Monitoring – Conduct continuous scanning and monitoring of all IT cyber security domains (i.e. networks, firewalls, anti-virus, mobile devices, patch management). Ensure regular updating of network anti-virus, spyware, malware and greyware software. Monitor the governance aspects related to IT Security to ensure that required standards are maintained. Perform threat and vulnerability management monitoring on a continuous basis. Monitor policies, processes, and procedures related to ICT Security. Assist with analysing and assessing potential security risks, developing plans to deal with such incidents by putting measures in place such as firewalls and encryption, monitoring and auditing systems for abnormal activity. Make recommendations based on various monitoring outputs to improve the security posture of the organization. Integrate monitoring with the Integrated Security Forum. Conduct continuous scanning and Security monitoring of all IT cyber security domains. Monitor for the governance aspects related to the Security within ATNS to ensure the standards are maintained. Monitor security against policies and procedures related to ICT Security. Prepare IT security reports for Integrated Security Forum. 

Investigation & Cyber Security– Investigate security incidents/events to ensure that IT security posture remains intact. Provide support to forensic investigation as required. Operate and control the Information Security Management System (ISMS) in line with KING3 and ISO 27000. Assist with the implementation of key information security projects. Conduct information gathering on internal and external security intelligence for investigation into security incidents. Write incident reports, etc. and submit them to Security Specialist for decision-making purposes. Select, apply and ensure adherence to good information security practice. Ensure internal and external suppliers and partners implement security to the required standard and maintain positive relationships with vendors. Ensure that the Business Continuity risks related to Cyber Security are mitigated and address.

Governance – Ensure compliance to the security policy when managing security events. Comply with all IT policies, procedures and standards relating to IT Security Systems. Manage configuration and change control records with regards to IT security systems activities. Develop metrics that allow the enterprise to gauge the success of investments in security systems. Conduct and report on IT Disaster Recovery Plan (DRP) exercises in the business in respect of all IT Security Systems in order to ensure business continuity and recommend continuous improvement. Assist with the development and review of the current disaster recovery management plan. Conduct high level security.