Job ResponsibilitiesDevelopment of Information Security Services capability and initiatives in support of the IT Strategy and EA Planning / Blueprinting processes.Advise on and ensure the effective management of information technology and business processes access and to communicate feedback to enable associated security risk management.Perform Vulnerability testing and scanning.Report on TCTA's vulnerability profile and recommendations to improve the profile.Analyse related information / reports to identify discrepancies and anomalies, recommend remedial action and ensure compliance to security policies and standards.Develop and/or align information security policies to identify and manage risk exposure.Mitigate risk by ensuring that proper IT security and information management measures are in place.Perform security audits and clean-ups to ensure accurate and up to date access within TCTA.Understand IT applications and infrastructure in alignment with policies and procedures.Document the information security principles and guidelines for application software as well as standards that should be adhered to for each product.Development of information security requirement specifications prior to the procurement or implementation of new systems and technology to ensure alignment between the business goals and the supporting system functionality.Maintain the Information Security Architectural repository to ensure consistency between applications and systems.Ensure currency of systems and technology by maintaining an environmental awareness.Provide guidelines for the development of life-cycle management strategies for systems and technology in conjunction with major stakeholders to ensure business continuity.Managing information security risks and issues and escalating where necessary.Researching and developing leading practices for the Information Security function.Benchmarking and analysis of trends to optimise internal processes.Engaging with business units to proactively (and reactively) provide solutions, advising TCTA's management and other stakeholders in their relevant area of expertise.Benchmark TCTA's Information Security Architecture with Local and International best practice and applications at other organisations.Identify strategic projects that need to be undertaken in the Information Security function.Preparing project definitions and detailed plans with the PMO.Driving and supporting the implementation of the specialised areas initiatives and strategic projects that address the needs and expectations of TCTA's stakeholders.Documenting functional requirements and specifications for new information security solutions.Monitoring and reporting on progress against functional initiatives.Monitoring and reporting on compliance with information security policies, procedures, and controls.Promoting sound institutional governance, participating in required governance structures, and serving as a member on the required forums.Compiling reports on the functional performance at the required intervals reflecting all relevant statistics, e.g., monthly/quarterly cybersecurity report.SkillsCybersecurity Risk Assessment, IT Security, IT Solutions, Financial Services, State-Owned Enterprises (SOE), Water Supply
#J-18808-Ljbffr
