NATIONAL CONSUMER COMMISSION (NCC) RE-ADVERTISEMENT OF THE POST OF SYSTEMS ADMINISTRATOR: SECURITY Job Reference : NCC01/4/23 Post : SYSTEMS ADMINISTRATOR: SECURITY - PERMANENT Salary : R396 751 – R467 343 BASIC SALARY PER ANNUM Centre : Pretoria, Groenkloof Purpose of the job To implement, maintain, and manage the NCC Information Security systems, processes, and infrastructure by ensuring compliance with relevant Legislation, internal policies, and international best practice standards Key Responsibilities 1. Management of Information Security Operations 1.1 Ensure malware & vulnerability management is performed: • Patch Management – ensure the NCC ICT systems and infrastructure are patched monthly or in line with OEM schedules • Ensure vulnerability scans and vulnerability remediation is performed. • Ensure all NCC devices have antimalware software installed and reports are reviewed regularly 1.2 Ensure improvement of ICT general controls by adhering to the clean audit plan within the area of responsibility 1.3 Audit/ assess ICT resources to ensure access and security requirements are maintained at the highest level of security. 1.4 Ensure perimeter network security by ensuring the baseline is established, technology solutions are managed, changes are documented, and logs and reports are reviewed regularly. 2 Provide end-user & desktop support 2.1 Facilitate and present information security awareness campaigns. 2.2 Attended to logged support tickets and adhere to OLA/SLA requirements. 2.3 Timeous escalation of support tickets where external support or management intervention is required. 2.4 Train fellow ICT co-workers on new ICT trends/ findings/ solutions. 3. ICT Backend Infrastructure Management 3.1 Ensure service uptime is in line with the SLAs/OLAs in the area of responsibility. 3.2 Collaborate with other NCC ICT Administrators to ensure systems and infrastructure is performing optimally and that technical issues are attended to and resolved in the shortest possible time. 3.3 Determine future network, hardware, and software requirements 3.4 Stand in for other ICT Infrastructure Administrators when they are not available. 4. Secure the NCC ICT Assets. 4.1 Drive the process of collaborating with other ICT Administrators to ensure an inventory of all hardware assets is maintained and reviewed regularly. 4.2 Drive the process of collaborating with other ICT Administrators to ensure an inventory of all software assets is maintained and reviewed regularly. 4.3 Ensure the disposal of ICT assets is in line with the NCC policies and conforms to applicable legislation to prevent data breaches that may occur during the disposal of assets. 5. Provide Third-party Management 5.1 Ensure that third-party access to the NCC network is controlled and is in line with third-party access policies. 5.2 Review weekly/monthly health check reports from third parties. 5.3 Oversee/ verify the installation of new components or upgrade of existing components to ensure installations conform to security requirements and the NCC policies. 5.4 Identify and report risks associated with third parties. 5.5 Participate in third-party audits/ risks assessment. 6. Management of the Information Security Framework 6.1 Participate in the development, review, and management of Information Security Plans 6.2 Participate in the development of ICT policies and procedures 6.3 Participate in the enforcement of ICT Security Policies by ensuring systems are configured in line with the policy provisions. 6.4 Ensure compliance with data privacy and related Legislation, such as POPIA 6.5 Ensure compliance with Information Security best practice standards such as ISO27001/2/CIS/NIST, etc. 6.6 Advise in the establishment of a secure network architecture. 7. Adhere to ICT change control processes 7.1 Ensure change control processes are followed prior to the implementation of any IT-related system or infrastructure changes. 7.2 Record/ log change requests. 7.3 Review and test changes 7.4 Provide change control implementation reports. 8. Ensure ICT Service Continuity 8.1 Participate in the development, management, and review of ICT Disaster Recovery Plans 8.2 Collaborate with other ICT administrators to verify that data backup jobs are functioning optimally. 8.3 Backup systems and infrastructure in the area of responsibility (i.e. Firewall, etc.) 8.4 Ensure data backups and disaster recovery processes are tested in line with the ICT policies and procedures. Minimum Qualifications: National Diploma/ B. Degree: Information Technology/ Computer Science/ Information Systems or equivalent qualification and EB Driver’s Licence Minimum Experience : Minimum: 3 years of Information Technology experience in private or public sector environment. Added advantage: A minimum of 2 years experience as a systems administrator: security/ Information Security Officer or equivalent. Practical experience in implementing ISO27001/ NIST/ CIS. Experience in hyper-converged and cloud technology, preferably O365, Azure, VMWare and HP SimpliVity or equivalent. A minimum of 1 year experience in end-user and desktop support Minimum Training: Minimum of one (1) Information Security Certification such as Security+/ ISO27001/2/CISA/CISM/CISSP/Microsoft Security Certification or equivalent. Added advantage: Certified in at least one of the following areas • MCSE/ MCSA or equivalent Microsoft Server Infrastructure training. • ITIL certification (ITIL v3 Foundation as a minimum) • Cobit/ CGEIT Please apply by submitting an application letter, and attach a Curriculum Vitae, copies of qualifications ( and matric), certificates and ID ( or other supporting documents) quoting the relevant reference number to the Director: Human Resources, 01 Dr Lategan Road, Groenkloof, Pretoria, 0027 . Applications must be submitted as one attachment to the following email address, recruitment@thencc.org.za or alternatively post your application to the following address: PO Box 36628, Menlo Park, 0101 Candidates that applied previously are welcome to re-apply. For enquiries regarding the advertisement post, please contact Ms Mapheto at 012 428 7742 or Mr. Makhuvha at 012 428 7731 Failure to follow the above instructions will lead to the application being disqualified. The successful candidate will be subjected to personnel suitability checks, criminal record, qualification and employment reference checks It is the responsibility of the applicants with foreign qualifications to ensure that their qualifications are verified by SAQA The NCC is committed to Employment Equity practices, preference will be given to members of the underrepresented groups to achieve the objectives of Employment Equity CLOSING DATE: 02 MAY 2023. APPLICATIONS RECEIVED AFTER THE CLOSING DATE WILL NOT BE CONSIDERED.
Comments are closed.
|