|Company||Transaction Capital Recoveries|
|Location||Hyde Park, Gauteng, South Africa|
Plan and coordinate security measures for information systems to regulate access to computer data files and prevent unauthorized modification, destruction, or disclosure of information by making use of the ISO 27001:2013 framework. Furthermore to ensure that the Company achieves and maintains ISO accreditation.
|Job Functions||Data Analysis,Information Technology,Systems Administrator|
Implement and Maintain ISO 27001:2013
•Coordinating efforts to achieve registration of, or compliance with the ISO 27001:2013 standard
•Developing and maintaining all ISO documentation, including policies and procedures
•Scheduling and conducting internal audits and documentation thereof
•Responsible for ISO 27001 Document Control administration
•Implementing and maintaining a training and awareness program
•Implementing and maintaining the control and mandatory procedures
•Performing risk assessment and risk treatment plans
•Reviewing and updating the statement of applicability
•Maintaining and managing the risk treatment plan
•Ensuring the continuous effectiveness of the control
Security System Administration
•Operating and monitoring the Information Security Management System, and ensuring compliance with legislation and regulations
•Formally evaluating security features of information products and systems
•Enforcing security policy as per ISO to safeguard against accidental or unauthorized access
•Managing and executing adhoc requests which may fall outside of the ISO and system mandate.
•Maintaining and updating the quarterly audits throughout the Company on the various systems used.
•Compiling the Audit for review and feedback
•Managing changes and or verifications from findings
•Ensuring the final report is signed by all relevant parties and distributed to the various stakeholders.
•Maintaining documentation and originals for audit purposes.
•Maintaining SharePoint audits
Minimum Education / Training
•Grade 12 certificate
•IT Diploma /Certificate
•CISSP or CISM (added advantage)
•Basic ISO 27001:2013 training (added advantage)
Minimum Work Experience
•5 – 6 years of working experience in IT
•2 – 3 years’ experience in IT Security
•Cobit knowledge (added advantage)
•Experience in ISO 27001:2013 would be an advantage
•Knowledge of relevant security and virus protection software/hardware
•Good working knowledge of quality assurance principles and practices
Note: Please note that due to the high volumes of applications received, we will be in contact with shortlisted candidates who meet the requirements detailed above. If you have not received a reply within 3 weeks, please consider your application unsuccessful. Failure to provide us with truthful information and valid documents where requested will render your application null and void. We are an equal opportunity employer, whose aim is to promote representivity in all levels of occupational categories.
|Job Closing Date||06/03/2020|