Cyber Threat Specialist

Location: sandton, Gauteng, South Africa
Salary: Market related
Recruiter: Charm Recruit
Job Ref: Charm321
Summary: One of the big 5 law firms is looking for a Cyber Threat Specialist

 

 

Job Description

The Team

The Information Security team, led by the Global Chief Information Security Officer (CISO), work with unified principles and processes around the world while maintaining regional stakeholder relationships. High standards are achieved by the adherence to international best practice principles (ISO 27001) and continual improvement methodologies.

The scope of the Information Security function includes all strategic security planning and control oversight to ensure effective risk mitigation takes place within the firm. In many cases, the operational running of security controls is the responsibility of IT Service Delivery teams or departments such as HR, Facilities, Procurement, General Counsel, etc., The Information Security team remains responsible for ensuring the effectiveness of the overall control framework and ensuring that any related risks are identified / incidents managed.

The Role

The Cyber Threat Specialist is one of two such positions in the global Information Security function at this law firm. These roles are responsible for proactively managing the threat landscape at the firm. Primary responsibilities include vulnerability management (including penetration testing) and threat management (including threat hunting). Other tasks include password audits, data loss prevention management and taking service ownership of our vulnerability management products (Bitsight, Qualys etc).

The Cyber Threat Specialist role will interact with third party managed service providers as the operation of some functional activities, like penetration testing and vulnerability scanning, are currently outsourced. As one of two Threat Specialists in the Information Security team, there will be the ability to focus on those activities that are both of interest and play to your strengths. As such, the list of activities above is likely to be balanced across both roles to provide both redundancy and the opportunity to specialise, where appropriate.

The Cyber Threat Specialist role is part of the global Information Security function and will work with colleagues and stakeholders in multiple geographies. The Threat Specialist will perform threat management, threat modelling, identify threat vectors and develop use cases for security monitoring. They will also determine the relevance of the threat to our business, through the application of a risk-based methodology and take action or pass action on to the relevant teams to counter the threat. The Threat Specialist will also identify vulnerabilities using multiple technologies (vulnerability scans, penetration testing reports, Bitsight ratings, etc.) and operate the vulnerability management process ensuring remediation to target.

The success of this role is dependent upon building a lasting alignment between Information Security technology and business requirements. In particular, the role must take into consideration:

 

·         The special requirements of the Firm with regard to client confidentiality, as well as regulatory requirements such as data protection.

·         Achieving a balance between protecting the firm and ensuring that users can work effectively; being pragmatic but cognisant of risk.

Skills and Experience Required

·         Education – an IT or Information Security qualification / experience or 4+ years’ experience in a similar role.

·         Experience working in large, matrix and geographically dispersed global organisations where IT and Information Security have played a key role to the business.

·         Demonstrable experience of managing outsourced security services and driving continuous improvement.

·         In depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc.

·         Experience with governing vulnerability management processes and technologies.

·         Experience with the creation of reports, dashboards and metrics for presentation to senior management.

·         Technical knowledge of various Information Security technologies and evidence of a continuous learning mind-set.

·         Integrity and professionalism, with a consistent and uncompromising adherence to best practice.

·         Stakeholder management skills, including the ability to communicate complex Information Security concepts in business language.

·         Passionate and driven to exceed expectations and to deliver with integrity.

·         A relevant industry certification, such as ethical hacking, CompTIA Security+, CISSP or similar, is an advantage.

·         ISO 27001 qualification and / or experience is an advantage.

 

New users - Upload your CV                      Existing users - Login here

 

Similar jobs your might be interested in:

Cyber Risk - Emerging Technologies – Manager
Johannesburg
cyber Risk - Emerging Technologies – Manager
27 days ago


Cyber Security Specialist
Johannesburg
cyber Security specialist Johannesburg Northern Suburbs
30 days ago


Mining Accountant
Johannesburg
A large Mining Company is looking for a specialist Reporting Accountant CA(SA) to join their team. This person should have 2 years post articles experience in a mining company.
New!


Insurance Litigation Specialist
Johannesburg
Our client in the Insurance Industry is expanding their legal team by hiring an Insurance Litigation specialist. Mandatory LLB or Legal Degree Insurance Experience – 5yrs or more
New!


Senior Java Developer
Johannesburg
Being a specialist recruiter within the IT sector, my clients are always on the lookout for exceptionally talented. Your backend coding skills on the .net framework and Java skills together with a stable working track record will not go unnoticed wit...
New!


Senior Sage X3 Support Specialist
Johannesburg
Large services company seeks to employ senior Sage X3 Support specialists with experience in the retail industry.
1 day ago


Business Development Consultant
Johannesburg
specialist Business Development Consultant Woodmead
1 day ago


Accountant
Johannesburg
Accountant & Payroll specialist JHB East R300 000 – R350 000 annually - Do you want to explore new Finance career prospects? Job & Company Description: International company, based in the East Rand, is looking to appoint a seasoned Accountant...
1 day ago


Senior Specialist: Forensics
Centurion
To safeguard the assets of the Company through the performance of procedures to detect fraud; to conduct forensic investigations to facilitate asset recovery
2 days ago


Reporting Specialist
Centurion
Fixed-term Contract Role - Seeking a Finance Reporting specialist to join a dynamic and driven team within a large essential services company. * must be a SAICA registered Chartered Accountant CA(SA)
2 days ago


Senior Specialist: Forensics
Centurion
Our client in the banking industry, based in Centurion, has an EE opportunity available for a Senior specialist: Forensics.
2 days ago


 

Create a free job alert for                                

Cyber Threat Specialist in sandton, Gauteng

Enter your email address below
and we will email you similar jobs when they become available:

You can cancel at any time. We will not spam you. By giving us your email address your agree to our Terms and Conditions