Description
URGENT! URGENT! URGENT!
A global company based in Johannesburg is URGENTLY seeking an IT Security and e-Forensic Expert to carry out an initial independent assessment to fully review the Governance, Risk and Compliance (GRC) regime.
The IT Security and e-Forensic Expert will ensure that Internal controls are in place in terms of
- People, process, technology, statutory audit findings (internal as well as internal audit)
- Vetting procedures, use of third parties, security controls and physical security arrangements
- Legal and regulatory compliance in the event of a breach and consequences - if there is a need to capture tamper-proof forensic data that is admissible in a court of law and law enforcement agencies
- Technologies involved from end to end in terms of central banking systems, Firewalls/IPS, networks, Servers, end points, ATMs
- Review of audit logs and incident management controls and processes
- Establishment of potential collusion between internal bank staff and the perpetrators
- Ethical hacking reviews
After the initial assessment is carried out, you will be required to identify and scope technical resources needed to assess Firewalls, IPS, network security, end point security, ATM security, eForensic requirements etc.
This will then result in recommendations for remediation (both technical and process)Requirements
- Degree or equivalent with many years experience in IT Security and Forensics
- CISSP, CISM, CEH, CISA CHFI
- Expert in IT Security, including risk and continuity management, control policies procedures and standards etc
- Experience in risk assessment
- Forensics investigations and Incident Response
- Network and Internet vulnerability assessments
- Secure Architecture and Design Reviews