Requisition Details & Talent Acquisition Consultant
REQ 136716
Location: Johannesburg
Closing date: 19 November
Job Family: Risk, Audit and Compliance
Career Stream: Auditing
Leadership Pipeline: Manage Self Professional
FAIS Affected: Job Purpose:
To perform assurance activities in the form of control reviews and risk assessments on various cyber elements in the bank. Collaborate with other functions in the bank to execute on the cyber resilience programme.
Job Responsibilities: Be a cyber security subject matter expert for the bank by providing expert advice on all aspects of cyber security risk management.Build and maintain professional relationships by information sharing and professional networking within the bank.Build and maintain internal stakeholder relationships through collaboration with stakeholders and regular communication via various media.Assist with coordinating group wide cyber-resilience risk and control assessments in line with the group's risk management frameworks.Analyse data to form a repeatable, defendable opinion.Identify, develop and enhance policies, standards, procedures and guidelines and drive implementation and compliance throughout the group.Maintain a view of current cyber-resilience threats and trends globally by conducting research.Support the achievement of the business strategy, objectives and values by ensuring delivered systems, process, services and solutions are aligned.Identify training courses and career progression for self through input and feedback from management.Ensure all personal development plan activities are completed within specified timeframe.Share knowledge and industry trends with team and stakeholders during formal and informal interaction.Obtain buy-in for developing new and/or enhanced processes (e.g. operational processes) that will improve the functioning of stakeholders' businesses by highlighting benefits in support of the implementation of recommendations.Seek opportunities to improve business processes and systems by identifying and recommending effective ways to operate and adding value to Nedbank. Essential Qualifications - NQF Level: MatricRelevant bachelor's degree Preferred Certification: Certified Information Security Manager (CISM)Certified in Risk and Information Systems Control (CRISC)Certified Information Systems Auditor (CISA)Certified Information Systems Security Professional (CISSP) Minimum Experience Level: 3+ years of audit/risk management experience specific to cyber and/or information security. Types Of Exposures: The candidate should have experience in cyber risk management as well as the testing of cyber controls.Exposure to cyber risk frameworks, including one or more of the following: NIST cyber framework, NIST standard, ISF, ISO27001/2, FFIEC.Passion for Cyber.Eager to learn.Ability to work with people outside of the direct team to achieve objectives.Ability to create and present reports to various stakeholders. Technical / Professional Knowledge: Audit reportingAudit standards and practicesBanking knowledgeGovernance, Risk and ControlsEthics and FraudReputational risk managementInformation technologyBusiness writing skillsRegulatory, Legal and Economics PrinciplesBusiness Acumen Behavioural Competencies: Managing WorkMonitoring InformationBuilding PartnershipsQuality OrientationContinuous ImprovementWork StandardsCourageAdaptability Disclaimer: Preference will be given to candidates from the underrepresented groups. Please contact Nedbank.
#J-18808-Ljbffr