Note! This job has been aggregated through external sources, the Apply link will take you to the company's website.

Information Security Manager Job in South Africa
Ten Group , South Africa

Never pay for job application, test/interview.
Safe Job Search | EEO Laws in South Africa
Experience
1 Year
Salary
0 - 0
Job Type
Job Shift
Job Category
Requires Traveling
No
Career Level
Telecommute
No
Qualification
As mentioned in job details
Total Vacancies
1 Job
Posted on
Apr 3, 2021
Last Date
Jul 3, 2021
Location(s)

Job Description

We are looking for a bright and talented IT Security Manager, who has experience managing information security in a fast paced, innovative business.

The Information Security manager will be responsible for managing and growing the Information Security function at Ten, working with business, product and development teams to implement and maintain security and controls inline with our information security policies and information security compliance requirements.

You will help lead, develop and deliver the information security strategy and framework, including maturing the information security capability and reducing exposure to Cyber security risks for on-premise and cloud environments and systems.

You will lead on information risk management approach and activities, including:

  • Performing information security risk assessments
  • Maintaining the information security risk register
  • Undertaking information security audits

You will be responsible for educating and communicating information security related material to the business and for providing motivation, leadership and development of Cyber Security champions throughout the global business.

To be successful in this role you should ideally come from a technical background with a good technical understanding of technical solutions, including on premise and cloud-based solutions, as well as experience in managing information security deliverables within financial or credit card processing environment (PCI-DSS).

You must be adaptable, able to work under pressure and have experience working in fast paced, innovative working environments.

Who We Are

At Ten our goal is simple, to become the most trusted service business in the world.

We are already the global market leader for lifestyle management and concierge services, providing services from a 22 strong global office network with over 800 employees. We use our expertise, technology and buying power to grant our members direct access to the best travel, live entertainment, dining and luxury retail services. We also work closely with suppliers to provide exclusively negotiated benefits and employee loyalty schemes.

We deliver our service through a combination of Ten’s proprietary, unique technology-enabled platform and the expertise of our highly trained lifestyle managers. Ten is growing quickly and has ambitious plans to keep innovating, inspiring and to continue to improve the lives of millions of members. Will you help take us there?

Key Responsibilities

  • Assist with the definition of the Cyber Security Strategy
  • Develop and mature an Information Security Management System aligned to legal and regulatory standards
  • Manage security control and risk frameworks to mitigate against identified or perceived risks to the business
  • Manage our outsourced SOC provider
  • Manage information security audits including PCI-DSS, SOC2, GDPR
  • Act as the subject matter expert to provide security consultancy and requirements to new IT projects and business change/led initiatives
  • Manage and co-ordinate incident response processes and work collaboratively with the IT and Security teams to contain, respond and resolve security incidents/breaches
  • Own the Security Incident and Event Management capability for Ten
  • Developing training material and content and delivering training to existing staff and new staff to raise awareness of the latest threats, how to identify them and how to respond
  • Be a point of escalation for IT security matters
  • Manage and co-ordinate regular security group meetings and actively engage with stakeholders, chair the Information Steering committee
  • Responsible for documentation of high-quality policies, procedures and standards that meet legal, regulatory and compliance requirements but also are tailored to the culture of the business

Requirements

  • A good understanding of internet communications protocols, including knowledge of how these protocols are commonly secured
  • In depth understanding of networking concepts and application of network security
  • An understanding of multiple operating systems
  • An understanding of cloud platforms and cloud security concepts (ideally AWS and O365)
  • An understanding of cryptographic standards and protocols (e.g. IPsec, SSL/TLS)
  • Awareness of cyber-attack techniques and how protective monitoring systems can be used for detection, mitigation, remediation and protection
  • A good understanding of well-known standards such as ISO27001, GDPR, PCI DSS, as well as frameworks such as Cyber Essentials, CIS and NIST
  • Good operational experience in risk assessment/analysis methodologies
  • Good understanding of data privacy laws such as GDPR and ability carry out compliance audits as required by these laws
  • Industry recognised qualifications such CISA, CISM, CISSP or any SANS certifications

Competencies required

  • Highly motivated with a passion for technology and technical detail
  • Influencing people within the business is key to success for the Information Security Manager being skilful in this is essential
  • Excellent communication presentation skills
  • Solution-focused and committed to high quality delivery
  • Service oriented with a keen interest in technology
  • Organised individual who is a good communicator and can discuss technical subjects in layman terms
  • Graduate educational standard preferred or equivalent workplace experience
  • Enthusiastic, proactive with accuracy and attention to detail with the ability to follow documented processes
  • Good time management/planning
  • Natural team player
  • Challenging, inquisitive and straight talkin

Benefits

Our people are at the heart of the business and we have a culture of recognition and reward both through regular appraisals but also annual Extra Mile Awards where we celebrate those who have gone that extra mile in their role. We also encourage all our staff to incorporate their aspirations and interests into their career at Ten and we are there every step of the way in supporting development.

All our employees also enjoy a range of benefits regardless of where they are based. Not only do we offer a remote work option, but employees also get 3 extra days of annual leave in their third year and an extra month of every 5 years. In line with these milestone lengths of service, we also operate a Ten Loyalty Reward program this is a bonus (although we prefer to refer to this as ‘extra spending money’) that is awarded once these milestones are reached. The thinking behind the program is that not only does it recognise and reward commitment and loyalty to the business, but it can also be used to fund the adventures to be had during sabbaticals this is the main intention and driving force behind the program. We want to give our people extra spending money so that they can truly enjoy their sabbaticals.

Other benefits that Ten offer, specific to the South Africa office, range between access to ICAS Employee Health and Wellness (EHWP) services which are confidential and free for all employees to use, all the way through to various discounts on both travel and entertainment events (the latter is of course available regardless of location). There are also lots of social events throughout the year as well as a break-out room where employees can relax (or, if they wish, play one of the numerous games we provide!) whilst enjoying our latest fruit drop.

We also offer a company contribution towards medical aid, transport home for those working a late shift (applies to those who don't have a car) and, one of our more popular perks, working holiday opportunities with the ability to work from any of our 20+ offices without taking annual leave.

Preference will be given to candidates in alignment with the employment equity plan of the organization

Ten works with a small Preferred Suppliers List currently, focused on specialists in each location. Please note we are not accepting any further agencies onto our PSL at this time.

Job Specification

Ten Group

Information Technology and Services - London, United Kingdom