The Cyber Security Specialist provides specialist advice and support in the development and implementation of IT security service delivery processes, methods, and techniques. This role is responsible for enabling the secure management and control of IT access in alignment with governance requirements, ensuring that all cybersecurity activities are carried out in full compliance with regulatory requirements and internal policies.
Key Responsibilities
Cyber Risk Assessment and Strategy (60%)
Assess risks and exposures related to cybersecurity and align them to the Bank’s risk appetite.
Monitor current and emerging risks and changes to laws and regulations for appropriate actions.
Collaborate with stakeholders charged with safeguarding information assets to ensure appropriate control design and configurations.
Maintain comprehensive cyber risk registers, ensuring risk identification is forward-looking and includes security incident handling.
Ensure implementation of the cyber and information risk management strategy, including policies and standards.
Safeguard the confidentiality, integrity, and availability of information assets and Technology platforms.
Prepare Cyber Security Posture reports for submission to various risk committees.
Run the vulnerability management program to ensure vulnerabilities are identified, prioritized, and remediated on time.
Engage with stakeholders across the Absa Group to motivate and drive remediation of vulnerabilities.
Engage with Project Management teams to ensure all new projects are security-assessed.
Coordinate penetration tests, red team exercises, and audit engagements with internal and external teams.
Respond to Cyber security incidents in coordination with the Group Incident Response and Forensics team.
Report Cyber security incidents to the regulator as specified in prudential guidelines.
Risk Monitoring and Reporting (20%)
Implement parameters to measure Cyber risks exposure.
Monitor adherence to cyber risks policy and standards to drive remediation measures.
Report all cyber risks consistently and comprehensively to senior leadership and relevant stakeholders.
Cybersecurity Awareness (10%)
Coordinate Cybersecurity awareness activities across the bank from strategic, technical, and general sensitization.
Create Cybersecurity awareness circulars for customers.
Coordinate cybersecurity awareness for Board members.
Threat Intelligence and Research (10%)
Research emerging cybercrime trends and gather threat intelligence for sharing.
Coordinate red team exercises and penetration testing activities for applications and infrastructure.
Risk and Control Objective
Ensure all activities and duties are carried out in full compliance with regulatory requirements and the Enterprise-Wide Risk Management Framework.
Understand and manage risks and risk events (incidents) relevant to the role.
Requirements and Qualifications
Education: B-degree in Computer Science or Information Technology.
Certifications: CISSP, CISM, CEH, or equivalent certification.
Experience: At least 5 years of technical experience in the field.
Operating Systems: Proficiency with Linux and Windows operating systems.
Technical Skills: Network monitoring, Vulnerability Assessment and Penetration Testing (VAPT), Risk Assessment, and Incident Response.
Analytical Skills: Strong data analysis and reporting capabilities.
How to Apply
Interested and qualified candidates should apply online via the Absa recruitment portal at Absa Workday Jobs.
How to Apply
Interested and qualified candidates should apply online through the Absa Bank recruitment portal. Go to Absa Workday Jobs to complete the application process.
.png){kind=logo}
