Specialist Security Risk Management - Centurion
R
238 408.14 - 397 346.91
per annum
Centurion,
Gauteng
more than 14 days ago
Job Title: Specialist: Security Risk Management
Salary: R 238 408.14 - R 397 346.91
Location: Centurion
Closing Date: 30 July 2015
Purpose of the job
Identify, evaluate and assess security risks to client organization’s people and assets. Assess and prioritize security risks using calibrated (semi-quantitative methods) scale. Develop Security Risk Management related process flow diagrams and outline security responsibilities. Create risk treatment plans. Design and conduct training to ensure the adherence to security procedures.
Key Responsibility Areas
Develop and deliver solutions for enterprise security risk management practices, identifying and mitigating risks, establishing policies and practices, implementing controls, and educating stakeholders. Develop and maintain vulnerability corrective action plans for all accepted risks upon completion of system reviews and audits. Develop emergency management plans for recovery decision making and communications, continuity of critical departmental processes, or temporary shut-down of non-critical departments to ensure continuity of operation and governance. Coordinate risk assessment activities to complete the periodic reporting for Security Risk Management, requirements. Define, identify and document risk management methodologies, and resource requirements needed in the event of a technical or business outage. Adhere to performance management policy and participate in Information Security Services initiatives to ensure optimum performance output to enhance service delivery.
Qualifications and Experience
Minimum qualifications:
3 year degree/National Diploma in a relevant discipline/NQF level 5 or accredited specialized courses.
Experience:
3- 5 years of experience in Security risk management; 1 -2 years of experience Business Continuity/Information Technology Disaster Recovery; 1 -2 years Operational ICT Security working experience; 2 – 3 Data centre working experience; Strong verbal / written communications. Must be able to interface and coordinate work efficiently and effectively with business partners in remote locations.
Technical Competencies Description
Knowledge:
The ideal candidate must have at least 5 years of Security risk management including Business Continuity and Disaster Recovery experience with hands-on experience creating and updating plans.
Able to work independently without daily oversight.
Working knowledge to conduct Risk management Working knowledge to conduct Risk assessment.
Working knowledge of Internal controls.
Working knowledge of corporate compliance.
Knowledge of Corporate governance.
Knowledge and experience with risk assessments.
Security plans and test and evaluation activities...
Exposure to Governance Processes and Standards (ISO 9001; ISO 27001/ 27002; ISO 12207 (SDLC); ISO 42010; COBIT; ITIL; UML, ISO 22301)
Working knowledge of Information System Security Technical Standards (e.g.: DMZ, VPN)
Experience in identifying ICT security risks in terms of ISO27001 and COBIT
Planning and designing skills related to security risk management solutions.
Skills:
Experience gathering business and technical requirements and communicating them to business and technology staff to provide executable recovery solutions to the business.
DR for Data Centre management/operations; Operational recovery/high availability
Technical skills
Decision-making
Judgment
Execution
Analytical skills
Project Management Skills
ICT Policy and Strategy Management
Stakeholder Management
Manage and organize his/her time and work effort to deliver with quality and on time
Good learning capabilities
High level of communication and leadership skills to support and interact with internal and external team members
Interpersonal
Leadership
Analytical
Written communication
Verbal communication
Ability to problem solving
Integrity
Organization
Attention to detail
Timeliness
Adaptability
Salary: R 238 408.14 - R 397 346.91
Location: Centurion
Closing Date: 30 July 2015
Purpose of the job
Identify, evaluate and assess security risks to client organization’s people and assets. Assess and prioritize security risks using calibrated (semi-quantitative methods) scale. Develop Security Risk Management related process flow diagrams and outline security responsibilities. Create risk treatment plans. Design and conduct training to ensure the adherence to security procedures.
Key Responsibility Areas
Develop and deliver solutions for enterprise security risk management practices, identifying and mitigating risks, establishing policies and practices, implementing controls, and educating stakeholders. Develop and maintain vulnerability corrective action plans for all accepted risks upon completion of system reviews and audits. Develop emergency management plans for recovery decision making and communications, continuity of critical departmental processes, or temporary shut-down of non-critical departments to ensure continuity of operation and governance. Coordinate risk assessment activities to complete the periodic reporting for Security Risk Management, requirements. Define, identify and document risk management methodologies, and resource requirements needed in the event of a technical or business outage. Adhere to performance management policy and participate in Information Security Services initiatives to ensure optimum performance output to enhance service delivery.
Qualifications and Experience
Minimum qualifications:
3 year degree/National Diploma in a relevant discipline/NQF level 5 or accredited specialized courses.
Experience:
3- 5 years of experience in Security risk management; 1 -2 years of experience Business Continuity/Information Technology Disaster Recovery; 1 -2 years Operational ICT Security working experience; 2 – 3 Data centre working experience; Strong verbal / written communications. Must be able to interface and coordinate work efficiently and effectively with business partners in remote locations.
Technical Competencies Description
Knowledge:
The ideal candidate must have at least 5 years of Security risk management including Business Continuity and Disaster Recovery experience with hands-on experience creating and updating plans.
Able to work independently without daily oversight.
Working knowledge to conduct Risk management Working knowledge to conduct Risk assessment.
Working knowledge of Internal controls.
Working knowledge of corporate compliance.
Knowledge of Corporate governance.
Knowledge and experience with risk assessments.
Security plans and test and evaluation activities...
Exposure to Governance Processes and Standards (ISO 9001; ISO 27001/ 27002; ISO 12207 (SDLC); ISO 42010; COBIT; ITIL; UML, ISO 22301)
Working knowledge of Information System Security Technical Standards (e.g.: DMZ, VPN)
Experience in identifying ICT security risks in terms of ISO27001 and COBIT
Planning and designing skills related to security risk management solutions.
Skills:
Experience gathering business and technical requirements and communicating them to business and technology staff to provide executable recovery solutions to the business.
DR for Data Centre management/operations; Operational recovery/high availability
Technical skills
Decision-making
Judgment
Execution
Analytical skills
Project Management Skills
ICT Policy and Strategy Management
Stakeholder Management
Manage and organize his/her time and work effort to deliver with quality and on time
Good learning capabilities
High level of communication and leadership skills to support and interact with internal and external team members
Interpersonal
Leadership
Analytical
Written communication
Verbal communication
Ability to problem solving
Integrity
Organization
Attention to detail
Timeliness
Adaptability
Recruiter: LJM Staffing Solutions