Posted on :
15 Jun, 2022
15 Jun, 2022
We are presently sourcing for a Cyber Security Consultant for a Contract based role (12 month renewable) within the Telecommunications industry. If you are interested, kindly read below and apply.
Job Title: Cyber Secure by Design
Identify potential cyber security risks for new products, services and operations and identify controls to minimise, mitigate or remove those privacy and security risks;
Review Design and implementation of the identified controls to ensure they are built into the product (at Design Build stages);
Provide assurance that privacy and security controls have been implemented before the product goes �??live�?� and product complies with Security requirements and applicable laws (at Test Go-Live stages);
Assess security and privacy risks arising from changes to existing live products that impact the processing of personal data (In-Life); and
Ensuring security and privacy risks are addressed when decommissioning these products (Decommissioning).
Qualification and Experience:
3 year Technical Diploma/Degree in Information Security, Computer Science or Engineering
An industry certification. The CISSP is strongly preferred, however CCSP, OSCP, CISM, CISA or other relevant certifications will be considered. Security/IT Architecture qualifications such as SABSA, TOGAF etc and relevant security architecture experience will be an added advantage
Minimum of 3-5 years of experience in Cyber Security role
Knowledge of common information technology management / compliance frameworks such as ISO/IEC 27001, NIST CSF, ISF, PCI DSS, OWASP, SANS etc.
A deep understanding of Technology Security risks and mitigating solutions
A diverse security background with knowledge and experience in three or more of the Security Domains including: Security Assessment and Testing; Software Development Security; Security Governance and Risk Management; Security Architecture and Engineering; Communication and Network Security; Identity and Access Management; Security Operations; Asset Security.
Specialist experience in Either DevSecOps, Application Security, Security Architecture or Offensive Security will be an added advantage.
Knowledge of operating systems such as Windows and Linux and how to secure them
Knowledge of and/ or experience in creating and managing DevSecOps pipelines practicing CSA, SAST, DAST, and Security as Code will be an added advantage
Be well-versed in at least one of the programming languages like Java, PHP, Python, Ruby, and Perl so as to collaborate competently with software engineering teams within the organization to identify and implement opportunities for improvement and automation in the CI/CD pipeline.
Knowledge of Cloud and container technologies such as AWS/GCP/Azure, Docker, Kubernetes, and how to implement developer tools such as GitHub and Dependency management will be an added advantage.
Knowledge of configuration management tools such as Chef, Puppet, and Ansible will be an added benefit.
Ability to work under time and resource pressure
An ability and desire to collaborate and communicate with a broad set of stakeholders.
A customer-focused, responsive, and transparent attitude