Information Security Officer (JB4536)

*Information Security Officer (JB4536)*
Remote, (Suitable for candidates in Gauteng Only)
XXX-XXXX.00 to XXX-XXXX.00 Annually CTC
Permanent

A retailer operating in the travel retail sector is looking for a professional Information Security Officer. The business' core focus is on providing retail food & beverage as well as duty free retail products, services, and technologies to its B2B and B2C customers, through multiple channels. You will be responsible for the overall planning, governance, and successful delivery of the companies Cyber Security Strategy

The position is a remote position. Candidates will however need to be able to commute to Head Office as and when required

*Minimum Requirements:*
Matric & Relevant tertiary qualification
One or more of the below certifications would be advantageous:
CISSP: Certified Information Systems Security Professional
CISA: Certified Information Systems Auditor
CISM: Certified Information Security Manager KPAs
5 years experience in Cyber Security
Framework Knowledge of Security best practices (CIA/ITIL/NIST/ISO)
Experience with implementing Policies and controls
Experience with Cloud computing security
Must have experience in developing and implementation of Cybersecurity policies, standards, and guidelines
Ability to work with and influence remote teams
Ability to educate a nontechnical audience about various security measures
Strong planning, communication (written and verbal), presentation, negotiation, facilitation skills
Strong leadership and management skills
The ability to find innovative ways to resolve problems
Quick evaluator of facts vs ideas or theory
Analytical, methodical and logical thinker
Intuitive and innovative problem solver
Application: using ideas or knowledge in new areas
Acute attention to detail
Process driven
Effective communicator
Well-developed resource management skills
Ability to effectively engage both senior and junior staff
Ability to cope with and handle variable workload
Ability to work without close supervision
Well-developed inter-personal skill
Able to self-correct and be flexible / adapt to change

*Duties and Responsibilities:*
Develop and Implement Cybersecurity policies, standards, and guidelines
Build and manage a strong team capable of managing cyber risks and responding to day-to-day threats
Establish strong governance and assurance controls and processes to continuously measure and improve coverage and operating effectiveness of controls
Perform period risk assessments to proactively identity and mitigate cyber risks
Engage with business units to ensure consistent application of cybersecurity controls across all business processes, projects, and technology systems
Partner with stakeholders across business units to cultivate a strong culture of cyber security at all levels, underpinned by a comprehensive ICS training and awareness plan
Measure and Monitor Cybersecurity risk profile and posture and report to appropriate committees and stakeholders
Monitor local regulatory and technical developments to ensure that cybersecurity policies are in line with these developments and engage
Participate and represent cybersecurity risks in various committees and forums to provide updates and influence positive outcomes for the business
Support audits (External and Internal) and reviews including regulatory reviews
Conduct Security assessment
Development of educational programs in security awareness
Educating staff about security software and best practices for information security

• Kontak Recruitment Disclaimer:*
• Equal opportunity:* All backgrounds are welcomed, with no bias. All are considered based on requirements.
• Job specifics:* Requirements mirror advertisement, duties may adjust for client needs.
• Fair process:* Fair assessment, only shortlisted candidates contacted due to volume.
• Privacy: *Data processed as per Privacy Policy. By applying, you agree to data handling. We safeguard applicant info.
• Candidate verification: *Candidates selected by the client are verified. False info may disqualify or end employment via the client.
• Offer clarity: *Advert is not a binding offer. Written offers based on pre-employment conditions.
• No direct link: *Advert is not tied to Kontak Recruitment. We assist in the employment process ONLY.
• Applicant Responsibility: *Upon applying, confirmation of receipt for a specific advert is given. If no confirmation is received, you must verify with Kontak Recruitment.

Matric & Relevant tertiary qualification
One or more of the below certifications would be advantageous:
CISSP: Certified Information Systems Security Professional
CISA: Certified Information Systems Auditor
CISM: Certified Information Security Manager KPAs
5 years experience in Cyber Security
Framework Knowledge of Security best practices (CIA/ITIL/NIST/ISO)
Experience with implementing Policies and controls
Experience with Cloud computing security
Must have experience in developing and implementation of Cybersecurity policies, standards, and guidelines
Ability to work with and influence remote teams
Ability to educate a nontechnical audience about various security measures
Strong planning, communication (written and verbal), presentation, negotiation, facilitation skills
Strong leadership and management skills
The ability to find innovative ways to resolve problems
Quick evaluator of facts vs ideas or theory
Analytical, methodical and logical thinker
Intuitive and innovative problem solver
Application: using ideas or knowledge in new areas
Acute attention to detail
Process driven
Effective communicator
Well-developed resource management skills
Ability to effectively engage both senior and junior staff
Ability to cope with and handle variable workload
Ability to work without close supervision
Well-developed inter-personal skill
Able to self-correct and be flexible / adapt to change