ROLE PURPOSE

As part of the Customer-facing Nexio Cyber Security team, the Privileged Account Management Specialist will be responsible for the privileged account management (PAM) operational governance in a Customers’ environment. He/She should ideally have advanced Privileged Account Management Specialist experience in an established Cyber Security environment where CyberArk or similar was the PAM platform.

ROLE REQUIREMENT

• Is familiar with the tactical and long-term vision across the Cyber Security function.
• Team lead on Privileged Account Management Specialist within the Cyber Security function.
• Direct impact on the privileged account management performance.
• Provides privileged account management oversight on the remediation activities of risky privileged accounts undertaken by system owners.
• Delegates remediation actions to system owners (risk owners) to remediate critical assets which are at risk of exploitable privileged accounts, with clear instructions and direction, with reasonable deadlines to remediate.
• Privileged Account Management administration viz.,
• Responding to, and resolving, remedy incidents for account/password issues related to Privileged Account Management systems and applications.
• Monitoring PAM systems, applications and reports for variance/delta, and remediation of findings or escalating to support teams
• Systems Administration on PAM Management Application, limited to onboarding, removing, modifying system or account information
• User administration on PAM Management Application
• Liaising with relevant team/s to assist with resolving PAM related issues on their systems
• Access controls administration
• PAM Management Application inventory administration
• PAM project and operations consulting
• Create and contribute towards SOP’s where required
• Ad hoc updating of the inventory comparisons and controls documentation
• Privileged Account Discovery - responding to, and resolving, remedy incidents for account/password/coverage issues related to Privileged Account Discovery systems and applications.
• Security Event Analysis: Respond and resolve any security events logged to Remedy, related to 3rd-party security correlation tools.
• Report appropriately on proceedings and issues and if necessary escalate to ensure action and resolution where required.
• Request changes and updates to the SOW to ensure that the contract reflects the de facto agreement between the Parties as it may change from time to time. Any amendment to the terms and conditions of the SOW shall be reduced to writing and signed by duly authorised representatives of each party.
• The configuration of the privileged account management solution must be aligned to vendor and security best practices.
• Tracks tickets, severity, and assists to drive PAM incidents to a conclusion based on SLAs and criticality level.
• Reporting must be optimised and automated within the solution capabilities and provide for actionable threat intelligence.
• Call logging and support are required when problems are experienced.
• Manage the risks with Remediation Risk Owners/stakeholders.
• Produces a reporting dashboard sent once a week for visibility purposes.
• Prepates bi-weekly reporting.
• Assurance is expected that the effectiveness and posture of the privileged account management solution are reported on during a monthly security update session with the relevant Customer stakeholders.

Additional Information:

• Individuals at this level have fully developed knowledge of best practices in privileged account management in an established Cyber Security function.
• Able to build strong interpersonal relationships with the Cyber Security function team and customer stakeholders.
• Excellent verbal and written communication skills.
• Able to align multiple strategies and ideas.
• Confident in producing and presenting work.
• In-depth understanding of best security incident management practices in an established Cyber Security function.

QUALIFICATIONS & EXPERIENCE

• Grade 12
• Bachelor’s Degree in Computer Science or a related technical discipline, or the equivalent combination of education, technical certifications
• One or more these industry Cybersecurity Certifications: CISSP-ISSEP, CISSP-ISSAP, GIAC Certified Incident Handler (GCIH), PAM Certification.
• Minimum of five (5) years of work experience, and two (2) years of relevant experience in and established information security/cybersecurity
• Experience with privileged account management and optimising the dashboarding, reporting and visibility of the Remediation performance for Customer stakeholders.
• Experience with a ticketing system such as BMC Remedy.
• Strong analytical and organizational skills.
• Concise writing skills, excellent MS Word skills as well as other MS Office Applications.
• Experience with securing various environments preferred.
• Experience in working across security frameworks.
• Experience in working across security technologies.
• Possess very good knowledge of technological advances within the information security area
• Demonstrate in depth solution and service knowledge
  

Application Submission Details:

Submit application to: https://jobs.talent.dynamics.com/jobs/stortech.co.za/3/140/apply

Please include the below documentation in your application:

• Updated CV
• Short motivation Letter
• Supporting qualifications/certifications if any