JOB PURPOSE
The incumbent is expected to build and manage network and security systems for the organization's networks. Identifying networks and cyber security risks and mitigating them through the deployment of technologies, processes, and user awareness programs. The role is also responsible for reporting on security breaches and defending systems against cyber threats such as flaws, viruses, and hacking attempts.
KEY PERFORMANCE AREAS
The incumbent is expected to deliver on the following detailed key performance areas:
Network and Security project implementation
Responsible for the upgrade of network and security hardware equipment.
Documentation and project scheduling.
Project resource management.
Reporting.
ICT Security and Network operations (To ensure early detection of all network and cyber threats.)
Responsible for conducting continuous scanning and security monitoring of all IT cybersecurity domains, i.e., Networks, Firewalls, Anti-virus, Mobile devices, and Patch management.
Maintaining LAN, WLAN, and security architecture of the server as per the IT policy.
Generating and maintaining the virtual private network, firewalls, web protocols and email security domains.
Resolving the existing network and security issues including hardware malfunctions.
Maintaining & implementing SOPs for Network security.
Perform continuous threat and vulnerability management monitoring.
Responsible for analyzing and assessing potential security risks and developing plans to deal with such incidents.
Makes recommendations based on various monitoring outputs to improve the security posture of the organization.
Monitoring of web security gateways, perimeter security, network access controls, endpoint security.
Network and Security policies and frameworks (To ensure the integrity of the IT environment and to drive compliance across the GPF.)
Ensures that the network and security architecture meet all the requirements in line with the overall ICT strategy of the organization and cyber security requirements.
Manages the dependencies between the various areas of the business and ensures that various security components are aligned.
Develops and implements GPF ICT policies and programs and ongoing activities to preserve the availability, integrity, and confidentiality of the information resources in compliance with applicable security governance and standards.
Identifies and implements suitable toolsets to manage the network and security environment.
Network and Cybersecurity (To ensure that any threats to the ATNS network, systems, and applications are mitigated.)
Operates and controls the Information Security Management System (ISMS).
Implements key Information Security projects.
Conducts information gathering on internal and external security intelligence for an investigation into security incidents.
Investigates, responds, and actions information security incidents.
Responsible for writing incident reports and submitting them to Senior Management for decision-making purposes.
Selects, applies, and ensures adherence to good information security practices.
Ensures internal and external suppliers and partners implement security to the required standard and maintain positive relationship with vendors.
Ensures that all IT risks are mitigated and addressed.
Responsible for investigation into incidents related to recovery of deleted files, analysing and interpreting data linked to crime, analysing mobile telephone records and uncovering links between events, groups and individuals through pursuit of data trails.
Maintains detailed records of investigations to be used as evidence in internal disciplinary hearings as well as court of law.
Governance (To ensure compliance to ATNS IT Security policies.)
Responsible for compliance of the security policy through effective management of security events.
Manage and comply with all IT policies, procedures and standards relating to IT security systems.
Manage configuration and change control records with regards to IT network and security system activities. (To ensure business continuity as well as continuous improvement of IT processes.)
Develop metrics that allow the enterprise to gauge the success of security system investments.
Ensure and report on IT DR exercises that are conducted with business on all IT systems as well as make recommendations for continuous improvement in order to ensure business continuity.
Develop and review current disaster recovery management plan.
Conduct/review and sign-off on IT Security audits.
Signoff on all IT change requests and communicate changes to organisation.
Budget Management
Compilation of CAPEX and OPEX budgets for all networks and security activities.
Management reporting.
Drafting of business cases for procurement processes.
Maintains and manages proper records of all budget information.
General Duties
Daily reporting.
Analysing targets.
Meeting with department heads.
Managing and coordinating monthly reporting, budgeting and reforecast processes.
Providing back-office services.
Teamwork
Ability to work closely with others.
Being pro-active in assisting others.
Contribution to business unit meetings and brainstorming sessions.
Mentoring and coaching of interns and peers.
APPOINTMENT REQUIREMENTS
Any Information Technology degree or any IT-related NQF level 7 qualification.
Good FortiGate, Forti Analyzer, and other Fortinet Product experience.
At least 3 to 5 years' experience with network security experience.
Minimum of 3 years' experience with firewall technologies.
NSE4 Certification will be an advantage.
Closing Date: 13 September 2024
#J-18808-Ljbffr
