World Vision International NGO Technical Director, Cybersecurity Jobs in South Africa

World Vision International NGO Technical Director, Cybersecurity Jobs in South Africa



Purpose of Position:

Individuals working as a Technical Director, Cybersecurity oversee the planning, execution, and management of multi-faceted projects related to compliance, control assurance, risk management, security, and infrastructure/ information asset protection.

They are responsible for developing and managing security across multiple IT functional areas (e.g., data, systems, network and/or Web) across the enterprise, developing and managing enterprise security services, and developing security solutions for critical and/or highly complex assignments to ensure the company’s infrastructure and information assets are protected. They work on multiple projects or programs as a team lead.

Individuals within the Cybersecurity job family plan, execute, and manage multi-faceted projects related to compliance management, risk assessment and mitigation, control assurance, business continuity and disaster recovery, and user awareness. They are focused on developing and driving security strategies, policies/standards, ensuring the effectiveness of solutions, and providing security-focused consultative services to the organization.

Major Responsibilities:

Strategy

  • Provides strategic and tactical direction and consultation on security and IT compliance.

    Policies, Procedures, & Standards

  • Acts as primary support contact for the development of secure applications and processes.

  • Maintains an up-to-date understanding of industry best practices.

  • Develops, enhances and implements enterprise-wide security policies, procedures and standards across multiple platform and application environments. Monitors the legal and regulatory environment for developments. Recommends manages implementation of required changes to IT policies and procedures.

  • Monitors compliance with security policies, standards, guidelines and procedures.

  • Ensures security compliance with legal and regulatory standards.

    Business Requirements

  • Engages directly with the business to gather a full understanding of project scope and business requirements.

  • Assesses business needs against security concerns and articulates issues and potential risks to management.

  • Consults with other business and technical staff on potential business impacts of proposed changes to the security environment.

  • Provides security-related guidance on business process.

    Security Solutions

  • Works closely with IT and development teams to design secure infrastructure solutions and applications, facilitating the implementation of protective and mitigating controls.

    Operations Solutions

  • Defines security configuration and operations standards for security systems and applications, including policy assessment and compliance tools, network security appliances, and host-based security systems.

  • Defines and validates baseline security configurations for operating systems, applications, networking and telecommunications equipment.

    Risk Assessments

  • Works directly with the customers and other internal departments and organizations to facilitate IT risk analysis and risk management processes and to identify acceptable levels of residual risk.

  • Conducts business impact analysis to ensure resources are adequately protected with proper security measures.

  • Assesses potential items of risk and opportunities of vulnerability in the network and on information technology infrastructure and applications.

  • Reviews risk assessments, analyzes the effectiveness of IT control activities, and reports on them with actionable recommendations.

    Information/ Data Security

  • Defines, identifies and classifies information assets.

  • Assesses threats and vulnerabilities regarding information assets and recommends the appropriate security controls and measures.

  • Develops and manages security measures for information systems to prevent security breaches.

  • Consults with clients on the data classification of their resources.

    Security Audits

  • Performs security audits.

  • Participates in security investigations and compliance reviews as requested by external auditors.

  • Consults with clients on security violations.

  • Acts as liaison between internal audit and IT to ensure commitments are met and controls are properly implemented.

    Incident Management

  • Assists security operations team in troubleshooting and resolving escalated security related
    issues.

  • Builds security incident response teams.

  • Authors incident response plans and support documentation and diagrams.

    Business Continuity/disaster Recovery

  • Develops impact analysis.

  • Assists business partners with the determination of critical business processes and systems.

  • Identifies and coordinates resolution of recovery issues.

    Security Performance Management

  • Develops measures to evaluate the security programs and modifies strategies as appropriate.

  • Analyzes reports and makes recommendations for improvements.

    Communications/ Consulting

  • Serves in an advisory role in application development projects to assess security requirements and controls and ensures that security controls are implemented as planned.

  • Collaborates on critical IT projects to ensure that security issues are addressed throughout the project life cycle.

  • Provides input for the development of the security architecture.

    Training

  • Develops security awareness and compliance training programs. Provides communication and training as needed. Provides security briefings to advise on critical issues that may affect client.

  • Conducts knowledge transfer training sessions to security operations team upon technology implementation.

    Coaching/ Mentoring

  • Provides ongoing knowledge transfer to team members and clients on security products and standards.

  • Mentors less-experienced team members.

    Knowledge/ Qualifications for the Role:

    Required Professional Experience

  • Requires 10 - 15 years cyber, privacy, compliance, or risk management function or a closely related role.

  • Over 10 years of experience as a senior manager or information security officer.

  • Over 5 years of experience managing cyber security incident response teams. Experience designing and implementing security solutions.

  • Requires in-depth knowledge of PCI-DSS, privacy laws, security standards, security best practices, and security regulations. A high proficiency level in threat management, risk management, vulnerability management, and compliance management is required.

  • Effective in written and verbal communication in English

  • Willingness and ability to travel domestically and internationally, as necessary.

    Required Education, training, license, registration and certification

  • Bachelor’s degree in Computer Science, Information Systems or other related field, or equivalent work experience.

  • Requires Security Certification (i.e., Certified Information Systems Security Professional (CISSP), Certified Information Security Manage (CISM), or Global Information Assurance Certification (GIAC).

    Preferred Knowledge and Qualifications

  • Fluent in English.

  • Have strong incident and investigation management skills.

  • Have strong communication skills.

  • Have good planning and organising skills.

  • Strategic thinker with strong influencing skills and exceptional professional credibility.

  • Outstanding stakeholder management skills combined with the ability to challenge and influence in a constructive manner.

  • Have proven ability to collaborate effectively and develop positive working relationships across all levels of an organisation.

  • Have strong analytical skills, with the ability to gather, analyse and evaluate information and to prepare concise written reports.

  • Have technical expertise on risk assessment tools and methods or the willingness to learn.

  • Good understanding of the different field contexts or experience working in at least 2 different contexts (e.g. development, transitioning, fragile, conflict, humanitarian, etc.)

    How to Apply

    For more information and job application details, see; World Vision International NGO Technical Director, Cybersecurity Jobs in South Africa

    Find daily jobs in South Africa. Jobs - South Africa jobs. Search our career portal & find the latest South African job positions, career opportunities & jobs in South Africa.

    Jobs in South Africa - banking jobs, IT jobs, accounting jobs, NGO jobs, business administration, ICT, UN jobs, procurement jobs, education jobs, hospital jobs, human resources jobs, engineering, teaching jobs, and other careers in South Africa.

    Find your dream job from 1000s of vacancies in South Africa posted and updated daily - click here!

  • Click here to post comments

    Join in and write your own page! It's easy to do. How? Simply click here to return to Africa Jobs.