Function Specialist: Info & Cyber Mngt

Overview

• Function Specialist:
  Info & Cyber Mngt
• Operating Division:
  Transnet Rail Infrastructure Manager (TRIM)
• Employee Group:
  Permanent
• Department: SP-ICT-Info & Cyber Management-PKT
• Location:
  
  Parktown
• Reporting To:
  Head:
  Governance, Risk, Compliance & Cyb
• Grade: D
• Reference: req
  4277

The closing date is on . It is the responsibility of the applicant to ensure that HR has received the application before the closing date of the advertisement.

To ensure that Transnet Freight Rail’s (TFR) business environment is safe, secure, reliable and resilient through provision of capabilities designed to protect Technology, Information assets and Infrastructure resources by:
Ensuring strategic alignment of information and cyber security in support of business objectives; ensuring availability, confidentiality, integrity, auditability of the TFR’s information systems; ensuring conformity of applicable laws, regulations and standards as well as preventing non repudiation of computer based activities mechanisms. Assisting the business with the selection and implementation of these solutions.

• Strategy Leads the design, development and implementation of Information and cyber Security Strategy for TFR Operations Technology and Business Systems, Platforms and Infrastructure environment in line with Group ICT Information and Cyber Security Strategy
• Lead the design, establishment and implementation of Cyber Security Operations Centre Capabilities designed to ensure monitoring of TFR environment and responsiveness to threats and vulnerabilities identified before an incident occurs.
• Align and oversee that all security requirements are met during the IT Strategic Roadmap implementation.
• Ensure IT strategies and roadmap initiatives support and are aligned to the security frameworks and policies in place.
• Ensure enterprise Information Security Architecture is aligned with IT Strategic Roadmap.
• Develop and communicate security strategies and plans to executive team, staff, partners, customers, and stakeholders
• Information and Cyber Security Management
• Design, Develop and implement information and cyber security framework that adequately addresses the key cyber pillars of Identify, Protect, Detect, Respond and Recover in line with best practice frameworks such as COBIT, NIST, ISO and SABSA / TOGAF.
• Oversee and direct information and cyber security activities to execute the information security programme.
• Lead the TFR IT security team: plan, organize, assign, supervise and monitor the work of team members
• Ensure that the rules of use for information systems and the administrative procedures for information systems comply with the TFR’s information security policies.
• Ensure that services provided by other enterprises, including outsourced providers are consistent with established information security policies.
• Define and maintain the security frameworks for Information Security Architecture, Information Security Management and Information Security Technical Operations.
• Establish constant vigilance over critical information assets.
• Manage the administration of all computer security systems and their corresponding or associated software, including firewalls, intrusion detection systems, cryptography systems, and anti-virus software.
• Manage the administration of the facility’s security systems and their corresponding equipment or software, including fire alarms, locks, intruder detection systems, sprinkler systems, and anti-theft measures.
• Support CIO by managing the IT security architecture through effective information security management and technical security operations functions.
• Establish, control and manage effective mechanisms for resolving all Information security breaches and challenges for TFR.
• Ensure effective management of access to information.
• Ensure effective information security architectures supported by management and technical operations functions.
• Ensure a formal set of processes are in place by which TFR can identify various IT security concerns, gaps and remedial actions to ensure the security of IT operations.
• Define and communicate corporate plans, procedures, policies, and standards for the…