IT Security Specialist

One of the largest manufacturer & supplier of hydraulic & automation components and systems in Southern Africa. Offering total spectrum of fluid power products and services to its customers, represented through 39 business units in sub-Saharan Africa.Job Advert Summary Are you passionate about IT Security, and customer service? Highly proactive and results-orientated? We invite you to join our Information & Digital Technology Team. The main purpose of the job is to develop and maintain current and future system integrations and components. You will also be responsible for participating in requirements analysis and decomposition, design, development, internal testing, and the documentation of same for the application-to-application integrations, including troubleshooting existing integrations and providing technical support to the applications and service desk teams. Minimum Requirements BSc in Computer Science or industry equivalent qualifications. Microsoft and Fortinet Security Certifications preferred. Minimum 5 years IT Security experience. Proven experience in deploying and maintaining a security framework and policies. Strong knowledge of security standards, practices, and methodologies. Proven experience in incident management and recovery. Advanced Communication and People skills Proven analytical and proactive approach to security and audit. Invest in self-development and mentoring of others. Duties and Responsibilities Develop a robust security framework and strategy that aligns with Bosch Group standards. Develop and Implement security policies and procedures for all entities within Bosch Rexroth Africa (DCAF). Develop, Test, and Implement/Upgrade Security Systems to prevent security and data breaches. Identify and mitigate security gaps identified from penetration tests and security system reports and/or audits. Partner with the Information & Digital Technology team, the CISO and/or external vendors to ensure security education, compliance, and framework implementations. Define Network and Infrastructure security standards and policies. Define Application security standards and policies. Define Incident Response plan and action accordingly when required. Proactive monitoring to design and implement safety measures and controls. Complete quarterly security audits including, but not limited to, access privileges and potential violations, data storage and external data transfers, end point vulnerabilities, LAN, and WAN audits. Complete and submit annual security audits for external parties including, but not limited to, Financial Auditors, Bosch Group Auditors and Cyber Security Insurance partner. Establish Security Education program to ensure all employees and contractors are aware of security policies, procedures, reporting channels and the latest threats. Test the effectiveness of the security program by testing end users e.g. phishing simulations, ransomware simulations etc. Develop security skills within the Information & Digital Technology Department.