Information Security Team Manager

Position Description:

We are seeking an Information Security Team Manager to join our Information Security team and ensure that the tactical security measures for our infrastructure have the highest level of security.

With a robust strategy focusing on People, Process and Technology, we believe that our culture and the quality of our people are our greatest strengths. As such, we need to employ top talent to support our key business functions. We value our employees by enriching and making their lives simpler, more secure, and enjoyable.

TFG’s IT division provides innovative, strategic and cost-effective ICT solutions and professional services to TFG and its subsidiaries. Working for TFG means; working with highly talented professional individuals, who are passionate about collaboration, creativity and working towards successful customer service.

The successful candidate can enjoy the following benefits:

• Flexibility (Hybrid work options)
• Free coffee
• Free parking
• Competitive remuneration
• Performance based incentives (Bonus)
• Staff discount (up to 33%)
• Retirement and Life cover benefits
• Health and Lifestyle rewards
• Growth opportunities supported by phenomenal training options
• Coaching and mentorship provided by leading practitioners

The Key Performance Areas of this role will be as follows:

1. People Management

Responsible for managing a team of CyberSecurity analysts within the Cybersecurity Intelligence Centre (CIC). Indirectly engage with the Cybersecurity management team, Senior and Executive managers across the TFG Group.

2. Incident Management

• Responsible for identifying, developing, and ensuring Cybersecurity incident response readiness by working actively with technical teams, Business, and external vendors.
• Responsible for the monitoring of security events to alert, detect, analyse, and report on potential security threats and incidents.
• Responsible for the containment, eradication, and recovery activities in response to incidents and threats
• Responsible for post incident review meetings with all involved stakeholders to review lessons learnt and incident response for continuous improvement

3. External Domain Name System (DNS) Management

Responsible for the management of TFG’s publicly accessible domains including, DNS Security, DNS vendor management, DNS Security Extensions (DNSSEC), administration and governance

4. Email Security

Responsible for the protection of the TFG email domains against threats such as email spoofing, Malware and Phishing attacks.

5. Third-party Vendor Management

Manage TFG’s third party vendors which requires both a technical understanding of the solution being offered, integration with the TFG environment, and the contractual requirements to ensure on-going support is delivered to TFG.

6. Manage Cybersecurity Audit Findings

Responsible for co-ordinating and managing Cybersecurity audit findings as well as engaging with technical teams to track and remediate their findings.

Requirements:

• Relevant degree or advanced diploma in Computer Science, Information Systems, Business or related field, or equivalent combination of education/experience.
• One or more certifications in: Security+, AWS Certifications, Microsoft Certifications, Google Certifications, Azure, CompTIA Pentest+, EC-Council CEH certification, ITIL Foundation and/or Practioner
• Must have 4-6 years’ experience in a Cybersecurity related roles; Security and Technical Services experience required.
• At least have a minimum of 7-10 years relevant IT Experience.
• Experience with Active Directory, AWS, Azure, GCP, Microsoft Defender, Symantec Endpoint Protection, MS Sentinel, FortiAnalyzer, MS MDM, Mimecast is required.

Competencies and behaviours for success:

• Identifies with TFG’s values
• Drive for self-development
• Communicates well
• Works independently
• Takes accountability
• Offers innovative ideas
• Self-motivated to achieve goals
• Be an agent of change in the risk management mission
• Collaborative at heart
• Problem solver and a critical thinker
• An adaptive and resilient mindset

Preference will be given, but not limited to candidates from designated groups in terms of the Employment Equity Act.