The main purpose of this position is to drive cybersecurity collaboration across the financial sector by setting up, facilitating and participating in structures (internal, inter-organisational, national, regional and international) that aim to create resilience against and ensure appropriate responses to cybersecurity incidents.

The successful candidate will be responsible for the following key performance areas:

• Drive industry collaboration in ensuring cybersecurity resilience by supporting legislation, setting up structures where appropriate or participating within national structures under the Financial Sector Regulation Act 9 of 2017 and National Cybersecurity Policy Framework (e.g. the Financial Sector Contingency Forum, Financial Sector Cyber Resilience Subcommittee, Cyber/Computer Security Incident Response Teams (CSIRTs), Cyber Response Committee and National Consumer Commission).
• Drive regional and international collaboration on cybersecurity and cyber-resilience by leading and contributing to existing and new structures (e.g. the Cyber Working Group under the Committee of Central Bank Governors in the Southern African Development Community, BRICS Rapid Information Security Channel, International Monetary Fund Cyber Resilience Centre, and cyber working groups under the Bank for International Settlements).
• Coordinate areas of the South African Reserve Bank (SARB) involved in cybersecurity (e.g. the Prudential Authority, Financial Stability Department, Business Solutions and Technology Department and National Payment System Department) in ensuring the SARB Group’s participation, alignment and support of sectoral, national, regional and international efforts.
• Position the SARB Group as a leader in financial sector collaboration and information-sharing to promote cyber-resilience.
• Develop, maintain and update the SARB Group Cyber Resilience Framework in line with collaboration efforts.
• Develop, oversee the implementation of, and ensure compliance with the SARB Group’s Cyber Security Responsible Disclosure Policy.
• Ensure the SARB Group drives and capacitates national and regional sector CSIRTs and supports international response efforts.
• Ensure appropriate state agency involvement when dealing with incidents as part of the National Incident Management Centre structure.

Job requirements

To be considered for this position, candidates must be in possession of:

• a minimum of an Honours degree (NQF 8) in Cybersecurity, Information Security, Information Technology or an equivalent qualification;
• advanced security certifications that are not product-, security area- or technology-specific (e.g. CISSP, CISM or CEH); and
• at least eight to 10 years’ experience in cybersecurity management.

Additional requirements include:

• knowledge and skill in:
• cybersecurity governance;
• cybersecurity incident and threat management;
• risk management;
• emergency/contingency management;
• general management;
• business continuity management;
• effective communication skills;
• conceptual thinking skills;
• planning and giving advice;
• building and maintaining relationships;
• impact and influence;
• a drive for results;
• negotiation skills;
• managing complexity and ambiguity;
• judgements and decision-making skills;
• interpersonal sensitivity;
• knowledge of the relevant legislation; and
• advanced computer literacy skills