The ISO is responsible for enforcing a secure IT environment and ensuring compliance with local and international laws, regulations and standards. The ISO is also responsible for ensuring the organisation adheres to the strictest levels of IT governance.
University degree or graduate qualification in a business or technology related field
Professional security management certification i.e. CISSP, CISM, CISA, CRISC, PCI QSA/ISA/PCIP etc
3 years working experience in the field of information security as an ISO or CISO
5 years working experience in the field of information security as an engineer or consultant
Provide leadership for the company’s information security requirements
Actively ensure appropriate administrative, physical and technical safeguards are in place to protect the company information assets from internal and external threats
Meticulously identify, introduce and implement appropriate procedures, including checks and balances, are in place to test these safeguards on a regular basis
Thoroughly conduct and complete annual reviews and audits as required engaging both internal business partners across the organisation as well as external resources
Act as the committed owner of the security incident and vulnerability management processes
Passionately manage and assist in performing on-going security monitoring of information systems including assessing information security risk through qualitative risk analysis on a regular basis, conducting functional and gap analyses to determine the extent to which key business areas and infrastructure comply with statutory and regulatory requirements
Evaluating and recommending new information security technologies and counter-measures against threats to information or privacy
Developing security reports and dashboards and providing regular reports on compliance to the CIO
Ensure effective staff training programs are in place to increase security awareness across the company
Work directly with the business units to facilitate risk assessment and risk management processes
Develop and enhance an information security management policies and procedures
Understand and interact with all departments to ensure the consistent application of policies and standards across all technology projects, systems and services
Partner with business stakeholders across the company to raise awareness of risk management concerns
5 to 10 years broad IT experience
Demonstrable broad knowledge of all aspects of information technology including but not limited to systems, networking, perimeter defence, mobile technologies, social media, Agile software development etc.
Working knowledge of all aspects of GDPR, POPI and PCI-DSS
Practical, demonstratable experience with implementing a programme to achieve PCI-DSS compliance working with third party QSA
Fluent in English with excellent written and verbal communication skills and high level of personal integrity Confidence in presenting to, communicating with and managing senior internal and external stakeholders
Reasoning: Quick evaluator of facts vs ideas or theory
Analytical, methodical and logical thinker
Intuitive and innovative problem solver
Application: using ideas or knowledge in new areas
Acute attention to detail
Goal-setting and planning
Well-developed resource management skills
Ability to effectively engage both senior and junior staff
Ability to cope with and handle variable workload
Ability to work without close supervision
Well-developed inter-personal skills
Able to self-correct and be flexible / adapt to change
Highly ethical and honest
For similar vacancies and more exciting opportunities please visit our website or follow us on LinkedIn.
Should you meet the above minimum requirements, please submit your CV and a copy of your ID and Qualifications to tarryn (at) kingsleyirons.co.za . Please quote the TITLE of this vacancy in the subject line of your email as reference. Our consultants will assess your suitability to the vacancy. Should you not receive a response within 2 weeks please consider your application unsuccessful, however we will retain your CV and details on our database in accordance with POPIA and will contact you in the near future should a suitable position become available.
10 years of helping individuals and businesses realise their full potential.
The right person in the
right job has the power to transform your business. Our aim at KingsleyIrons is
not only to help individuals succeed in their careers, but through specialist
placement of the right talent we work to help organisations thrive.
Our service offering We recruit skilled candidates across various industries and place both
permanent and contract positions, throughout South Africa, that range from
graduate to executive levels within the private, corporate and public sectors.
With our combined all-round experience, KingsleyIrons Recruitment is well
positioned to take care of your recruitment and talent acquisition needs.
While our main
specialisation lies within the Finance, Engineering, Agriculture, Supply Chain,
and Admin sectors, our expertise extends to service companies across the board
with complete, turnkey solutions to meet their unique recruitment needs, no
matter the industry.
Recruitment is an accredited Level 4 B-BBEE contributor.
Areas of Expertise:
Everything we do is based on a few simple