IT Security Manager at Sun International

Job description

Job purpose

The position as IT Security Manager is focused on enabling the business to grow through the mitigation of information security/vulnerability risks and fulfilment of related regulatory obligations.

Education

• Grade 12
• Tertiary qualifications
• Certification such as (CISM, CRISC), ISC2 (CISSP)

Experience

• 6 - 10 years relevant industry experience within a Global security role.
• Strong knowledge of Privacy Regulations, PCI, ISO 27001 Standards and Key information security Frameworks.
• Technically strong ITO IT infrastructure networks and applications.
• Deep experience with Cyber Security Technologies such as SIEM, DLP, HIPS, AVs (Pref Mcafee).

KPAs

• Participate in definition of IT security strategies and standards globally
• To drive the Information/Cybersecurity initiatives and support business units in the implementation and execution of the Information/Cybersecurity framework, policies, and reporting of all security related aspects.
• Responsible for the running of a Security Operations Centre.
• Perform the On-going health-checks of the IT Security Environment.
• Primary contact between business segments and the Security office.
• Participate in design reviews and identify potential mitigation strategies for security risks across IT.
• Analyse business impact and exposure based on emerging security threats.
• Lead, conduct and document investigations relating to IT security and incidents ensuring compliance
• Manage stakeholders at all levels, ensuring strong relationships are built and maintained. Instill confidence across the business that information security risks are identified and mitigated
• Stay current with incident response, digital forensics methodology, the associated legal requirements and threats applicable to the South Africa.
• Plan for and support the establishment of new security services in-line with changing threat profiles and organisational context
• Provide protection of Sun International’s information and intellectual property regardless of the location of it’s processing or data.
• Ensuring all business processes have sufficiently effective information of security to protect the integrity and confidentiality of the processing and the data.
• Provide reporting on the results from evaluating the security management system, the implemented organisational and technical measures and the adherence to measures necessary for compliance with regulatory and contractual obligations.

Equity:

Preference will be given to employees from the designated groups in line with the provisions of the Employment Equity Act, No. 55 of 1998, SISA internal recruitment policy as well as units employment equity plans.