Fresh Jobs at MTN

Mission/ Core purpose of the Job

The Specialist: Firewall Management will be responsible for assisting to perform regular firewall administration tasks over different firewall technologies. 

Context (Global influences, environmental / industry demands, organizational mission etc.)

MTN is an emerging market mobile operator at the forefront of technological and digital changes. We deliver a bold, new digital world to our customers across Africa and the Middle East – one of the world’s fastest-growing regions for mobile telecommunications. We believe everyone deserves the benefits of a modern connected life.

With the changing global business landscape, cyber risks organisations face are on the rise. If these cyber risks are not correctly managed, new vulnerabilities could compromise customer data confidentiality, integrity and availability, ultimately affecting the performance of networks and information systems.

To proactively manage our cyber risk exposure, MTN Group has established a Cyber Security Operations Centre (CSOC). The mission of the CSOC is to improve the security posture of the Group against the threats it faces as a consequence of its business activity in the cyberspace by helping to prevent, detect, mitigate and respond to cyberattacks and by acting as the cyber-security information exchange and incident response coordination hub for all the OPCOs. MTN’s CSOC provides a holistic approach to manage both external and internal threats’ lifecycle. The MTN CSOC service catalogue includes the following activities:

• Firewall Management
• SIEM - Implementation and management
• SIEM - Intelligence
• 24/7 Monitoring and Triage
• Cyber Threat Intelligence
• Threat Hunting
• Vulnerability Management
• Cyber Incident Response
• Forensic Analysis

Key Performance Areas: Core, essential responsibilities / outputs of the position (KPA's)

Firewall Management

• Provide technical Firewall Management expertise to tier one, two and three OpCos.
• Proactively monitor and maintain MTN infrastructure to ensure stability, performance and availability across tier one, two and three OpCos.
• Directly support all clients in tier one, two and three OpCos and manage tickets in accordance with the service level agreement assigned to the incident.
• Assists to perform the correct management of the company's firewalls since the device on boarding is performed
• Assists to perform change management process, in order to ensure the correct implementation of the changes requested ensuring the highest possible quality
• Assists to perform remediation tasks for device unavailability or failure, as per the defined procedure per environment or device
• KPI: Ensure the efficient and effective delivery of Firewall Management services for MTN Group and its OpCos.

General Operations

• Perform allocated tasks according to Standard Operating Procedures (SOP) or instructions.
• Assist and provide support to colleagues with executing required tasks and activities.
• Resolve queries timeously or escalate to relevant stakeholder(s).
• Conduct effective document management, including accurate electronic and/ or paper filing systems.  
• KPI: Ensure work is delivered in a professional and efficient manner.

Reporting

• Provide information as appropriate for reports specific to area of responsibility on daily/ weekly/ monthly basis.
• Gather information as required for reporting purposes.
• File, archive and retrieve documents as and when required.
• Maintain and update records and systems as required.
• Retrieve supporting documentation and records to facilitate and support query resolution.
• KPI: Ensure reporting requirements are complied with and accurate information is disseminated to support specific decisions or actions.

Ways of Working

• Leading by Connecting: Connect people; stimulate collaboration and growth in teams across functions, operations and different cultures. Share experience and knowledge that leads to a learning organisation, creating sustainable expertise which drives the development of people and innovative products,
• Leading by Delivery: Anticipate situations and take initiative to overcome them. The result is a swift and on time delivery of qualitative and quantitative results.
• Leading by Vision: From analysing the situation inside and outside the company and seeing opportunities until communicating the vision of the company including new ideas for sustainable business strategies, products, services and ways of working. The end result is an inspiring vision on how to succeed in our markets with our consumers in the center.
• Leading by Change: From embracing change until leading and facilitating the implementation of change and handling of resistance for senior people. The end result is an on time implementation of change projects and actions while maintaining a high level of motivation and commitment.
• Leading by Owning: Take responsibility for own results as well as for company results and values. Stimulate this attitude in others, make co-workers accountable. The end result is pro-activity, creativity and motivation: capable people who take ownership.

Job Requirements (Education, Experience and Competencies)

Education:

• Three year tertiary qualification in Computer Engineering or similar
• Certification in any of the following: CompTIA N+, CCNA, vendor specific certification (such as Fortigate, Palo Alto, Cisco) 

Experience:

• 3 years of relevant work experience in Firewall Management
• Basic coding knowledge is beneficial.

Other

• Fluent in English
• Multi-country operations oversight experience
• Willing and flexible to travel within Africa and Middle East
• Understanding of general regulatory requirements in the telecom industry as it relates to Firewall Management
• Global mindset to service worldwide operations
• Telecommunications industry experience would be beneficial
• Pan Africa and Middle East multi-cultural experience would be beneficial

Collaboration (Formal and Informal Relationships)

Responsibility towards: 

Key external stakeholders: External contractors & partners

Key internal stakeholders:  

• GM: Group CSOC
• Group Information Security Team
• OpCo Information Security Head/ CIO/ CTO/ CTIO
• OpCo Information Security Team 

Closing date: 17 November 2020. Late applications will not be accepted.

go to method of application »

Mission/ Core purpose of the Job

The Senior Specialist: Cyber Threat Intelligence and Hunting will be responsible for the detection and isolation of advanced threats capable of evading existing security solutions for tier one, two and three OpCos. The incumbent will be responsible for threat landscape assessment and monitoring; brand abuse, information leakage, fake apps, phishing sites and other scam detection and take down, as well as general and telecommunications malware analysis and IOC generation. 

Context (Global influences, environmental / industry demands, organizational mission etc.)

MTN is an emerging market mobile operator at the forefront of technological and digital changes. We deliver a bold, new digital world to our customers across Africa and the Middle East – one of the world’s fastest-growing regions for mobile telecommunications. We believe everyone deserves the benefits of a modern connected life.

With the changing global business landscape, cyber risks organisations face are on the rise. If these cyber risks are not correctly managed, new vulnerabilities could compromise customer data confidentiality, integrity and availability, ultimately affecting the performance of networks and information systems.

To proactively manage our cyber risk exposure, MTN Group has established a Cyber Security Operations Centre (CSOC). The mission of the CSOC is to improve the security posture of the Group against the threats it faces as a consequence of its business activity in the cyberspace by helping to prevent, detect, mitigate and respond to cyberattacks and by acting as the cyber-security information exchange and incident response coordination hub for all the OPCOs. MTN’s CSOC provides a holistic approach to manage both external and internal threats’ lifecycle. The MTN CSOC service catalogue includes the following activities:

• Firewall Management
• SIEM - Implementation and management
• SIEM - Intelligence
• 24/7 Monitoring and Triage
• Cyber Threat Intelligence
• Threat Hunting
• Vulnerability Management
• Cyber Incident Response
• Forensic Analysis

Key Performance Areas: Core, essential responsibilities / outputs of the position (KPA's)

Cyber Threat Intelligence Strategy Development

• Draft Cyber Threat Intelligence input into the MTN cybersecurity strategy
• Draft, integrate and monitor detailed business plans for Cyber Threat Intelligence in accordance with the frameworks, goals and targets agreed for the holistic Group CSOC function.
• Actively contribute to the delivery of the holistic cybersecurity mandate and commitment.
• Assist to drive strategic alignment of the Group Cyber Threat Intelligence operations and in-country Cyber Threat Intelligence services performed by OpCos.
• KPI: Ensure required plans, policies and procedures for Cyber Threat Intelligence are efficient and effective and supports the accomplishment of Group CSOC objectives.

Cyber Threat Intelligence

• Centralise, correlate and exchange the validated IOCs in a simple and easy manner as it allows importation and exportation using standard formats.
• Identify potential threats outside the perimeter of tier one, two and three OpCos.
• Execution of technical malware reversing.
• Perform Information analysis with the purpose of identifying possible threats affecting the MTN environment.
• Perform security audits for different platforms, including the execution of penetration testing for security audits.
• Review of corrections made in the deployment of controls.
• Provide analytic case support to digital forensic investigations
• Intelligence preparation based on inputs from incident response, threat hunting, Security Operation Center and red teams.
• Draft reports including highlighting drawn conclusions, as well as the performed analyses and extracted evidence.
• KPI: Ensure the efficient and effective delivery of Cyber Threat Intelligence services for MTN Group and its OpCos.

Process Optimisation and Efficiency

• Research and develop leading practices for Cyber Threat Intelligence across MTN Group and its OpCos. 
• Identify and design opportunities for process enhancement.  
• Benchmark and analyse trends to optimise internal processes.
• Lead process optimisation, enhancement, efficiency and continuous improvement on initiatives and programmes within Cyber Threat Intelligence. 
• Transfer knowledge of methodologies, processes and tools to relevant stakeholders (as and when required).
• KPI: Improve the quality of processes within the Cyber Threat Intelligence, thereby ensuring efficient and effective service delivery.

Reporting

• Prepare reports on the Cyber Threat Intelligence services for submission to the Head of Information Security per OpCo
• Analyse and identify forensic trends across the OpCos
• Compile consolidated reports on the status of Cyber Threat Intelligence for regular updates to the GM: Group CSOC.
• Prepare operational performance reports for Cyber Threat Intelligence for submission to MTN Group Leadership
• KPI: Ensure reporting requirements are complied with and accurate information is disseminated to support specific decisions or actions.

Ways of Working

• Leading by Connecting: Connect people; stimulate collaboration and growth in teams across functions, operations and different cultures. Share experience and knowledge that leads to a learning organisation, creating sustainable expertise which drives the development of people and innovative products,
• Leading by Delivery: Anticipate situations and take initiative to overcome them. The result is a swift and on time delivery of qualitative and quantitative results.
• Leading by Vision: From analysing the situation inside and outside the company and seeing opportunities until communicating the vision of the company including new ideas for sustainable business strategies, products, services and ways of working. The end result is an inspiring vision on how to succeed in our markets with our consumers in the center.
• Leading by Change: From embracing change until leading and facilitating the implementation of change and handling of resistance for senior people. The end result is an on time implementation of change projects and actions while maintaining a high level of motivation and commitment.
• Leading by Owning: Take responsibility for own results as well as for company results and values. Stimulate this attitude in others, make co-workers accountable. The end result is pro-activity, creativity and motivation: capable people who take ownership.

Job Requirements (Education, Experience and Competencies)

Education:

• Three year tertiary qualification in Computer Engineering or similar
• Certified Threat Intelligence Analyst (CTIA)
• Offensive Security Certified Professional (OSCP)
• Certified Ethical Hacker (CEH)
• Open-Source Intelligence (OSINT) Gathering and Analysis

Experience:

• 5 years of relevant work experience in Cyber Threat Intelligence.
• Advanced insights and knowledge into OS such as Windows and Linux; TCP/IP; Scripting; and network circuitry.
• Experience in investigation and validation of IoCs hits before creating security incidents tickets and creation of daily threat reports
• Experience in the execution of relevant analyses for fraud cases, such as phishing and cybersquatting, amongst others.

Other

• Fluent in English
• Multi-country operations oversight experience
• Willing and flexible to travel within Africa and Middle East
• Understanding of general regulatory requirements in the telecom industry as it relates to Cyber Threat Intelligence
• Global mindset to service worldwide operations
• Telecommunications industry experience would be beneficial
• Pan Africa and Middle East multi-cultural experience would be beneficial

Collaboration (Formal and Informal Relationships)

Responsibility towards: 

Key external stakeholders: External contractors & partners

Key internal stakeholders:  

• GM: Group Cyber Defence
• Group Information Security Team
• OpCo Information Security LISO/ CIO/ CTO/ CTIO
• OpCo Information Security Team

Closing date: 19 November 2020. Late applications will not be accepted.

go to method of application »

Mission/ Core purpose of the Job

The Consultant: Incident Management will be responsible to manage and oversee the information security incident process across the Group and OPCOs to ensure consistent detection, diagnoses, analysis and response to security incidents within MTN and ensure minimal disruption to business and to restore normal service operations in an optimal timeframe. The Incident Management role will focus on embedding best practice processes, tools and frameworks to the Group to provide seamless customer experience (internal/ external) perspective.

Context (Global influences, environmental / industry demands, organizational mission etc.)

MTN is entering a new phase in its lifecycle where operational and commercial excellence has become critical for success. The urgency for change has become more heightened amidst increased competitive intensity across all markets in which MTN operates. The Consultant Incident Management must therefore ensure the successful delivery in context of:

• An expertise-based multicultural organisation
• A dynamic and evolving field of Telecommunications
• Revolutionary workforce practices which are bringing together global labour markets
• Management of executive and local shareholder expectations across MTN and its OpCos
• Achievement of top quartile operating efficiency and effectiveness through scale and common policies and processes
• Dynamic legal and regulatory environment
• Convergence in markets and exploration of non-traditional revenue streams requiring complex interpretation and structuring
• Evolving industry sector constantly presenting new challenges and opportunities to the core businesses
• Rapid horizontal and vertical expansion of MTN, in terms of size, products, customers and geographic distribution

Key Performance Areas: Core, essential responsibilities / outputs of the position (KPA's)

Strategy Development and Implementation 

• Input Incident management protocols and governance in the creation of the overall information security strategy in line with the overarching business goals, customer needs and Group security framework.
• Input into the effective implementation of the strategy by means of providing, incident management status, best practice sharing and portfolio with key resolutions and problem-solving capabilities.

Operational Delivery

• Drive improvement across the business to achieve the optimal service quality deliverables
• Manage incident management progress and resolution
• Conduct root-cause analysis on security incidents across the business
• Define a problem solving database with identified incidents, share this knowledge with the OPCO staff responsible for incidents as well as the extended senior management team
• Define touchpoints for integration of the security incident process with other organizational processes including service level management, capacity and availability management, change management, problem management, HR, Legal, Communication, crisis management, incident management, Asset and Configuration management
• Drive synergies and operational efficiencies by proactively identifying resolutions
• Monitoring and tracking of the incident impacts to the business operations at the OpCo’s
• Define the incident management process and policy for information security across the business both at Group and OpCo, including definition of incidents, classification and prioritization and standard target resolution times. To be aligned with ITIL, COBIT, NIST, and/or ISO 27035 as driven by business requirements.
• Implement an information security framework, toolkits and standards group-wide
• Monitor incidents across the OpCo’s to define common themes and opportunities for improvement
• Define metrics to measure the severity of the incident cases logged
• Deliver best practice cyber-security incident management capabilities
• Educate the business on incident management
• Provide incident management inputs into ad-hoc projects reporting
• Contribute to vendor relationship management, for external incidents impacting business and customers.

Governance

Escalations

• Perform root cause analysis for incident management and facilitate execution of corrective action
• Identify potentially sensitive issues and escalate it to the appropriate level
• Provide information on work accomplishments, problems, progress in work processes, individuals and team needs
• Report dashboards on various performance metrics internally to Senior Management (Exco, Group Risk etc) as well as cross functional teams and externally to vendors.

Tactical

• Provide Incident Management inputs across all projects and initiatives for Group information security to ensure alignment to business & procurement needs;
• Manage the risks, issues, dependencies and set mitigation actions

Performance

• Coordinating the process of continuous improvement in respect to Incident Management and best practices.
• Facilitate periodic independent assessments of the status of incidents, the incident management process and governance in the group and OpCo’s
• Drive implementation and maintenance of incident management disciplines and controls
• Review performance against agreed Key Performance Indicators (KPIs)
• Ensure provision of appropriate support to commercial functions; and
• Evaluate & Monitor incident resolution metrics and results
• Monitor benefits realization

Audit

• Assist the internal audit function in terms of audit planning to ensure that information security incident components are incorporated within the Audit;
• Resolve information security audit issues and risks identified (in relation to incident management) across MTN Opco’s.

Compliance and Reporting

• Identification of root causes for the lack of compliance
• Collaborate and provide incident management results and metrics for consistent reporting for operational and governance purposes; collaborate and coordinate remediation plans and activities
• Initiate consequence management for non-compliance (internal/ external)
• Report on challenges and risk identified to the senior management team

Budgets

• Oversee project initiative budgets in line with business objectives; and
• Drive initiatives that will ensure that “cost of operations” are reduced, in line with a least cost operating strategy stemming from the business drivers.
• Embed an incident management cost controls with alignment to business budgets

Managerial / Supervisory Responsibilities

• Deploy and redeploy resources to get the work done
• Manage both internal and external development partners to accomplish tasks
• Build and enforce a customer centric approach
• Set up, direct and guide effective project teams
• Encourage collaborative teamwork
• Serve the OPCOs in establishing and enhancing their Incident Management capabilities
• Identify training requirements and facilitate the training of staff (Group and Opco) in the Incident management and response disciplines (aligned to detect, respond and recover in the NIST Cyber security framework)
• Build professionalism, loyalty and commitment to the organization
• Communicate actively and effectively resolving any potential conflicts that may arise
• Have the self-insight and flexibility to adapt to different situations
• Manage boundaries that separate units in order to optimize workflow

Job Requirements (Education, Experience and Competencies)

Education:

• 4 year Engineering/ Information Science Degree/ Procurement
• Masters in Information Science advantage
• CISSP certification
• ISO 27035 training / certification advantageous
• Other preferred certifications are: CISA, CISM, CGEIT, CRISC, CBCP, ISO 27001 Lead Auditor or Lead Implementer
• ITIL Certification is Advantageous

Experience:

• 5 - 8 years of relevant work experience in Information Technology (specifically security)
• 2 - 4 years of experience at the Management level in the telecom industry
• 2 - 4 years working experience in the management of information security incident process would be advantageous (process definition, incident response, reporting) as well as experience in using the tools necessary to execute incident response and recovery (incident triage, forensic imaging and machine examination, log extraction and review etc across multiple endpoint and server environments)
• Experience in large scale information security projects /vendor relationships
• Experience in Governance, Enterprise Risk Management and Compliance
• Experience working in Africa and Middle East and have a grasp of political, social, infrastructure and integrity challenges
• Advanced working understanding of the information technology environment of a telecom company

Other

• Fluent in English
• Multi-country operations oversight experience
• Willing and flexible to travel within Africa and Middle East
• Understanding of general regulatory requirements in the telecom industry as it relates to Vulnerability Analysis
• Global mindset to service worldwide operations
• Telecommunications industry experience would be beneficial
• Pan Africa and Middle East multi-cultural experience would be beneficial

Collaboration (Formal and Informal Relationships)

Responsibility towards: 

Key external stakeholders: External contractors & partners

• External Auditors (Group & OPCOs)
• Partners
• Distributors
• Vendors (Group & OPCOs)
• Law enforcement agencies (Across all countries)
• Third Parties (Group & OPCOs)
• Legislative Bodies (Across all countries)
• Network/Firewall/System Administrators (OPCOs)

Key internal stakeholders:  

• Executive GIS
• Regional VP’s
• OpCo Senior Management
• Governance Forums (Group & OPCOs)
• Audit Committee (Group & OPCOs)
• Internal Auditors (Group & OPCOs)
• Business Risk (Group & OPCOs)
• Compliance (Group & OPCOs)
• Information Technology (Group & OPCOs)
• Cyber Security Team (Group & OPCOs)
• Network/Firewall/System Administrators (OPCOs)

Closing date: 16 November 2020. Late applications will not be accepted.