Lead: Threat Management at Road Accident Fund

Key Performance Areas

Threat Intelligence and Analysis

• Monitor external threat intelligence sources to stay updated on emerging threats and vulnerabilities.
• Analyze and correlate logs from various sources to identify signs of malicious activity.
• Identify and maintain activities that provide an understanding of how to manage cybersecurity risks to systems, assets, data, and capabilities.
• Ensure continuous monitoring to provide proactive and real-time alerts of cybersecurity-related events.
• Implement necessary controls that aim to safeguard or protect cybersecurity-related events.
• Assist in defining and implementing the RAF’s processes to record the security incident details.

Incident Response

• Lead and participate in the incident response processes, ensuring a swift and effective response to detected threats.
• Coordinate with different departments during incidents, ensuring effective communication and collaboration.

Security Solutions Management

• Ensure that security tools and solutions are effectively integrated and configured to maximize threat detection and response capabilities.
• Oversee vulnerability scanning and penetration testing activities.
• Collaborate with IT teams to prioritize and remediate identified vulnerabilities.

Cyber Governance

• Conduct formal information security risk analyses, reviews, tests, audits, and self-assessments.
• Set up, execute and maintain security incident management and coordinate process in conjunction with incident management capabilities.
• Analyse security breaches to determine the root cause of the violations and prepare reports that document findings and resolutions.

Policy Review and Implementation

• Contribute to developing and implementing departmental policy, standards and procedures, and processes.
• Keep up to date with effective policy and practice execution strategies.
• Develop Threat Inteligence standard guidelines and procedures.

Reporting

• Design status reports as well as insight reporting.
• Conduct all monitoring, reviewing, and reporting activities for systems and applications under your control.
• Prepare reports of system violations.
• Develop functional reporting systems, for management, projects, or performance reporting.
• Regularly assess cyber risks associated with organizational assets and operations.

Stakeholder Management

• Facilitate and manage communication with relevant internal and external stakeholders in relation to investments and proactively and progressively manage relationships.
• Provide guidance and support to respective IT operational staff on systems security processes, policies, and security controls.

People Management

• Ensure that good employee relations are maintained.
• Provide ongoing operational support to employees.
• Ensure that allocated resources are used optimally through enforcing monitoring systems in place.

  Qualifications and Experience

• Bachelor’s Degree/ Advanced Diploma in Computer Science/ Information Systems/ Systems Analysis related qualification.
• CISSP/ CISA/ GIAC or CEH certifications are advantageous.
• Cisco certified/ Network Technician (CCeNT) or related certifications will be an added advantage.
• Relevant 5 - 7 years of experience in cyber governance, risk, controls and compliance management related environment of which 2 years must be on a supervisory level.
• Experience with various cyber security tools, platforms, and methodologies.