Key Responsibilities:
Security Assessments
- Conduct comprehensive security assessments of business systems.
- Identify risks, vulnerabilities, and provide actionable remediation strategies.
- Utilize industry-standard methodologies to evaluate risks and compliance.
Technical & Non-Technical Risk Advisory
- Evaluate and communicate cyber risks clearly to both technical and non-technical stakeholders.
- Tailor recommendations to specific business environments and operational contexts.
Cybersecurity Behaviour Enablement
- Promote strong cyber hygiene and positive behaviours through awareness initiatives, training, and expert guidance.
- Support campaigns and educational activities that foster a security-first culture.
Incident Management Support
- Provide specialist expertise during security incidents.
- Assist with response activities and recommend improvements post-incident.
Customer Engagement & Support
- Act as the primary contact for information security within your business area.
- Offer real-time support on matters affecting system and data security.
Reporting & Communication
- Analyze assessment findings and translate them into business impact terms.
- Prepare clear and concise reports for stakeholders at various levels.
Security Monitoring
- Stay ahead of evolving threats, vulnerabilities, and security best practices.
- Continuously monitor the effectiveness of implemented security measures.
What You Will Need to Be Successful:
Education
- Bachelor's degree or equivalent in Information or Cyber Security, Computer Science, Engineering.
Certifications (Preferred)
- CISM, CRISC, CISSP, or CompTIA Security+.
Framework Knowledge
- Familiarity with ISO 27001/2, NIST, CIS Controls, and other relevant security standards.
Desirable Experience
- Experience in cybersecurity roles across industries like Finance, HR, Oil & Gas, Retail, Supply, or Trading.
- Ability to simplify complex cybersecurity topics for various audiences.
- Strong grasp of cyber risk assessment methodologies and the ability to assess business impacts.
- Independent, detail-oriented, and capable of handling multiple priorities simultaneously.
- Proficiency in leveraging data and technology to enable informed decision-making.
