Lead Security Consultant at Absa Group Limited (Absa)

Job Summary

Our Converged Security Office prides itself in its unique structure that sees an integration and collaboration model between our Information Risk, Cyber, Resilience, Physical Security & Forensics teams to ensure effective risk management across all disciplines.
 
You will drive and lead where appropriate a variety of IT Security activities and other related activities which together aid in ensuring that the organisation’s assets and IT systems are appropriately protected against unauthorised activities including deliberate or accidental loss

Job Description

What you’ll get to do:

The role is within the Converged Security Office and your responsibilities will include the following:

• Determine which projects will require security engagement
• Define explicit security deliverables to the project during early engagement
• Define security requirements commensurate with the overall risk the project
• Design security solutions from the ground up and own the delivery of security solutions within projects
• Lead the provision of detailed specifications for IT security solutions and support the development of security testing plans
• Demonstrate ability to work as an integral member of the project/programme team(s) to ensure proper deployment of IT security solutions
• Work with the business and project team(s) to ensure residual risks are adequately mitigated to the degree that meets the risk appetite of the business
• Work within virtual teams of the specialists and Business Information Risk Managers to translate high-level business/functional requirements into robust IT security solutions and supporting business cases (particularly in support of strategic change programmes), negotiating pragmatic control implementations in line with business priorities, cost and risk appetite
• Collaborate with others to design and deliver holistic secure solutions
• Work with a range of complex banking systems
• Work with cloud platforms
• Work with web and mobile applications
• Work with complex infrastructure
• Define security requirements for technical teams and be willing to clarify them in technical terms to developers, architects and infrastructure people
• Work on a range of Agile or Waterfall projects
• Identify security risks and articulate the risks to business and technology teams
• Work with governance people
• Scope out and manage penetration testing
• Build Threat Models
• Provide security thought leadership

What you need to get in:

• Minimum of 5 years of experience in a Security Consultant role
• Ideally you have worked on some large complex technical projects
• Bonus points are given for Financial Services or Bank experiences
• Degree or diploma in IT Security or Technology and/or have some relevant certifications would be an advantage
• Be willing to contribute to the design of security solutions within technology
• Be able to master a complex and dynamic technical environment
• Have a flair for operating on many diverse technical projects simultaneously
• Be adept at working with highly skilled technical people
• Be able to organise a decent penetration test and understand the results
• Ability to construct a proper threat model
• Aptitude for dealing with organisational change
• Maintain compliance with governance requirements
• Be an advocate for sound security practices at all levels in the organisation
• Be able to identify Security Risks and articulate them in business terms
• Be able to research and figure things out.  

If you're passionate about working in a fast-paced environment and contributing to the exciting world of cyber security by leading from the front, we would love to hear from you!

Education

• Bachelor`s Degrees and Advanced Diplomas: Physical, Mathematical, Computer and Life Sciences (Required)

Closing Date: 11th, April 2022