Spec: Cyber Security at BCX

Core Description


To oversee and direct the build, maintenance and monitoring of cyber security services and solutions to ensure customers are protected against cybercrime.


Key Deliverables / Primary Functions


Lead efforts of the Information Security Function / Team, establishing an Information Security Management System (ISMS) that is managed and improved on a continuous basis
Communicate with executive management on the risks and mitigating controls related to the business and operational systems environment
Ensure appropriate non-technical controls, e.g., that the documented security policies, standards and procedures are created, reviewed, updated and maintained periodically by appropriate individuals, as well as technical controls, e.g. user access and authentication controls are in place
Ensure that all business unit security coordinators understand and execute their security responsibilities in accordance with related policies, standards, and procedures
Research information security advisories, publications, vendor correspondence on application patches, updates and version releases and media for recent exposures and their fixes in operating systems, databases, applications, and networks
Develop and implement an Information Security Strategy and a Technology Security Architecture with assistance from the Information Security Function / Team members
Develop and implement the review and Risk Program with assistance from the Information Security Function / Team members


Core Functional Skills & Capabilities


Cybersecurity Governance & Framework
Cybersecurity Tools & Solutions
Finance and Budget Management
Risk Management
Project Management


Core Behavioural Competencies


Culture Match
Job Match
Applying expertise & Technology
Persuading and Influencing
Analysing
Deciding & Initiating Action
Entrepreneurial & Commercial thinking


Minimum Qualifications


NQF 6: 3 year Degree/ Diploma/ National Diploma in Computer Science or Information Systems
OR NQF 4: Grade 12


Additional Education -Preferred /Advantage

Experience


5 years' experience in cyber security solutions.
OR
7 years' experience in Cyber security solutions


Certifications


A security industry certification is preferred including but not limited to CISSP, SSCP, CISM, SANS GSEC, ECSA, ECSP, and Security+.
CISA (Certified Information Systems Audit)


Professional Memberships in Relevant Industry

Level of Engagement & Span of Control


Span of Control: 0
Level of Engagement: Interact with similar levels, clients and with various stakeholders within BCX


Special Requirements / Employment Condition


Required to travel locally and/or internationally
Required to be available 24/7
Ability to cope under pressure


Workplace / Physical Requirements


Hybrid Remote Worker
Revenue Generating
Non-Billable