Senior Security Officer - Cape town
Nigel Frank International
Thomas Edward Allender
This job has now expired please search on the home page to find live IT Jobs.
Senior Security Officer - Cape town
Ensuring the organisations information security management system(ISO 27001) is maintained and the compliance of staff and policies, procedures, guidelines and standards used to support the effectiveness.
Maintain of all ISMS policies, procedures and relevant standards and supporting documentation as directed.
Scheduling and documentation of all ISG meetings
Co-ordinate the production of all relevant reports and statistical analysis required for annual ISMS management review meetings
Maintain and update content of ISMS Action logs (e.g. security corrective and preventative action logs, documentation reviews.
Oversee progress of action log activities assigned to the scope of the ISMS
Maintain the information risk assessment spreadsheet and risk treatment plan
Schedule, monitor and report on security awareness training and induction training for all staff within scope of ISMS.
Undertake annual risk assessments within scope of the ISMS based on the documented risk methodology
Identify and agree mitigation with teams and stakeholders within the scope of the ISMS as a result of risks identified
Identify, document and agree acceptance of risks where appropriate with the risk owner
Identify, document and agree transfer or avoidance of risks where appropriate with the risk owner
Ensure transfer of mitigation to Action Log and progress actions in an appropriate timeframe
Support Audits of Divisional compliance of ISMS Requirements
Act as Liaison officer between Division and Corporate Quality Team, Process Integration Team, External Audit Bodies and Customers for all Internal, External and Third-Party Auditing activities.
Assess adequacy of Division Operational Security Procedures
Support Projects that require a security oversight
Document Security Compliance Requirements
Identify key security risks to Project Governance by providing a documented risk assessment
Ensure security risks are monitored ad managed throughout the project
Be the SME for security governance and compliance
Support general security activities as required
Physical and logical Access Control
Physical Security Control monitoring, site perimeter monitoring
Maintenance and adherence monitoring of access control policies and procedures
Facilitation of Staff Vetting Customer Requirements
Essential Knowledge and skills
2-3 years' experience IT Auditing/Assessments
Excellent communication Skills both written and verbal
Excellent Understanding of ISO27001 and ISO27002 Information Security Standard and Implementation
Good working knowledge of Security related legal and regulatory requirements
Ability to manage and deliver risk assessments through to successful conclusion
Excellent Knowledge of using Microsoft Office, Visio and MS Project. E.g. Word processing , Spreadsheets , Presentations, flow diagrams and Project Plans
IT Corporate Governance Principles
Preferable knowledge and skills
Previous experience in the delivery of management systems (Plan, Do, Check, Act)
ISO 22301 Business Continuity
2-4 years' experience in IT Auditing/Security Auditing related role
3rd Party Supplier Evaluation and Compliance experience
IT related Diploma/Degree (3 years)
ITIL Standards and Practices
ISO 27001 Lead Auditor
This is a unique opportunity to work with one of our exclusive clients. For further information regarding your application to this role or to enquire about the multitude of others we have in your field please Email your CV to email@example.com or call on +441914060001.