IT Security Manager at Truworths

Job description

We are looking for an individual who is passionate about Information security and has the necessary skills to take ownership of our current Information Security management and operational functions.

KEY RESPONSIBILITIES

• Day to day management of the Security team.
• To provide leadership, consultancy and guidance on information security assurance and requirements for security controls to the organization, programs and projects.
• Leads the planning, design, implementation, operation and maintenance of the Information Security initiatives.
• To work alongside the IT Audit function to help ensure compliance of national and international standards.
• Plan, implement, monitor and troubleshoot internal information technology security, application, logical access control and corporate data safeguards.
• Work with colleagues within ISD to promote and ensure the use of appropriate techniques, methodologies and tools for information security activities.
• Analyze and define security requirements for local and wide area networks and perform network scanning and vulnerability assessments
• To identify and report on strategic and operational security risks identifying appropriate mitigating actions.
• Maintain, configure, and analyze network and host-based security platforms.
• Update secure configurations by routinely reviewing vendor sites, bulletins, and notifications for security information.
• Provide technical advice on access control, security models, business continuity planning, and security awareness.
• To undertake strategic analysis, including research into suppliers, markets and product and service categories, to inform and develop commercial strategy and sourcing plans.
• To influence policy and procedures covering the selection of suppliers, tendering and procurement, promoting good practice in third party management with respect to information security.
• Daily operational management, support and maintenance of:
• Perimeter technologies
• Firewall policies
• Hosted environment – Infrastructure and Design
• End point security e.g. Anti-virus & USB port blocking
• Certificate management
• To keep up-to-date, gather knowledge on new/ evolving threats and assess impact for Truworths.

QUALIFICATIONS

• Relevant tertiary qualification in IT Security or equivalent (Diploma/Degree) AND
• Information security management qualifications such as CISSP or CISM essential.

EXPERIENCE / KNOWLEDGE

• At least 7 years’ experience within IT security.
• A minimum of 5 years hands-on team leadership and management experience (within an IT Security environment).
• Strong understanding of enterprise, network, system and application level security issues, including best practice standards.
• Understanding and exposure to IT Security architectures.
• Experience in retail environment advantageous.
• Experience of working with suppliers and partners in the effective delivery of solutions.
• Ability to describe complex technical solutions to technical and non-technical audiences.

TECHNICAL

Essential Competencies

• Managing firewalls and other related Security technologies.
• Knowledge of and work exposure with Intrusion Prevention Systems (IPS), Internet Proxies, VPN, Anti-Virus & Internet Access Management and Control.
• Good functional knowledge of end-to-end Information Security technologies, policies, procedures, controls and tool-sets.
• Excellent knowledge of data security concepts and principles.
• Understanding of “end point security”.
• Advantageous Competencies:
• Identity Access Management experience
• Shared Account Management experience
• COBIT or equivalent framework methodologies.
• Exposure to national and international standards such as ISO 27001, PCI, POPI

BEHAVIOURAL:

• Absolutely trustworthy with high standards of personal integrity
• Excellent analytical and problem-solving abilities to identify and fix security risks
• Good team working skills to develop security solutions in collaboration with other information
• technology professionals
• Excellent communication and the ability to influence broadly across various levels of seniority within the business.
• Highly self-motivated - with the ability to lead, inspire and motivate others
• Attention to detail
• Ability to deal with conflict situations or challenge current processes.
• Truworths is committed to transformation and meeting objectives of the Employment Equity Act. Meeting our employment equity goals and targets will be taken into account in our recruitment decisions.
• Favourable consideration will be given to people living with disabilities.