At Cell C, we are not just a telecommunications company; we are a people-centric and consumer-focused organization committed to delivering exceptional experiences to our customers. In line with our dedication to customer-centricity, we are seeking a seasoned professional as a Senior Specialist: Cyber Security to join our dynamic team of #Unstoppables.

Purpose of the Job:
The Senior Specialist, Cyber Security, is a dedicated professional with a strong passion for detecting and preventing security threats. This role focuses on designing and delivering innovative security solutions, enhancing security architecture, strengthening network and systems infrastructure.

The Senior Specialist will be responsible for designing and implementing critical network security solutions, collaborating closely with operational teams to deliver high-quality, risk-reducing solutions. Their efforts will not only enhance the organization's network defences but also contribute to the overall maturity of its cybersecurity posture. This includes addressing cyber risks across the enterprise and leading strategic projects on behalf of the Information Security organization.

Reporting to the Executive of Information Security, this role will oversee the implementation of security technologies and processes in a rapid growth and digital environment. It will contribute to the design, engineering, development, and maintenance of security processes and solutions throughout the organization in accordance with the organization’s policy and risk framework. Additionally, this role will ensure that the security environment and architecture are continuously evolving to protect the organization’s critical assets, providing both strategic insight and technical expertise to safeguard against emerging threats.

Be a champion to the Information security team and other business units to promote a secure organization through positive knowledge sharing, training, influences, and conduct.

Main Responsibilities:
Strategy and Governance

• Design and oversee the implementation of cyber and information Security initiatives to ensure continuous alignment with security standards and requirements across the organisation
• Monitor industry trends around network and systems security to keep requirements and solutions in line with the threat landscape
• Implement and oversee adherence with cyber security architecture standards
• Implement security solutions and capabilities to limit risks to the organisation
• Identify and implement strategies to ensure the network and enterprise is protected by identifying and managing vulnerabilities and threats
• Establish and maintain procedures to monitor the network and enterprise for real-time threats, policy violations, security breaches or anomalous and symptomatic evets, or deviations
• Build capabilities to analyse historical event logs for patterns and trends symptomatic of an attack or compromise
• Oversee and manage threat defence/intelligence strategies

Planning and Execution

• Identify, oversee, manage, and architect security projects and initiatives
• Maintain information Security Technology roadmaps
• Plan and document all stakeholders SLA/OLAs
• Build and manage stakeholder relations both internal and external to the organization
• Continuous improvement to processes / monitoring / policies and technologies associated with the Cyber security capability
• Vendor KPIs/Managed services if required
• Participate and execute cyber security requirements across all technical projects

Operations

• Be an active member in the Cyber Security Defence team
• Take a leading role in collaborating with the Information Technology and Security team to proactively respond to and remediate security events and incidents
• Collaborate with the Information technology team to ensure successful completion of the organisation’s roadmaps and initiatives
• Establish agreements and operational level contracts with all other stakeholders (internal), based on the output of this functional unit
• Develop metrics and reporting frameworks that compiles and analyses data for accurate and timely reporting of security activities, threats or breaches
• Accountable point of contact as triggered for cyber and information security incidents
• Maintain knowledge of the organisations threat landscape by monitoring threat feeds, alerts, dashboards and related sources
• Collaborate on and participate in Incident Response exercises
• Creating and tuning security detection signatures, Indicators of Compromise (IOCs), and other content to detect malicious activity or trends
• Defining and maintaining all events analysis, impact assessment and prioritization identified with each threat/ event
• Continuous Service Improvement— Continuous Service Improvement identifies and structures an improvement process to enhance the Cyber Security over time, this includes:
• Processing and analysing the data
• Reporting or sorting through the data to help understand and identify improvements
• Implementing corrective controls and actions

Staff Administration

• Manage the daily operations of the team
• Coach, mentor and support team members
• Uphold and enforce HR policies and procedures
• Develop and maintain Work Instructions, Standard Operating procedures and Policies
• Ensure the continued learning and development of the security team

Analytics and Reporting

• Ensure consistency, accuracy and integrity of all security related data and reports emanating from the department
• Assist and guide on the analysis and interpretations of reports (weekly/monthly/ad-hoc) towards remedial action(s)
• Create post-incident feedback loop to improve and enhance capability
• Pro-active and routine reporting on cyber and information security health

Further expectations

• Contribute to align department strategy to company strategy
• Assess and develop incoming and outgoing business requirements
• Assume the role of Change Agent in the department
• Keep abreast of industry evolution through continuous learning, development and research

Minimum Qualification

• 3-year degree / diploma in Information Technology and or, Relevant Cyber – or Information Security credentials
• Preferred qualifications - CISSP, CEH, Security+, Network+

Experience

• 5+ years of demonstrated experience working in Cyber and Information Security teams
• Experience with securing Windows and Linux systems
• Experience with securing firewalls, routers, and other network devices
• Experience with implementing authentication and access management solutions
• Up to date with security attacks and latest security research
• Excellent analytical skills, organizational skills, resourcefulness, and ability to work as part of a team
• Experience with vulnerability management program concepts, including internal and external scanning mechanisms and remediation processes. Familiarity with penetration testing and application security is a plus

"Cell C is an equal opportunities employer, committed to fostering a diverse and inclusive workplace where all employees are treated fairly and with respect, regardless of race, gender, age, disability, or any other protected characteristic."