Information Security Officer
Wesbank Building, 1 Enterprise Road, Fairland, Johannesburg, 2170
FirstRand Corporate Centre
To plan, direct and coordinate the bank’s information security policies by setting procedures and guidelines that will ensure all information systems are functional and secure.
- Manage target and budget goals whilst ensuring effective control of to increase cost efficiency
- Build and sustain collaborative working relationships with relevant peers and stakeholders in order to achieve productivity synergies.
- Deliver exceptional service that exceeds customers’ expectations through proactive, innovative and appropriate solutions.
- Cultivate and manage objective working relationships with a variety of stakeholders by providing expert advice and consulting on all aspects of security.
- Develop and implement best practice policy and processes to enhance cost and time efficiencies, improvements and problem solving.
- To advise on and ensure the effective management of secure access and to communicate feedback to enable associated security risk management.
- Investigate project related information in order to understand business requirements and needs by doing risk assessment of existing and planned systems. These risk assessments require security architecture skills set in order to guide business.
- Develop disaster recovery risk mitigation plans in area of accountability.
- Make certain the segment/business unit, monitors and maintain all system access control profiles by tracking documentation and approving authorisations.
- Participate in the development and implementation of appropriate and effective controls to mitigate identified threats and risks.
- Provide specialist advise and consultation to safeguard information systems through the identification and management of security risks, audits and vulnerabilities.
- Conduct research and investigate measures that can address security risks and potential losses.
- Determine acceptable security risk appetite levels to adequately protect the business from potential risks and threats, aligning to the Group CISO vision, mission and strategy.
- Enforce compliance, understand and implement all steps for the IT Information Security Processes and Procedures and meet governance in terms of legislative and audit requirements
- Enforce security control mechanisms, which enables Information Security Services to have a view of the status of information security within FNB.
- Ensure all Information Security analysis and research are captured, recorded and reported on to ensure correct actions are implementation are executed, and fall within Group CISO vision, mission and strategy.
- Continuously develop own expertise in terms of industry and subject matter development and application thereof in an area of specialisation.
- Maintain current knowledge of the Information Systems security industry's emerging technologies.
Job Requirements:
- Bachelor’s Degree or Diploma in Computer Science, Information Systems or other related field, or equivalent work experience
- Minimum 5 years of in an information security or Audit role within the banking and/or financial services sector.
- Cyber and information security certifications (such as CISM, CISSP, CCSP, CISA, ISO 27000 Lead Implementer/ Auditor) are in force.
- PCI ISA (Internal Security Assessor) qualification would be advantageous
- Extensive experience in payment card industry
- Responsible for driving PCI-DSS certification for acquiring
- Consult tier 1 merchant on P2PE certification
- Experience working in a multi-vendor and outsourced and multi-system IT environment
- Working knowledge and experience with the implementation and management of information security policies and frameworks within a corporate environment
- Management experience of individuals and teams from diverse cultures
- Strong IT understanding, gaining insight into digital and platform operating models and cyber security trends and solutions.
#Post
#FNB
#LI-LM3
Job DetailsTake note that applications will not be accepted on the below date and onwards, kindly submit applications ahead of the closing date indicated below.
08/11/24All appointments will be made in line with FirstRand Group’s Employment Equity plan. The Bank supports the recruitment and advancement of individuals with disabilities. In order for us to fulfill this purpose, candidates can disclose their disability information on a voluntary basis. The Bank will keep this information confidential unless we are required by law to disclose this information to other parties.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits Banking CCSP CISA CISM CISO CISSP Compliance Computer Science Governance ISO 27000 Risk assessment Risk management Security analysis Strategy Vulnerabilities
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.