Jobs Career Advice Post Job
X

Send this job to a friend

X

Did you notice an error or suspect this job is scam? Tell us.

  • Posted: Nov 5, 2024
    Deadline: Not specified
    • @gmail.com
    • @yahoo.com
    • @outlook.com
  • KPMG is the authoritative voice in Africa - unmatched in our ability to provide excellent service to our global, regional and local clients. KPMG in Africa's footprint ensures our forward-thinking, skilled professionals understand the complexities of doing business on this continent. Our deep expertise on Africa’s contrasts and opportunities and long-stand...
    Read more about this company

     

    Information Security Specialist

    Reports to Chief Information security officer

    Overall Purpose Of The Role

    • The KPMG Africa Information Security Specialist is to assist with ensuring the confidentiality, integrity, and availability of all systems across the KPMG Africa offices (South Africa, Botswana, Mauritius, Mozambique, Namibia, Zambia, Zimbabwe, Nigeria, Ghana, Kenya, Uganda, Tanzania, and Rwanda).
    • The KPMG Africa Information Security Specialist is to achieve by actively managing and monitoring information security system in order to detect, respond and remediate information security risks and threats across the infrastructure.

    Position Specifications
    Educational (minimum level necessary to perform the job)

    • Professional/Tertiary    
    • Professional

    Other requirements

    Experience (minimum necessary before being considered for the job)

    • Desired Qualification and Experience:
    •  3 - 5 years’ experience in Information Technology Support or Information Security including Microsoft Azure
    •  Industry recognized qualification A+, N+, Security +, CySA+, including Cloud Security certifications such as,
    • Microsoft Certified: Security Operations Analyst Associate
    • Microsoft Certified: Information Protection and Compliance Administrator Associate
    • Microsoft Certified: Security, Compliance, and Identity Fundamentals
    • Microsoft Certified: Identity & Access Management
    • Microsoft Certified: Azure Security Engineer
    •  Professional certification preferred but not required (CISM, CISSP, ECIH)
    •  Ability to demonstrate strong knowledge of information security and cloud security concepts.
    •  Experience with identifying, analysing, and reporting on information security risk and incidents.
    •  Meaningful work experience in information security environments, including security incident response, threat analytics, security operations, vulnerability management and security risk management.
    •  Demonstrated knowledge of security related tools, systems, and applications such as Qualys, Microsoft Devender Endpoint, Microsoft Sentinel, etc.
    •  Experience with evaluating security vulnerabilities, developing mitigation strategies, and implementing remediation.
    •  Strong knowledge of operating systems and application technologies e.g., Microsoft Servers, Active Directory.
    •  Strong Knowledge in Network infrastructure protocol and technologies.

    Core Competencies (Attributes)

    • Attention to detail and accurate documentation
    • Ability to analyse and interpret information
    • Able to work independently and as part of a team
    • Ability to organize and prioritise multiple tasks and work under pressure

    List of Key Performance Areas & Key Performance Indicators
    Main responsibilities

    List the tasks underpinning the responsibility

    Incident Management

    • Monitoring of incident response channels.
    • Execution of the firms Information Security Incident Management Process and escalation of high priority issues.
    • Continuous status tracking and escalation of open incidents.
    • Produce weekly report for the CISO on incident remediation status across One Africa.
    • Produce quarterly report for the CISO on incident status and trends across One Africa.

    Security Systems Configuration and Management

    • Daily monitoring of security systems to ensure they’re functioning appropriate .
    • Configuration and management of the Information Security systems such as Vulnerability, Privileged Access and Log management systems.
    • Asset reconciliation to ensure appropriate coverage of security systems such as vulnerability management, log management, etc.
    • Producing reports for Operational IT Team and assist with issue prioritisation and resolution of system security configuration issues.

    Monitoring of Patch Management

    • Monitoring of the performance of the Patch Management processes and identification of process inefficiencies and risks.
    • Investigating and escalation of challenges preventing compliance with standards.

    Threat and Event Monitoring

    • Detecting and Monitoring Information Security Threats and Events using the Information Security systems with appropriate escalation where required.

    Vulnerability Management

    • Daily monitoring of external and internal vulnerability management systems for newly discovered vulnerabilities.
    • Monthly asset reconciliation to ensure that the appropriate assets are scanned.
    • Initiate and manage vulnerability remediation actions with respective owners.
    • Assist with ad-hoc and annual network penetration testing activities.

    Support the implementation of NITSO Projects and other team initiatives

    • Provide support with the execution of project or information security related initiatives.

    Check how your CV aligns with this job

    Method of Application

    Interested and qualified? Go to KPMG South Africa on kpmgza.taleo.net to apply

    Build your CV for free. Download in different templates.

  • Send your application

    View All Vacancies at KPMG South Africa Back To Home
Jobs You Might Be Interested in

Related Companies Hiring Now

Career Advice

View All Career Advice
 

Subscribe to Job Alert

 

Join our happy subscribers

 
 
Send your application through

GmailGmail YahoomailYahoomail