We are looking for an Information Security Consultant in Cape Town to support the Group Information Security team. Compliance requirements including specifically PCI DSS (Payment Card Industry – Data Security Standard), GDPR (General Data Protection Regulation) and ISO2700 (International Organisation Standardisation), ISMS (Integrated Security Management Solutions).
In this role the Information Security Consultant works with the Head of Information Security and Operational IT support management to ensure that all security related services are functional to all sites, conduct regular internal compliance checks achieves and maintains PCI DSS, ISO2700K, ISMS and corporate compliance.
- Assists the Head of Information Security in maintaining and enforcing the corporate security best practices & strategy across all locations.
- Maintain information security standards and procedures in compliance with agreed corporate information security and risk management policies, standards and guidelines.
- Responsible for the maintenance and support of security controls and user profiles as required by the functional teams.
- Participate in the operational security processes (application assessments, product certification, network connectivity to all relevant peers, address group security helpdesk incidents).
- Reports on defined IT / Business privacy and security metrics.
- Participates in business continuity and disaster recovery planning, providing security, availability, integrity, and confidentiality.
- Ensures that any/all information technology systems & services remain compliant with policy and regulatory requirements.
- Ensure proper firewall change management and logging procedure are adhered to.
- Ensure that all security related monitoring, scanning and patching policies are observed and enforced.
- Make recommendations based on reports and observations to take remedial action and/or implement best practice improvements in line with Security Policies.
- Provide ongoing support and recommendations to the Head of Information Security.
- Provide Ad-hoc support to Local IT Teams and Group IT Ops.
Prerequisites
- Tertiary Qualification or equivalent with relevant working experience.
- Minimum 5 years’ experience in a similar role preferable in a global company
- Proven experience in working within a process driven environment.
- Proven experience in distributed Patch management systems, knowledge in security management tools and applications.
- Proven experience in managing, maintaining and implementing NGFWs; knowledge of Fortinet and Palo Alto will be an advantage.
- Proven experience in enterprise controlled EDR/XDR applications; knowledge Cortex XDR will be an advantage.
- Proven experience in Vulnerability and SIEM products and applications; knowledge of Rapid7 product suites will be an advantage.
- Well-developed understanding of IT & Security Enterprise Architecture.
Pay: From R20 000,00 per month
Work Location: Hybrid remote in Cape Town, Western Cape