Cybersecurity Intelligence Centre Management
The Foschini Group
Cape Town North
3d ago

Position Description :

  • The Cybersecurity Intelligence Centre (CIC) Manager is responsible for a small team of security experts that provide the following core services;
  • Security Monitoring
  • Threat Intelligence
  • Threat Hunting
  • Antimalware
  • Incident Response
  • As the CIC Manager, your responsibilities include but are not limited to the oversight of day-to-day operations, for the Next Gen SOC which we call the Cybersecurity Intelligence Centre (CIC), as our objectives are to focus on continuous improvement through the use of automation, and maturing key processes and driving new innovations.

    The CIC manager role is a high visibility role, requiring collaboration with key stakeholders across the group from junior staff to Board Directors, including 3rd party suppliers.

    Given the fast-paced operating environment, the role requires a strong technical leader, with outstanding customer service skills, capable of planning and executing to meet the core CIC objectives, thereby meeting the Group’s Information and Cybersecurity objectives.

  • In addition the CIC Manager needs to ensure Operational Excellence with the following guiding principles;
  • Always protect and serve the enterprise
  • Detailed orientation
  • Deliver efficiently and timely, focusing on outcomes
  • Continuous improvement and innovation
  • Primary Responsibilities

  • Day-to-day operational management of the CIC, which will require an individual with hands-on competencies where required
  • You are a thought leader or developing into a thought leader in the area of advanced security analytics and intelligence
  • Oversee technical delivery, assessing and continually improving outputs and ensuring processes are developed and adhered to by internal and external stakeholders in-order to drive operational excellence
  • Ensure that the CIC is cyber resilient with a focus on governance, people, process, technology and information objectives are met
  • Provide monthly CIC management report, and daily and weekly dashboards to the CISO
  • Work closely with internal audit to ensure compliance requirements are met
  • Provide an update on Infosec Operations on a weekly basis, highlighting KRIs and KPIs
  • Undertake RFIs, RFPs and RFQs
  • Ensure ongoing research and development with reference to current solutions and emerging solutions aligned to the Information and Cybersecurity strategy
  • Develop and socialize annual CIC strategy aligned to the Information and Cybersecurity strategy as well as IT strategy
  • Manage the CIC staff from recruitment, supervision, performance management and implement disciplinary actions where appropriate, and ongoing development.
  • Perform annual staff performance reviews
  • Develop and mentor staff, through ongoing coaching, on the job training and development, and ensure a healthy work environment
  • Required Skills

  • Minimum 10 years overall experience in IT, with at least 5 years’ experience in Information Security
  • Minimum 3 years of leadership experience with at least 2 years’ experience as a SOC manager or similar
  • Expert in Incident Response
  • In-depth knowledge and experience with security technologies
  • Experience with Next Gen SIEMs on-premise and cloud native SIEMs
  • Experience in SOAR or RPA type technology
  • Expert knowledge in Antimalware technologies
  • Expert knowledge of operating systems
  • Knowledge and experience in meeting PCI DSS compliance through operational deliverables
  • Actively hunt for Indicators of Compromise (IOC) and APT Tactics, Techniques, and Procedures (TTP)
  • Monitor open source and commercial threat intelligence for IOCs, new vulnerabilities, software weaknesses, and other attacker TTPs
  • Perform Threat Modeling
  • Blue Team exercises
  • Ensure all services are delivered with SLA
  • Detailed orientated, ’leaving no stone unturned’
  • Demonstrable project management experience within an Information Security context
  • Collaboration with all stakeholders across the hierarchy including 3rd party partners
  • Great communications both verbal and written
  • Risk based decision-making and the ability to objectively communicate risk exposure
  • Ability to negotiate and deal with conflict management
  • Ability to handle high-pressure situations with key stakeholders
  • Build and maintain positive working relationships with all key stakeholders
  • Good analytical skills, problem solving
  • Qualifications

  • 3 year IT degree or similar
  • Service Management and Service Delivery (ITIL foundation certification)
  • Information Security Certifications (Security+, CISSP, CEH, CHFI, CND, Pen Test+, CySA+, SANS certs)
  • Cloud security Certifications (Azure, AWS and GCP)
  • Knowledge and application of industry standards like NIST SP 800-53, CIS 20, ISO 27001, MITRE ATT&CK Framework, Lockheed Martin Cyber kill chain
  • Knowledge of key regulation and legislation like POPIA and PCI DSS
  • PREFERENCE WILL BE GIVEN, BUT NOT LIMITED TO, CANDIDATES FROM DESIGNATED GROUPS IN TERMS OF THE EMPLOYMENT EQUITY ACT.

    Report this job
    checkmark

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    Apply
    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Continue
    Application form