Job Description
Hello Future IT Security Specialist (Cryptography Specialist)
Welcome to FNB, the home of the #changeables. We design for the shapeshifters and deliver products and services that make us incredibly proud of people that make it happen.
As part of our talent team, you will be surrounded by unique talents, diverse minds, and an adaptable environment that lives up to the promise of staying curious. Now’s the time to imagine your potential in a team where experts come together and ignite effective change.
Are you someone who has:
Have a working understanding of the following competency with 3- 5 years applied experience in key management and cryptography as the primary responsibility.
-
Access Control Systems and Methodology
-
Telecommunications and Network Security
-
Security Management Practices
-
Key management and Cryptography
-
knowledgeable of PKI concepts, designs and practices and hands-on experience with:
-
Certificate Authority Administration
-
Certificate enrolment process
-
Active Directory Certificate services
-
Hands-on skill with Microsoft Certificate Services and its related components
-
Working knowledge of Active Directory and its integration with Microsoft PKI
-
certificate-enabled applications, such as SSL/TLS, Code Signing, etc.
-
Knowledgeable of cryptographic process and concepts (symmetric/asymmetric cryptography, secure hash, digital signatures) and hands on experience with:
-
Bank card issuing process
-
Bank card acquiring process
-
Key injection Facility process
-
Bank card Embossing
-
EMV key Process
-
Key management & Cryptography consulting, administration, and support experience.
-
Excellent written and verbal communication skills
-
Extremely detail orientated
-
Standby/ Callout
-
Afterhours work
-
Excellent diagnostic and problem solving skills
-
Monitor and manage security logs
-
Business Continuity Planning (BCP) and (DRP)
-
Physical Security
-
Regulatory and mandatory standards.
-
Systems analysis and design
-
Programming skills (where relevant)
-
Systems development life cycle
You will be responsible for:
-
Establish and maintain cryptographic solutions design and architecture, for new and existing systems.
-
Assist with the evaluation, design and delivery of major new Cryptography security technologies across FRG
-
Using technical experience and knowledge of the business and processes, produce innovative solutions designed to improve the Group’s information security posture, increase operational efficiencies and reduce operational costs
-
Drive continuous improvement of Security services by reviewing the performance of existing processes.
-
Manage the installation, commissioning and configuration of specialist cryptographic devices.
-
Drive the development and provision of security mechanisms to ensure successful disaster recovery.
-
Provide guidance to the junior team members on day-to-day support of existing systems as per service levels agreements
-
Perform Key Management with best practices followed throughout the key life cycle
-
Creating and maintaining of Cryptographic keys and to provide hands-on Key management support (24/7) of existing systems.
-
Investigate and encourage automation for recurring tasks
-
Conducting investigations related to Key Management problems / Incidents and take corrective action as per change management processes
-
Identify, create and maintain Key Management processes and procedure documentation
-
Identify, and document process of monitoring and management tools
-
Drive and keep abreast of cryptographic compliance requirements.
-
Implement and manage PKI by configuring hardware to ensure secure issuing of all certificates
-
Manage various high priority servers and ensure the confidentiality, integrity and availability of cryptographic and key management services, applications servers and systems
-
Initiate and participates in special projects as required
-
Maintenance of Cryptography Service Catalogue, and ensure that services are of high quality, relevant, and cost-effective.
-
Collaborate with the Information Technology teams in the various Business areas and with the security teams i.e. Risk and Governance / Cybersecurity / ISO.
-
Liaise and manage the relationship with Business Unit Third Party Information Security teams, to establish cryptographic links.
-
Liaise with Cryptography solution providers/ Vendors
-
Decommission Crypto Hardware Infrastructure by removing the logical keys, clearing the database and memory in the event of new hardware or to replace faulty infrastructure
-
Assist virtual teams of security and technical specialists to integrate existing Crypto security technologies that have been independently deployed into different business units, ensuring the delivery of a single, high-quality, cost-effective solution
-
Maintain the Crypto information security technology strategy, showing appreciation for the challenges presented by different business units and geographies making up the whole of FRG, and work with other technology architects to ensure alignment to broader architecture strategies
-
Maintain Crypto Hardware to effectively maintain all crypto infrastructure to ensure that they are on the latest patches and software
-
Ensure security and compliance controls are met when creating, replacing, decommissioning and destroying keys as per specified FRG, MasterCard and Visa requirements
-
Obtain a thorough understanding of the business unit’s strategy and explain it to team members in such a way that they understand the contribution they have to make
-
Receive approved change request from business unit on SNOW e.g. if an infrastructure change is required or if infrastructure needs to be upgraded with new functionalities and arrange for appropriate custodians to be available to perform upgrade
-
Report non-compliance & deviations to appropriate stakeholders.
-
Provide technology consultancy services and technical support for the Cryptography environment
-
Analyse and evaluate all new communication interfaces, and provide secure solutions where required.
-
Provide technical security consultancy into projects as required
-
Provide cryptography system administration & associated auditing for supported environments
-
Ensure the confidentiality, integrity and availability of cryptographic and key management services to business functions and applications.
-
Ensure that declared service levels are being met and provide ongoing support, performance review and mentoring where appropriate.
-
Escalate need to redirect investment or change practices as needed to mitigate critical risks identified or ensure regulatory compliance.
-
Identify and implement best practices to ensure continuous improvement in quality and relevance of service offerings
-
Support Services
-
Provide input participate in internal costing and budget process.
-
Contribute towards creating a winning culture [support the values]
-
Build enduring partnerships with customers.
-
Participate and ensure services in line with service level agreements.
-
Stay abreast of the latest developments in the information security field, including new products and services.
-
Participates in professional bodies and industry forums.
Technologies and hardware you will need to have worked on / understanding:
Working understanding in a number of the following operating systems/products/mechanisms and 3-5 years working experience in the key management and cryptography application.
-
RACF
-
TSO
-
TCP/IP
-
SFTP
-
MFT
-
Smartcard Technology
-
Card personalisation (P3)
-
MS Windows
-
Linux (Suse)
-
IPSEC
-
SSL / TLS
-
Standards (FIPS, ANSI, ISO, PKCS)
-
Public Key Infrastructure
-
IBM - DKMS
-
IBM- TKE
-
SWIFT Net
-
Venafi
-
Secure Data (Tokenisation)
Hardware
-
IBM crypto
-
POS Devices
-
ATM EPP
-
Thales
-
Safenet
-
nCipher
-
Futurex
What you will need:
-
Matric
-
N+ / S+ or Equivalent certification, MCSE
-
Certifications (CISSP/ CISA) or Degree in Computer Science, Information Technology, Information Services, or similar or A minimum of 10-13 years’ experience in Information Technology
We can be a match if you have:
-
Analytical: probes for facts, seeks additional information in seeking the root cause of a problem. Demonstrates a logical reasoning approach
-
Problem solving: able to follow a logical process to identify an appropriate solution.
-
Integration; able to link new information with known information and to understand the patterns and relationships that occur.
-
Conflict: the ability to handle conflict and seek a positive outcome.
-
Decision making: decisiveness, readiness to make decisions, render judgement, or get things done; action orientated.
-
Initiative; pro-activeness; looks for opportunities and acts on them; influences events in a creative and innovative way; displays original thinking.
-
Self-management; has personal direction and focus; is able to plan and implement that plan; effectively manages own priorities and time.
-
Interpersonal skills/ relationship building skills; able to build and establish relationships at all levels.
-
Security mind-set: interest and awareness of information security access and control.
-
Communication: Excellent verbal and written skills.
#Post
#FNB
#LI-NN2
Are you interested to take the step? We look forward to engaging with you further. Apply now!
Job Details
Application Closing Date
12/09/24
All appointments will be made in line with FirstRand Group’s Employment Equity plan. The Bank supports the recruitment and advancement of individuals with disabilities. In order for us to fulfill this purpose, candidates can disclose their disability information on a voluntary basis. The Bank will keep this information confidential unless we are required by law to disclose this information to other parties.