Engineer, Security II
Standard Bank
Cape Town, Western Cape, ZA
2d ago
source : Latest Jobs
  • Job Purpose
  • To provide expert professional knowledge and technical skills within a specialist area, and to execute the bank's information security initiatives, enabling Management to make the appropriate decisions and monitoring the protection of sensitive data and systems.
  • Key Responsibilities / Accountabilities Technology & Architecture :

  • Adhere to and implement the relevant technology standards developed by the wider IT Function.
  • Utilise the relevant technology requirements in order to drive the optimisation of work outputs.
  • Continually review system operations, updating and amending processes and products to mitigate risks as identified and discovered to minimise future incidents.
  • Prototype and pilot proposed information security solutions or capabilities to identify viability of new developments.
  • Engage, consult and influence working groups and business areas to understand the required client process for complex problems that are not readily accessible and processes, that require the design, operation and integration of multiple systems, support the client by ensuring a unified outcome and advising on all related information security processes and products and plan accordingly.
  • Consider various attack scenarios and identify appropriate controls, by working with architects and software engineers to specify how information security technologies should be implemented.
  • Design, implement and operate proactive monitoring and maintenance support activities to ensure confidentiality, integrity and availability of services and underlying platforms to minimise information security incidents in accordance with the banks risk appetite.
  • Participate in post incident analysis, identify control weaknesses and include remediations in planning and scoping activities, support junior team members in analysis, identification and remedial actions as required.
  • Automate repeatable tasks, by building technical control capabilities and maturing their operational effectiveness.
  • Develop detailed information security designs, incorporating multiple systems into a unified outcome, within strict deadlines and with complex client requirements, ensuring that designs are practical and align to architectural requirements. Strategy :
  • Propose policies, processes and systems for implementation, drive implementation once approved in order to facilitate the management of risks.
  • Identify new or changed information security developments, trends and products, share with team to continually develop information security knowledge and expertise, optimise information security operations and drive efficiencies.
  • Act as a trusted adviser for technology across the Group and stakeholders.
  • Design and implement quarterly operational plans and the practical application thereof, and ensure that operational plans are clearly articulated and are understood.
  • Participate and provide input to group-wide operational plans and the practical application thereof, and ensure that operational plans are clearly articulated and are understood. Financial Management :
  • Adhere to Group minimum standards for vendor selection and participate in the selection of the most appropriate vendor with required expertise.
  • Evaluate and optimise Information Security spend on a regular basis, exercising financial prudence and maximising value where possible
  • Advise and motivate for required targets and budgets to support the setting of reliable and realistic targets and budgets. People :
  • Provide ad-hoc advice, assistance, coaching and / or mentoring to team mates so that their developmental needs are identified and met.
  • Represent the business area in various projects and working groups to positively influence the project outcomes, considering information security goals and requirements.
  • Build and develop relationships across the different internal IT teams and with various stakeholders so that the business unit remains involved and aware of internal developments.
  • Provide ad-hoc advice, and technical assistance to non information security teams Working Conditions
  • Night work may be required
  • Africa Region travel may be required Preferred Qualification and Experience Qualifications :
  • First Degree - Information Technology
  • CISSP, SABSA F1 / F2 / A1 / A3 Experience :
  • Proven experience in technical and business management - 1-2 years.
  • Experience in risk management - 1-2 years
  • Proven experience in software and integration development, databases, operating systems, and network security controls - 5-7 years.
  • Total number of years’ experience : 7 years. Knowledge / Technical Skills / Expertise IT Knowledge

  • Possesses a deep and broad knowledge base in fundamental IT technical skill sets. Stays informed on emerging trends.
  • Knowledge and understanding of types of services agreements (operational level agreements and service level agreements), the negotiation of service levels, service monitoring and business engagement around appropriate service levels.
  • Knowledge and ability to analyse the design and application of software on one or more platforms and provide recommendations for addressing errors and to promote system enhancement.
  • Knowledge and understanding of IT diagnostic tools including the replication of errors in test environments.
  • Report this job

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Application form