Job Opportunities at Transnet

Position Purpose

• To define the role and responsibilities of the Principal Project Manager (PPM).
• The PPM, reporting to the General Manager- Capital & Strategic Projects, R&D, CI (GM: C&SP), is accountable for ensuring the efficient and effective delivery of the large programme/ projects. He has the overall accountability for the scope, cost, schedule and quality on all the phases of the programme/ projects. He/ she provides routine and regular feedback to the Project Sponsor(s), GM: C&SP and the programme/ project team on progress, costs, issues or areas of concern. The PPM is a hands-on manager and as such, he will participate in project related activities, as necessary, during the project and will be familiar with all aspects of the project implementation. He/ she has the delegated authority to make decisions and co-ordinate overall needs and direction in liaison with the GM: C&SP.
• The PPM provides owner’s team direction to the project management of the EPCM Provider/ Contractor; will assist with major issues, problems and policy conflicts; removes obstacles; is active in planning the scope; approves scope changes, signs off major deliverables; and signs off on approvals to proceed to each succeeding project phase as per the PLP process. Large programmes/ projects in Capital Projects are Environmental Contain & Recover, Site Assessment, and Remediation & Rehabilitation, TFIT, PL6. A PD/ PPM is also allocated for the tanks component of the NMPP phase1b mega project.

Position Outputs

• Achieve the LTI and injury/incident frequency rate targets as included in the PEP for the project as a whole through demonstrating personal commitment to safety and by implementing systems both in the office and on site to promote safety awareness and create a “safety first” culture. Fulfil statutory obligations as Safety Administrator for areas of responsibility.
• Ensure that the projects are executed safely and in compliance with all regulatory requirements, company policies, standing instructions and safe working procedures.
• Develop an appropriate organisation structure for execution of the project, identify functions necessary, and select appropriately experienced and enthusiastic personnel for specific positions and delegate responsibilities. Identify part-time team members in conjunction with individual Group Leaders.
• Establish specific policies/procedures relevant to project execution and arrange preparation of the PEP.
• Ensure that the projects are executed in compliance with all regulatory requirements, company policies, standing instructions and working procedures.
• Set goals and objectives, identify priorities, clearly communicate these to team members and appropriate other parties, and provide leadership in their implementation. Motivate, ensure commitment and build a result-oriented team focused on achieving the optimum outcome for Transnet.
• Direct, control and manage through nominated staff all aspects of the project including in-house engineering, procurement, construction, interfaces, administration functions and all external work undertaking by contractors and consultants throughout the design, supply, construction and commissioning phases of the project.
• Overview and ensure that work and progress on the project will satisfy the client’s expectations
• Maintain a relationship with the client at a senior executive level.
• Maintain and display clear “ownership” and accountability for delivery of the project’s business outcomes.
• Establish specific policies / procedures relevant to project execution and arrange preparation of the PEP.
• Ensure initiation and execution of the work is in accordance with the PEP, such that completion of the project is achieved by the authorised completion date, within the authorised budget and equals or exceeds the expected quality.
• Ensure that all communication channels are effectively operating amongst project team members and business units and that co-ordination and co-operation between disciplines is occurring. Co-ordinate the development of a project budget derived from the initial or proposal budget and a corresponding project implementation schedule. Conduct regular project progress and cost estimate review meetings. Responsible for decision regarding short term / long terms and capital versus operating cost trade-off.
• Ensure the final forecast estimate to completion is updated and maintained and the client is aware at all times of the forecast final cost.
• Monitor and measure the work being executed regularly against schedule, milestone deliverables and capital expenditure budgets.
• Recommend and implement corrective strategies where needed to best meet TPL’s overall project objectives.
• Transition the project’s execution phase into its operating phase by implementing the plans for the future running of the business.
• Sets the projects goals and business objectives, including scope, cost, time safety, start-up and risk, etc.
• Ensure adherence to the project’s authorised Scope of Work, monitor scope status and advise the client accordingly.
• Defines and delegates the projects roles and assigns levels of approval and authority.
• Develops the operating and maintenance strategies and facilitates their input.
• Develop plans for projects handover.
• Be responsible for communication with the client, particularly as regards requests for changes and modifications. Ensure contractual commitments regarding deliverables are met.
• Engages in all decision making about the project’s implementation that is not delegated to the Project Manager(s)
• Review and approve the monthly project progress report prepared for the client and / or for distribution to other parties.
• Provide inputs in writing and submission of Business Cases for approval.
• Controls the project’s capital and maintains strict controls on variations and contingency. Manages and recommend variants to FFCs and PCNs on PEPs, other than originally stated.
• Signs third party procurement contracts within his/ her approved delegated framework limits (DoA) as the Client.
• Participate and attend Procurement Committee meetings; attend bid clarification meetings; attend and Business Unit Presentation Feedback Sessions.
• Support staff development and skills transfer.

Qualifications and Experience

• Mandatory; BSc Eng / B Eng / BSc Honours Construction Man or equivalent Professional Registration as PrCPM in terms of SACPCMP requirements Advantageous: Masters / Bachelors in management related disciplines i.e. MBA, MBL, MSc Project Management, BCom is preferred Professional Registration as Pr Eng in terms of ECSA is preferred. PMP Certification/ equivalent is preferred. Experience: At least 10 years total experience preferably in the hydrocarbon/ petrochemical sectors of which a minimum of 6 years should be in a Senior Project Management position that meets PrCPM registration and minimum 4 years Technical experience within the Liquid Fuels industry Driver licence code B or 8

go to method of application »

Position Purpose

• The primary purpose of the position is to maintain the safety of the organization's ICT systems and networks as well as providing cyber security architecture to enable the business to achieve its strategic outcomes. The position entails creating, testing, implementing and analysing the effectiveness of various security systems as well as preventing data breaches, monitoring and reacting to attacks.
• The incumbent will be required to evaluate the security posture of the organisations internal and external networks, applications, sensitive internal systems, mobile device application and data coding standards. The incumbent will also emulate threat actors attempting to penetrate the organisations network and complete defined objectives, such as obtaining domain admin privileges, gaining access to sensitive information, or simulating a ransomware attack which will be used to strengthen the organisations security posture.
• The incumbent will also provide cyber security architecture services to enable the business to achieve its strategic outcomes.

Position Outputs

Information and Cyber Security Strategy Contribute to the definition, development, and oversight of the organisation's security management strategy and framework.

• Define / develop / implement / manage standards, policies, procedures, and solutions that mitigate risk and maximize security, availability of service, efficiency, and effectiveness.
• Define, present, and promote an information security policy for approval by the senior management of the organisation.
• Apply relevant standards, best practices, and legal requirements for information security.

Information Security

• Ensure technology, processes, and governance are in place to monitor, detect, prevent, and react to both current and emerging technology / security threats against the organisation
• Research and advocate new technologies, architectures, and security products that will support security requirements for the organisation.
• Systematically scan the environment to identify and define vulnerabilities and threats.
• Record and escalates noncompliance.
• Investigate security breaches in accordance with established procedures.
• Assist users in defining their access rights and privileges.
• Perform non-standard security administration tasks and resolves security administration issues.
• Receive and responds to routine requests for security support.
• Assist in the investigation and resolution of issues relating to access controls and security systems.
• Review new and updated systems/applications to ensure that security is configured properly.
• Work with the IT teams to ensure adequate security solutions are in place throughout all IT systems and platforms to mitigate identified risks sufficiently, and to meet business objectives and regulatory requirements.

SIEM (Security Information & Event Management)

• Periodically monitor the SIEM solution to eliminate any false
• Record and escalates high priority incidents.
• Assist in the investigation and resolution of security incidents.

Threat Protection (incl. Penetration) and Response Management

• Maintain current knowledge of malware attacks, and other cyber security threats.
• Monitor emerging technologies, industry developments, directions, and best practices in the security field.
• Research emerging threats, vulnerabilities disclosures and incident response reports.
• Create test cases using in-depth technical analysis of risks and typical vulnerabilities. Produces test scripts, materials, and test packs to test new and existing software or services.
• Specify requirements for environment, data, resources, and tools. Interpret, execute, and document complex test scripts using agreed methods and standards.
• Ensure that offensive security tools and techniques are within regulation and policy.
• Record and analyses actions and results.
• Review test results and modify tests if necessary.
• Provide reports on progress, anomalies, risks, and issues associated with the overall project.
• Report on system quality and collect metrics on test cases.
• Provide specialist advice to support others.

Data/Information Security and Loss Prevention Management (incl. Encryption)

• Explain the purpose of and provide advice and guidance on the application and operation of physical, procedural, and technical security controls.
• Act as a cyber security lead in technology controls / information security for project teams, and the organisation. Provide technical expertise, training and advisory services in vulnerability management and information systems security. Provide cyber security architecture reviews, recommendations, and consulting services to the teams.
• Lead the conduct of red team exercises, penetration tests, web application and network vulnerability assessments for IT and OT systems.
• Perform security risk, vulnerability assessments, and business impact analysis for medium and complex information systems.
• Design, plan and execute threat actor simulation scenarios using complex adversarial Tactics, Techniques and Procedures (TTP).
• Investigate suspected attacks and manage security incidents.
• Use forensics where appropriate.
• Communicate information security risks and issues to business managers and others.
• Prepare formal assessment reports of Information Security assessments with conclusions, recommendations for improvement, and planned management actions.

Network security

• Investigate security breaches in accordance with established procedures.
• Monitor network and application performance to identify and irregular activity.
• Assist users in defining their access rights and privileges.
• Perform non-standard security administration tasks and resolves security administration issues.
• Receive and responds to routine requests for security support.
• Maintain records and advises relevant persons of actions taken.
• Assist in the investigation and resolution of issues relating to access controls and security systems.
• Perform security administration tasks. Maintains relevant records and documentation.

Data Centre, Server and Storage Security

• Perform regular high-performance, scalable backups and restores on a schedule and tracks offsite storage.
• Carry out documented configuration for allocation of storage, installation, and maintenance of secure storage systems as per the agreed operational procedure.
• Identify operational problems and contributes to their resolution.
• Use standard management and reporting tools to collect and report on storage utilisation, performance, and backup statistics.

End User Device Security

• Resolve incidents relating to end user device security
• Develop and produce reporting dashboards used to report non-compliance to end user security configuration standards
• Follow up and resolves instances of non-compliance to the end user device security standards
• Ensure operating system updates and security patches for end-user computing devices are kept up to date.
• Ensure that end-user computing devices are disposed of in accordance with the applicable Disposal Policy once they reach end of life.

Qualifications and Experience

• Qualifications, Experience & Inherent Job Requirements Degree in Information Technology. At least 5 years’ IT experience in the following areas: o Cyber security and architecture Experience in information/cyber security at a senior/expert/specialist level Further certifications preferred: Certified Information System Security Professional (CISSP) Offensive Security Certified Professional (OSCP) certification Certified Cloud Security Professional (CCSP) Advantageous: Honours Degree. SAP Security Certification advantageous Microsoft Certified: Azure Security Standard Job Requirements Driver’s license code 08 Travel as required and approved