Purpose of the job

• The job will be responsible to perform compliance and vulnerability assessments, execute activities related to the implementation, and maintenance of information security controls and services aligned to the cyber security framework and attend to all logged security incidents.

Key Responsibility Areas

• Perform ongoing monitoring of information systems and assess threats and risks to information security.
• Coordinate security awareness and training programs to increase employees ‘ overall understanding, reaction time and the ability to envisage the company’s potential safety and compliance requirements.
• Perform compliance assessments and vulnerability assessments to ensure government and citizen information is secure.
• Attend to all logged security incidents.
• Collaborate and partner with internal business representatives to recommend appropriate products so that the solutions are developed with relevant security system design specifications.
• Execute activities related to the implementation, and maintenance of information security controls and services aligned to the cyber security framework, policies, standards and procedures.
• Management and Administration of the PFMA act.

Qualifications and Experience

• Required Qualification: 3 years National Diploma / National Degree in Computer Science or Information
• Technology or Network Management or a relevant discipline NQF level 6 qualification.
• ITIL foundation and COBIT 5 Introduction will be an added advantage.
• Certified information system security professional (CISSP) or Certified Information Security Management (CISM) or Microsoft Security Certification.
• Experience: 3-5 years Information and Communication Technology (ICT) Infrastructure or Information Security(IS) or application life cycle management which should include the following: Working knowledge of information technology security configurations on the LAN/WAN infrastructure.
• Understanding firewalls and switch management technology.
• Exposure to enterprise architecture frameworks (e.g.TOGAF; GWEA; MIOS).

Technical Competencies Description

• knowledge of governance processes and standards (e.g. ISO 27001/ 27002; COBIT; ITIL).
• Exposure to information system security technical standards (e.g.: SSL certificates, anti-virus protection, etc.).
• Knowledge of technical monitoring and administration of various technical security solutions e.g. Anti-malware Management, Email Security Management, Privileged
• Account Management, Microsoft Security and Azure Security (MFA, Defender, DLP, Bitlocker, Sentinel, Intune, etc.).

Technical Competencies Description

• Knowledge of information security management frameworks, such as ISO/IEC 27001, and NIST. and security services (firewalls, proxy’s, DNS, Mail relays etc.)
• Risk finance and risk control concepts.
• Enterprise risk management concepts, frameworks
• Deep understanding of operational integration of security functions.
• Strong knowledge of security and network architecture.
• Deep knowledge of security best practices, principles, and common security frameworks.
• Excellent written and verbal communication skills and a high level of personal integrity
• Knowledge of the latest IT thinking and threat modelling methods together with a creative drive.
• Analytical mind capable of managing numerous information sources and providing data analysis reports to senior management.
• Strong customer focus – able to meet the demands of internal and external customers.
• Excellent communication skills – providing verbal and written communication.
• Excellent Project management skills.
• Strong networking, consultation and negotiation skills
• Excellent Planning & organizing financial management
• Governance processes and standards (ISO 27001/ 27002, COBIT, ITIL).
• Proficiency in ICT technology securing and safeguarding (operating databases, applications, IS solutions).
• Knowledge of Cloud, Public Cloud security best practices and monitoring of systems and services hosted in the cloud (IaaS, SaaS etc.).
• Network security
• On-call network troubleshooting
• Firewall administration
• Network protocols Routers, hubs, and switches
• System administration skills. Security risk, threats and vulnerability management.
• Knowledge of Cloud, Public Cloud security best practices and monitoring of systems and services hosted in the cloud (IaaS, SaaS etc.).
• Working knowledge of Service Oriented Architecture(SOA)
• CISSP domains support (BCM/DRM, Legal, human resource, cryptography, access control, operations,architecture, etc.)
• Working knowledge of Enterprise architecture framework (TOGAF; Zachman; FEAF; MODAF;GWEA Framework; MIOS).
• Infrastructure (DELL/ HP/ IBM) and network security configuration.
• Operating systems administration (UNIX, WINDOWS, Linux) or security configuration.
• Database and application security configuration(Oracle, ERP, Web sites).

Personal Attributes / Behaviors:

• Agility
• Collaboration
• Customer Centricity
• Integrity
• Innovation and Empathy.

Technical competencies:

• IT Service management.

Interpersonal/behavioural competencies:

• Active listening
• Attention to Detail, and
• Continuous Learning.

Closing Date: 20 June 2025