Job Details Information Technology: systems development, business analysis, architecture, project management, data warehousing, infrastructure, maintenance and production Job Purpose Work with both the CIO and IT Security teams in the different countries to drive the alignment and execution of the Standard Bank Group IT Security Strategy. The role requires one to understand different country Cyber Regulation and provide insight/expertise to any IT Security decisions or trade-offs without compromising the security of the Bank. Lead engagements with key stakeholders (Operational Risk, Audit) in-country. Key Responsibilities/Accountabilities Key Responsibilities Work with IT partners to provide IT Security Advisory services and guidance Develop and maintain relationships with key stakeholders to further embed the partnership that exists between IT Security, IT and the business. Research and maintain knowledge of the IT threat landscape, security trends, regulatory requirements, new technologies and best practices in order to provide sensible and pragmatic security advice to stakeholders. Provide ad-hoc consulting and engagement with various business units on secure, cost effective and practical control implementations across various platforms and/or systems. Facilitate the adoption of IT Security solutions e.g. privilege user management or access management processes and services e.g. IT Security risk assessments and penetration tests. Provide adequate IT Security input into all technology solutions; this includes the requirements for the evaluation, selection, installation, configuration and maintenance of hardware, applications and software. Develop an effective line of business IT Security strategy that supports and enables business strategy. Advise IT business partners on regulatory and/or legal requirements as it relates to securing of data as well as assist with the implementation of the controls to support these requirements. Establish relevant metrics and management information to facilitate reporting and decision making. Facilitate the reduction in the number and impact of IT Security incidents. Act as a single point of contact for IT security risks, incidents and controls within the business units.
Responsibilities + Skills
Implement the awareness plan through various delivery mediums.Measure the effectiveness of the awareness plan through sampling, surveys, tests, attendance registers or equivalent.
Assist in documenting and tracking security findings into a formal risk register. Provide the necessary information to support any deviation to IT Security policies and standards.