Brief description
The main purpose of this position is to drive cybersecurity collaboration across the financial sector by setting up, facilitating and participating in structures (internal, inter-organisational, national, regional and international) that aim to create resilience against and ensure appropriate responses to cybersecurity incidents.
Detailed description
The successful candidate will be responsible for the following key performance areas:
- Drive industry collaboration in ensuring cybersecurity resilience by supporting legislation, setting up structures where appropriate or participating within national structures under the Financial Sector Regulation Act 9 of 2017 and National Cybersecurity Policy Framework (e.g. the Financial Sector Contingency Forum, Financial Sector Cyber Resilience Subcommittee, Cyber/Computer Security Incident Response Teams (CSIRTs), Cyber Response Committee and National Consumer Commission).
- Drive regional and international collaboration on cybersecurity and cyber-resilience by leading and contributing to existing and new structures (e.g. the Cyber Working Group under the Committee of Central Bank Governors in the Southern African Development Community, BRICS Rapid Information Security Channel, International Monetary Fund Cyber Resilience Centre, and cyber working groups under the Bank for International Settlements).
- Coordinate areas of the South African Reserve Bank (SARB) involved in cybersecurity (e.g. the Prudential Authority, Financial Stability Department, Business Solutions and Technology Department and National Payment System Department) in ensuring the SARB Group's participation, alignment and support of sectoral, national, regional and international efforts.
- Position the SARB Group as a leader in financial sector collaboration and information-sharing to promote cyber-resilience.
- Develop, maintain and update the SARB Group Cyber Resilience Framework in line with collaboration efforts.
- Develop, oversee the implementation of, and ensure compliance with the SARB Group's Cyber Security Responsible Disclosure Policy.
- Ensure the SARB Group drives and capacitates national and regional sector CSIRTs and supports international response efforts.
- Ensure appropriate state agency involvement when dealing with incidents as part of the National Incident Management Centre structure.