Sign up with GoogleLilliantfg
New Member
- Joined
- Mar 25, 2015
- Messages
- 8
The Foschini Group (TFG) is looking to hire an Information Security Analyst to join our Information Security team
to safeguard information system assets by identifying and solving potential and actual security problems. As one of South Africa’s leading independent retailers, TFG operates 18 retail brands and various corporate
service divisions. TFG has built the business through innovative differentiation, new business development, acquisition and expansion, and is dedicated to the development and implementation of world-class IT systems and infrastructure.
Job Description
In this role, you would be responsible for safeguarding information system assets. You would be expected to
understand how IT is delivered to the business, and how the group systems interface with each other and are
used by stakeholders. Your work will be both within the information security team, and collaborating with other
teams delivering business critical projects.
Duties and Responsibilities
• Identify and solve potential and actual security problems;
• Perform day-to-day operational monitoring and remediation of IT security threats and vulnerabilities;
• Advise and lead on the security aspects of IT projects;
• Implement security controls and assess potential security risks within a system/application/project;
• Perform continuous threat and vulnerability management;
• Management and implementation of key information security projects;
• Gather Information on internal and external security intelligence;
• Respond to and action information security incidents;
• Select and apply, and ensure adherence to, good information security practice;
• Ensure internal and external suppliers and partners implement security to the required standard and maintain
positive relationships with vendors;
• Specify, understand and monitor the effectiveness and efficiency of IT Security controls;
• Drive action to help achieve continuous improvement.
Qualifications and Experience:
• 3–5 years Information Security experience (ideally in Retail or Financial industries);
• CISSP and/or Security + (essential to have one of these);
• SCCP (desirable);
• Data Loss Prevention, IDS, IPS and SIEM (desirable);
• Experience with security monitoring tools, network security systems, system and application vulnerability
scanning, and the full systems and application development life cycle;
• Hands-on skills and experience in implementing and configuring security systems, tools and programs;
• Experiencing in delivering Identity and Access management solutions (desirable);
• Experience in security engineering or security operations (desirable);
• Management and support of Symantec Anti-virus (desirable);
• Familiar with Encryption Technologies, such as full disk encryption (desirable).
Knowledge, Skills and Attributes:
• Able to quickly assimilate knowledge from outside own area of expertise;
• Ability to identify and resolve technical security threats and vulnerabilities, and implement associated controls across various technology stacks;
• Able to make quick but informed decisions under pressure;
• Innovative, critical thinking and problem solving skills;
• Ability to work both independently and in a team-oriented, collaborative environment;
• Explain and document what controls are needed and why, and identify pragmatic alternatives to mitigate threats and risks where time and cost constraints so dictate;
• Able to identify security weaknesses and take ownership of tasks;
• Able to effectively prioritise and execute tasks in a high-pressure environment;
• Good communication and organisational skills with a strong ability to influence, build relationships with, and negotiate with colleagues (both IT technical and and non-technical, including project teams, managers, and business stakeholders), suppliers, and external partners:
• Able to adapt to shifting priorities, demands and timelines.
Strong ability to articulate infomation security risk to technical and non-technical audiences.
To apply for this position please visit our careers portal-www.tfglimited.co.za
Preference will be given, but not limited to, candidates from designated groups in terms of the Employment Equity Act.
to safeguard information system assets by identifying and solving potential and actual security problems. As one of South Africa’s leading independent retailers, TFG operates 18 retail brands and various corporate
service divisions. TFG has built the business through innovative differentiation, new business development, acquisition and expansion, and is dedicated to the development and implementation of world-class IT systems and infrastructure.
Job Description
In this role, you would be responsible for safeguarding information system assets. You would be expected to
understand how IT is delivered to the business, and how the group systems interface with each other and are
used by stakeholders. Your work will be both within the information security team, and collaborating with other
teams delivering business critical projects.
Duties and Responsibilities
• Identify and solve potential and actual security problems;
• Perform day-to-day operational monitoring and remediation of IT security threats and vulnerabilities;
• Advise and lead on the security aspects of IT projects;
• Implement security controls and assess potential security risks within a system/application/project;
• Perform continuous threat and vulnerability management;
• Management and implementation of key information security projects;
• Gather Information on internal and external security intelligence;
• Respond to and action information security incidents;
• Select and apply, and ensure adherence to, good information security practice;
• Ensure internal and external suppliers and partners implement security to the required standard and maintain
positive relationships with vendors;
• Specify, understand and monitor the effectiveness and efficiency of IT Security controls;
• Drive action to help achieve continuous improvement.
Qualifications and Experience:
• 3–5 years Information Security experience (ideally in Retail or Financial industries);
• CISSP and/or Security + (essential to have one of these);
• SCCP (desirable);
• Data Loss Prevention, IDS, IPS and SIEM (desirable);
• Experience with security monitoring tools, network security systems, system and application vulnerability
scanning, and the full systems and application development life cycle;
• Hands-on skills and experience in implementing and configuring security systems, tools and programs;
• Experiencing in delivering Identity and Access management solutions (desirable);
• Experience in security engineering or security operations (desirable);
• Management and support of Symantec Anti-virus (desirable);
• Familiar with Encryption Technologies, such as full disk encryption (desirable).
Knowledge, Skills and Attributes:
• Able to quickly assimilate knowledge from outside own area of expertise;
• Ability to identify and resolve technical security threats and vulnerabilities, and implement associated controls across various technology stacks;
• Able to make quick but informed decisions under pressure;
• Innovative, critical thinking and problem solving skills;
• Ability to work both independently and in a team-oriented, collaborative environment;
• Explain and document what controls are needed and why, and identify pragmatic alternatives to mitigate threats and risks where time and cost constraints so dictate;
• Able to identify security weaknesses and take ownership of tasks;
• Able to effectively prioritise and execute tasks in a high-pressure environment;
• Good communication and organisational skills with a strong ability to influence, build relationships with, and negotiate with colleagues (both IT technical and and non-technical, including project teams, managers, and business stakeholders), suppliers, and external partners:
• Able to adapt to shifting priorities, demands and timelines.
Strong ability to articulate infomation security risk to technical and non-technical audiences.
To apply for this position please visit our careers portal-www.tfglimited.co.za
Preference will be given, but not limited to, candidates from designated groups in terms of the Employment Equity Act.
Last edited:
