5 Security Personnel jobs in Tembisa

We are looking for an Information Security Officer to join the Clientèle Infrastructure and Operations department. As the Information Security Officer, you will be responsible for the information security vision, strategy, governance, management, processes, and user education.

Purpose:
Responsible for creating the vision and setting the strategy for information security. Responsibilities also include security-related governance, management, and processes.

Responsibilities:

1. Oversee information systems and company security
2. Evaluate, report on, and suggest new ideas related to any security threats
3. Develop the steps necessary to protect the company’s interests
4. Provide advice and leadership to existing administrative security policies
5. Audit the current systems in place, as well as direct and implement new standards
6. Track the latest IT security innovations and keep abreast of the latest cybersecurity technologies
7. Create and implement a robust IT security strategy
8. Manage IT security operations
9. Develop, enhance and deploy a cloud-centric cybersecurity model
10. Deploy robust IT Security technologies
11. Perform IT Security Risk assessments and investigate ways to minimize threats
12. Monitor IT Security vulnerabilities and hacking threats in network and host systems
13. Implement an effective process for reporting IT Security risks, incidents, and investigation of breaches
14. Respond to all information security incidents
15. Serve as a point of contact to develop and sustain controls to ensure compliance and security throughout the life cycle of data and services
16. Review new vendor requests and manage the vendor cybersecurity risk assessment process
17. Review and respond to all relevant audits, including all Data Security and Compliance client audits and assessments
18. Support the strategic requirements of the IT departments
19. Responsible for the protection of the electronic data processed by or stored
20. Develop, implement and monitor a strategic, comprehensive enterprise information security and risk management program
21. Work directly with the business units to facilitate risk assessment and risk management processes
22. Develop and enhance an information security management framework
23. Establish the appropriate security and governance practices
24. Proactively monitor, identify, investigate, and resolve technical incidents and problems

Experience and qualifications:

1. Bachelor’s degree in information security, computer science, or a related field
2. Relevant certification(s) preferred (e.g. CIPP; CIPM; CISSP; CISM)
3. 5-7 years experience with information technology security
4. 5-7 years experience in security principles and security standards
5. 5-7 years experience assessing, monitoring and managing security risks
6. 5-7 years experience in information security management
7. Experience with risk management and governance solutions
8. Experience with contract and vendor negotiations and management, including managed services

• Matric plus, Degree in Information Technology, Business Administration, or related field.
• 7+ years of experience in cybersecurity, risk management, and IT leadership .
• 7 years in a senior information security management role .
• Professional Certifications: CISSP, CISM, CISA, CCSP , or equivalent.
• Deep understanding of security frameworks: ISO 27001, PCI-DSS, NIST, SSAE 18.
• Strong background in security tools and technologies (IAM, IDS/IPS, DLP, etc.).
• Ability to lead complex projects in a matrixed, multi-stakeholder environment.
• Proven experience in vendor and contract security negotiations.
• Strong leadership, communication, and analytical skills.
• Strategic and innovative thinking
• Leadership and influence
• Risk and compliance acumen
• Project and resource management
• Exceptional stakeholder communication
• Report writing and dashboard presentation
• Coaching and mentoring for performance

• Develop and execute the companys information security strategy aligned with business goals and digital innovation.
• Serve as a trusted advisor to executives, balancing innovation and cyber risk.
• Drive secure adoption of technologies including cloud, AI, and data analytics.
• Identify and mitigate cybersecurity threats (e.g., ransomware, data breaches, insider threats).
• Lead security assessments, technology deployments and compliance audits.
• Collaborate with ICT, PMO and Group Risk to manage enterprise-wide security initiatives.
• Ensure compliance with POPIA, GDPR, ISO 27001 and industry standards (NIST, PCI-DSS, CIS).
• Minimise legal, reputational and financial risk through proactive governance.
• Develop and enforce the companys Cyber Incident Response Plan (CIRP).
• Oversee disaster recovery and continuity planning.
• Lead security audits, assessments, and real-time threat investigations.
• Implement training programs to build cybersecurity awareness across all departments.
• Foster a culture of shared responsibility and high performance within the security function.