Jobs Career Advice Signup
X

Send this job to a friend

X

Did you notice an error or suspect this job is scam? Tell us.

  • Posted: Nov 4, 2020
    Deadline: Nov 6, 2020
    • @gmail.com
    • @yahoo.com
    • @outlook.com
  • Never pay for any CBT, test or assessment as part of any recruitment process. When in doubt, contact us

    MTN Group Limited entered the telecommunications scene at the dawn of South Africa’s democracy, in 1994. In 1998, we began our expansion by acquiring licences in Rwanda, Uganda and Swaziland. Since then, we continued to grow, with a view of bringing world-class telecommunications and digital services to markets across Africa and the Middle East. Throug...
    Read more about this company

     

    Senior Specialist: Cyber Defence

    Mission/ Core purpose of the Job: 

    • This role is responsible for for overseeing the Cyber Defence operations. The role engages with key business and operational partners in managing the detection, response, and remediation of cyber related attacks on MTN’s network and its systems while contributing and delivering services and projects that support the strategy, priorities and objectives of the organisation. The incumbent will be responsible for continuously performing specialised threat hunting and taking the lead during incident investigation to drive speedy resolution to minimise potential data leakage and financial loss to MTN. All of MTN SA’s IT and Network environments are within scope of this role.

    Key Performance Areas: 

    Technical Delivery

    • Manage Security Operations, third party services and Group cyber defence services, ensure SLAs are met and monthly performance meetings are taking place 
    • Research and keep abreast on the cyber-attacks and threats in order to continuously protect MTN against new types of attacks.
    • Ensure incident identification, assessment, quantification, reporting, communication, and mitigation while confirming SLA compliance, process adherence, and process improvisation to achieve operational objectives
    • Perform threat management, threat modelling, identify threat vectors and develop use cases for security monitoring, maintaining working knowledge of cyber threat actor tactics and techniques
    • Responsible for integration of standard and non-standard logs into the Group SIEM and review/ revise the processes to strengthen Security Operations.
    • Co-ordinate with stakeholders, build and maintain positive working relationships with them
    • Lead efforts and participate in audits covering cyber defence. 
    • Assess and develop cyber resilience roadmaps to improve the company security posture by identifying security gaps to manage existing and emerging security risks.
    • Implement the cyber threat and vulnerability management strategies and operational requirements (Cyber Defence) 
    • Assist to drive strategic alignment of the Group cyber incident response operations and MTN SA cyber incident response services 
    • Develop a standardised set of responses to cybersecurity breaches with responses varying according to the level of cybersecurity breaches. 
    • Establish protocols for communication within MTN SA, MTN Group and between Opcos.
    • Perform specialist level response to security incidents and lead Technology teams (Network Group, IT) during a cyber-incident and collaborate with MTN Group teams
    • Revise and develop processes to strengthen the current Security Operations Framework, review policies and highlight the challenges in managing SLAs 
    • Provide vulnerability analysis specific input to the MTN information security strategy 
    • Develop, integrate and monitor detailed MTN SA business plans for vulnerability analysis in accordance with the frameworks, goals and targets agreed for the holistic Group CSOC function.
    • Organise and execute periodic vulnerability assessments and Pen Tests by applying knowledge of scanning tools and emerging risks. 
    • Work with Group Cyber Defence to coordinate scans with all other parties involved in MTN SA, including the distribution of notices or notifications, and the management of logistical requirements. 
    • Lead process optimisation, enhancement, efficiency and continuous improvement on initiatives and programmes within the threat and vulnerability management, as well as benchmark and analyse trends to optimise internal processes.
    • Track and prioritise the remediation of vulnerabilities, according to their level of criticality and their potential risk to the business of the affected asset. Report on the status of the resolution of vulnerabilities on a period basis.
    • Analyse and identify vulnerability analysis trends across the organisation and compile consolidated reports on the status of vulnerability analysis for regular updates to management.  
    • Consolidate reports, dashboards, metrics from Group SOC and internal operations and present to Management  
    • Transfer knowledge of methodologies, processes and tools to relevant stakeholders (as and when required)
    • Become the “go-to” specialist on all cyber resilience matters. 
    • Represent MTN SA in COMRIC cyber defence or CSIRT working groups.   

    Managerial / Supervisory Responsibilities

    • The role requires management and supervision of the activities various Teams in Technology who need to implement and remediate required controls 

    Minimum Requirements  

    Education:

    • Minimum of 3 years degree qualification in Information Technology – BSc/BCom
    • CISM/ CISSP/ CEH/ GICSP certification (one of)
    • Other qualifications (ITIL, COBIT) advantage

    Experience:

    • Minimum of 5 years of relevant work experience in Information Security 
    • 2 - 4 years working experience in the management of information security incident process would be advantageous (process definition, incident response, reporting) as well as experience in using the tools necessary to execute incident response and recovery (incident triage, forensic imaging and machine examination, log extraction and review etc across multiple endpoint and server environments)
    • Experience in large scale information security projects /vendor relationships
    • Advanced working understanding of the information technology environment of a telecom company
    • In-depth knowledge and experience of security concepts such as cyber-attacks and techniques, threat vectors, threat hunting, threat intelligence (tools and sources), EDR, UEBA, CASBs, SOAR, incident management as well as TTP’s (tactics, techniques and procedures).  
    • Experience in security device management and SIEM 
    • Experience in threat management and continuous assessment using CMM 
    • Knowledge of various operating systems including but not limited to Windows, Linux, Unix 
    • Knowledge of applications, databases, middleware to address security threats against 3-tier environments 
    • Familiarity and knowledge of security frameworks (NIST CSF, CIS, ISO)
    • Proficient in report writing, dashboards and documentation such as technical runbooks driven by frameworks like MITRE 
    • Ability to handle high pressure situations with key stakeholders 
    • Excellent Analytical and problem-solving skills
    • Relationship management and interpersonal skills
    • Excellent communication and leadership skills 
    • Understanding of current information security challenges and solutions; industry trends
    • Experience leading cross functional teams
    • Advanced knowledge of and experience with office software including Excel, Word, and PowerPoint, and email applications.

    Method of Application

    Interested and qualified? Go to MTN on www.linkedin.com to apply

    Build your CV for free. Download in different templates.

  • Send your application

    View All Vacancies at MTN Back To Home

Subscribe to Job Alert

 

Join our happy subscribers

 
 
Send your application through

GmailGmail YahoomailYahoomail