Security Governance and Compliance Specialist

 

Recruiter:

PreBless Group

Job Ref:

ABBANK

Date posted:

Tuesday, September 14, 2021

Location:

Johannesburg, South Africa

Salary:

negotiable


SUMMARY:
Develop processes and procedures for the information security governance program and develop, coordinate and maintain the implementation of security policies and procedures across the Bank.

POSITION INFO:

Overview:

1 - Security Governance

  • Develop processes and procedures for the information security governance program.
  • Develop, coordinate and maintain the implementation of security policies and procedures across the Bank.
  • Ensure alignment of security governance with the Bank’s business objectives.

2 - Security Compliance Management

  • Ensure compliance with the applicable legislative and regulatory requirements.
  • Monitor and measure compliance with Security policies.
  • Provide business support in audit activities.

3 - Security Management

  • Develop and optimize processes to improve security threat identification and remediation.
  • Monitor and manage emerging and existing threats and vulnerabilities to new and existing internal and external services.
  • Implement new security operational efforts and coordinating resources to ensure operational efficiency on technical security controls.
  • Participate in IT Continuity and Disaster Recovery process
  • Champion awareness of developing Information Technology and security risk landscape across the wider business.
  • Oversee highest risk initiatives and serve as a point of escalation for remediation/mitigation efforts.

4 - Collaboration

  • Represent African Bank as a backup on the relevant industry related security groups and initiatives (e.g. SABRIC CSIRT Workgroups).
  • Collaborate with IT technical teams across the business to deliver Security service improvements.

5 - Project Management

  • Provided end to end engagement on a wider range of security projects as a security technical SME including ensuring the governance and change control is enforced.
  • Perform project tasks within allocated timeframes.

6 - Treating Customers Fairly and Compliance

  • Create and maintain productive relationships with internal and external clients by providing advice and assistance.
  • Create understanding of the ‘real’ versus ‘perceived’ need through experience and expertise while complying with company polices legislation and regulations.
  • Keep the client informed about progress through written communication, telephone communications and/or face to face meetings.

  • Build a positive image by exceeding client expectations at all times.
    Treat internal and external customers fairly at all times.

    Identify topics of interest to the organisation relating to existing technology and processes.
    Prepare a proposal for research work.
    Research topics document the results and commit the output to a body of knowledge.
    Apply research findings to the analysis phase of upcoming initiatives.
    Apply research findings to ongoing implementation efforts.
    Apply research findings to planning for future initiatives.

    Continuous Improvement
    Create an innovative idea(s) or continuous improvement initiative(s) to enhance the security system.

  • Identify topics of potential interest to the organisation such as industry trends and state-of-the-art technology.

  • Minimum Education

    • Bachelor’s Degree in Computer Science, Information Technology, Computer Auditing or Internal Auditing
    • CISA, CISSP, CISM, CRISC or equivalent security professional qualification preferable

    Minimum Experience

    • 5+ years of experience working in professional information security role.
    • Broad information security knowledge across several security domains.
    • Experience in developing the appropriate information security governance and compliance measures.
    • Experience in managing and developing baseline information security configurations and experience with common industry information security standards and guidelines (such as CIS Controls)
    • Experience of identifying risks and developing and implementing policies, procedures and processes.
    • Experience of process development and process improvement.
    • Knowledge and experience with various Information Security governance and control frameworks (NIST, ISO27001/2, PCI-DSS, CIS Controls).
    • Knowledge of security architecture, network security, access control and user access management, encryption, application security, platform security and database security.





 

NB! This job is now closed. You can apply for other jobs by uploading your CV.


 

 

 

Similar jobs you might be interested in:

Information Security and Governance Senior Manager
Location: Johannesburg
Salary: Negotiable
Information security and governance Senior Manager
23 days ago


IT and Digital Solutions Manager - 6 month contract
Location: Johannesburg
Salary:
Today


Cloud Solution Architect
Location: Sandown
Salary:
Today


Dealer Training Academy Manager
Location: Centurion
Salary:
We are seeking a skilled and experienced Dealer Training Academy Manager to lead the development, coordination, and implementation of training programs across our clients’ automotive dealership network. This role will be based in Centurion.
1 day ago


Head of SecDevOps
Location: Johannesburg
Salary:
Datacentrix Managed Talent Solution’s client is seeking a visionary Head of SecDevOps to drive the secure digital future of their organization. Must have 10 years' experience in IT with at least 5 years' experience in SecDevOps or a related field, and 5 years' experience in managing technical teams.
1 day ago


Data Architect
Location: Johannesburg
Salary: 700000
In search of a skilled Data Architect in JHB!
2 days ago


SD-WAN Specialist – Palo Alto Prisma
Location: Johannesburg
Salary:
Our client in the ISP environment is looking for an SD-WAN specialist with Palo Alto Prisma. This is a 3 months short term contract and the role will be based in Rosebank. The specialist must have deep knowledge of Palo Alto Prisma SD-WAN Architecture, ION appliances and Cloud Management coupled with strong understanding of WAN technologies: MPLS, BGP, OSPF, QoS, IPSec VPN. Must also be familiarit...
2 days ago


Technical Business Analyst - Hybrid
Location: Sandton
Salary:
2 days ago


Junior Attorney
Location: Northcliff
Salary:
Junior AttorneyRandburg, SASalary: R15 000 – R20 000 CTC (Depending on Experience)Are you a recently admitted attorney looking to grow your legal career in a dynamic and fast-paced environment? We are seeking a Junior Attorney with a passion for commercial law, keen attention to detail, and a strong drive to deliver practical legal solutions.Minimum RequirementsQualifications & Admission...
6 days ago


Senior Data Egineer
Location: Johannesburg
Salary:
6 days ago


Create a free job alert for Security Governance and Compliance Specialist in Johannesburg

Enter your email address below and we will email you similar jobs when they become available:

You can cancel at any time. We will not spam you.
By giving us your email address your agree to our Terms and Conditions

 

Jobseekers

Register your CV
Search jobs
Job alerts
CV writing
Blog

Recruiter

Advertise jobs
Search the CV database
How to Write a Job Description

General

Company a-z
Partners
About us
Disclaimer
Terms and conditions
Privacy policy
Cookie policy
POPIA manual
Unsubscribe
Site Map

© Copyright 2025 Executive Placements. All Rights Reserved.