Technical Director, Cybersecurity - Southern Africa

at  World Vision International

With over 70 years of experience, our focus is on helping the most vulnerable children overcome poverty and experience fullness of life. We help children of all backgrounds, even in the most dangerous places, inspired by our Christian faith.
Come join our 33,000+ staff working in nearly 100 countries and share the joy of transforming vulnerable children’s life stories!
Key Responsibilities:

BUSINESS REQUIREMENTS (5%)

• Engages directly with the business to gather a full understanding of project scope and business requirements.
• Assesses business needs against security concerns and articulates issues and potential risks to management.
• Consults with other business and technical staff on potential business impacts of proposed changes to the security environment.
• Provides security-related guidance on business process.

Required Professional Experience

• Requires 10 - 15 years cyber, privacy, compliance, or risk management function or a closely related role.
• Over 10 years of experience as a senior manager or information security officer.
• Over 5 years of experience managing cyber security incident response teams. Experience designing and implementing security solutions.
• Requires in-depth knowledge of PCI-DSS, privacy laws, security standards, security best practices, and security regulations. A high proficiency level in threat management, risk management, vulnerability management, and compliance management is required.
• Effective in written and verbal communication in English
• Willingness and ability to travel domestically and internationally, as necessary

Required Education, training, license, registration and certification

• Bachelor’s degree in Computer Science, Information Systems or other related field, or equivalent work experience.
• Requires Security Certification (i.e., Certified Information Systems Security Professional (CISSP), Certified Information Security Manage (CISM), or Global Information Assurance Certification (GIAC)

Preferred Knowledge and Qualifications

• Fluent in English.
• Have strong incident and investigation management skills.
• Have strong communication skills.
• Have good planning and organising skills.
• Strategic thinker with strong influencing skills and exceptional professional credibility.
• Outstanding stakeholder management skills combined with the ability to challenge and influence in a constructive manner.
• Have proven ability to collaborate effectively and develop positive working relationships across all levels of an organisation.
• Have strong analytical skills, with the ability to gather, analyse and evaluate information and to prepare concise written reports.
• Have technical expertise on risk assessment tools and methods or the willingness to learn.
• Good understanding of the different field contexts or experience working in at least 2 different contexts (e.g. development, transitioning, fragile, conflict, humanitarian, etc.

PURPOSE OF POSITION:

Individuals working as a Technical Director, Cybersecurity oversee the planning, execution, and management of multi-faceted projects related to compliance, control assurance, risk management, security, and infrastructure/ information asset protection. They are responsible for developing and managing security across multiple IT functional areas (e.g., data, systems, network and/or Web) across the enterprise, developing and managing enterprise security services, and developing security solutions for critical and/or highly complex assignments to ensure the company’s infrastructure and information assets are protected. They work on multiple projects or programs as a team lead.
Individuals within the Cybersecurity job family plan, execute, and manage multi-faceted projects related to compliance management, risk assessment and mitigation, control assurance, business continuity and disaster recovery, and user awareness. They are focused on developing and driving security strategies, policies/standards, ensuring the effectiveness of solutions, and providing security-focused consultative services to the organization.
IT Security professionals develop, execute and manage data, system, network and internet security strategies and solutions within a business area and across the enterprise. They develop security policies and procedures such as user log-on and authentication rules, security breach escalation procedures, security auditing procedures and use of firewalls and encryption routines. To guide enforcement of security policies and procedures, they administer and monitor data security profiles on all platforms by reviewing security violation reports and investigating security exceptions. They update, maintain and document security controls and provide direct support to the business and internal IT groups. IT Security professionals evaluate and recommend security products, services and/or procedures. They also communicate and educate IT and the business about security policies and industry standards, and provide solutions for enterprise/business security issues.
IT Security professionals require strong technical, analytical, communication and consulting skills with knowledge of IT Security and related technologies. Security certifications (i.e., Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manage (CISM), Global Information Assurance Certification (GIAC) and/or other certifications) may be required.

KNOWLEDGE/QUALIFICATIONS FOR THE ROLE:

Required Professional Experience

• Requires 10 - 15 years cyber, privacy, compliance, or risk management function or a closely related role.
• Over 10 years of experience as a senior manager or information security officer.
• Over 5 years of experience managing cyber security incident response teams. Experience designing and implementing security solutions.
• Requires in-depth knowledge of PCI-DSS, privacy laws, security standards, security best practices, and security regulations. A high proficiency level in threat management, risk management, vulnerability management, and compliance management is required.
• Effective in written and verbal communication in English
• Willingness and ability to travel domestically and internationally, as necessary.

Required Education, training, license, registration and certification

• Bachelor’s degree in Computer Science, Information Systems or other related field, or equivalent work experience.
• Requires Security Certification (i.e., Certified Information Systems Security Professional (CISSP), Certified Information Security Manage (CISM), or Global Information Assurance Certification (GIAC).

Preferred Knowledge and Qualifications

• Fluent in English.
• Have strong incident and investigation management skills.
• Have strong communication skills.
• Have good planning and organising skills.
• Strategic thinker with strong influencing skills and exceptional professional credibility.
• Outstanding stakeholder management skills combined with the ability to challenge and influence in a constructive manner.
• Have proven ability to collaborate effectively and develop positive working relationships across all levels of an organisation.
• Have strong analytical skills, with the ability to gather, analyse and evaluate information and to prepare concise written reports.
• Have technical expertise on risk assessment tools and methods or the willingness to learn.
• Good understanding of the different field contexts or experience working in at least 2 different contexts (e.g. development, transitioning, fragile, conflict, humanitarian, etc.)

Applicant Types Accepted:
Local Applicants Onl