It Security Auditor

Our client has an opportunity available for an IT Security Auditor based in Johannesburg.

Requirements:

1. Computer science or a similar field bachelor's degree is compulsory.
2. Five or more years of experience in jobs involving cybersecurity.
3. Working knowledge of security standards including PCI DSS, SOC 2, and HIPAA.
4. Working knowledge of Windows PCs, Windows Servers, Linux Servers, switches, routers, firewalls, access points, and hardening standards.
5. Expertise with Web filters, IPS / IDS systems, SIEM, and endpoint security programs.
6. Proven administrative skills for Office, including security for SharePoint and Email.
7. Understanding of GPOs and Active Directory.
8. Knowledge of cryptographic principles.
9. Understanding of physical security controls, such as security cameras and access control systems.
10. CISSP, CISM or CISA certificates preferred.

KPAs:

1. Conduct internal audits of the administrative, physical, and logical security controls.
2. Coordinate reaction to security incidents.
3. Take the initiative in developing and updating the business continuity plan.
4. Create, implement, track, and maintain compliance with all applicable security regulations, including HIPAA, SOC 2, and PCI DSS.
5. Conduct risk analyses.
6. Continue the program for security awareness.
7. Offer security advice and recommendations.
8. Keep track of security procedures and regulations.
9. Organize external audits.