEDR jobsSplunk jobsRMF jobsForensics jobsIDS jobsDoDD 8570 jobsSQL jobsIPS jobsBash jobsIntrusion detection jobsSDLC jobsThreat detection jobsActive Directory jobsCompTIA jobsGIAC jobsFinance jobsCRISC jobsITIL jobsClearance Required jobsTerraform jobs
OWASP jobsDocker jobsPolygraph jobsSANS jobsIndustrial jobsUNIX jobsCCSP jobsHIPAA jobsVPN jobsTCP/IP jobsOSCP jobsJavaScript jobsDNS jobsSOC 2 jobsIT infrastructure jobsSAP jobsBanking jobsData Analytics jobsAnsible jobsGCIH jobsMITRE ATT&CK jobsNIST 800-53 jobsSOX jobsSOAR jobsCryptography jobs