Manager: Infrastructure Security

Purpose

We are looking for a Manager of Infrastructure Security who will join our Information Security team in our Cape Town office.  Under the direction of CISO, you will manage, direct, expand, and mature our cloud and network security program. This position drives the development, deployment, and maturity of our Cloud Security production operations, tools, and services. This position also manages the daily activities of a highly technical staff of security engineers that are focused on all aspects of Cloud and Network Security program. You are a hands-on manager, who is driven and inspired by a culture of continuous security improvement, adoption, and best practices.

We are actively pursuing modern technologies, tools, and approaches. You will play a valued hands-on role focused on cloud security activities. You will be part of a collaborative team that fosters a learning and knowledge-sharing environment, enthusiastically pursues best practices, and continuously evolves our tech stack and our approach to security. This is a great opportunity to join a winning team to participate in the delivery and growth of Clickatell worldwide.

We Do The Right Things

Responsibilities of the Role

Manage the Infrastructure Security team and help define the long-term vision for the organization. Own and manage the cross-functional roadmap for Infrastructure Security in partnership with the organization. Manage security services in the hybrid environment (AWS and on-premises). Work with Infrastructure, Data, Software Development, and Governance Risk and Compliance teams to identify gaps, scope requirements, prioritize and execute key deliverables. Collaborate to develop secure products, systems, and solutions that serve the business while leveraging industry best practices in data security, cloud security, authentication/authorization, intrusion detection, and vulnerability management Keep tabs on the changing business landscape and product roadmap to anticipate potential risks and strategically align future projects Develop and manage cloud services and on premises security controls and facilitate the implementation. Compile metrics for CISO and Technology Operations review. Identify areas to implement continuous improvement of security and operational functions to support Information Security Office initiatives. Coordinate and track security related activities for the on-prem network environments. Manage and coordinate Vulnerability and Patch Management programs. Manage security incident response activities in the Cloud. Lead, manage and coordinate activities in Cloud Security maturity. Track/Mitigate security related risks as reported by internal and external stakeholders. Vendor management and engagements related to security services (AWS, Alert Logic, etc.) Manage the Cloud and on-premises security team in achieving established goals and departmental objectives. Review logs and alert for security related events in the estate and take appropriate action to mitigate. Represent Security in the Change Approval Board processes. Other Information Security and Technology Operations related tasks.

We Are On A Learning Journey

Requirements of the Role

Industry accreditation: AWS Solutions Architect, AWS Security, CISSP, CISM, CEH or other information security certifications are an asset. Work Experience 5+ years of of experience working on enterprise cloud services deployments (SaaS, PaaS, IaaS) and understand security challenges involved in deploying Cloud Applications and server virtualization/container orchestration technologies. 5+ years of of experience with AWS Services and data security. Demonstrated ability to lead technical teams in a highly complex and matrixed organization. Ability to lead through influence, excellence and example is essential to success. Experience in Frameworks such as OWASP, SOC2, NIST, ISO2700, GDPR would be an advantage. Significant experience across cloud and data security, especially in understanding modern challenges and corresponding solutions. Proven experience in working closely with Data and Software Development teams Knowledge and Abilities Deep technical understanding of data security, security vulnerabilities and risks, as well as countermeasures and compensating controls. Understanding of security frameworks such as ISO27001, SOC2, CIS, and NIST CSF. Ability to prioritize and successfully complete tasks while working under pressure in a fast-paced environment. Strong critical thinking, analytical and problem-solving skills. Exceptional interpersonal and communication skills.