Operational Planning and Project Leadership

Support the development and ongoing update(s) of CPUT’s cybersecurity strategy, aligning it with institutional goals and digital transformation initiatives. Lead security-related projects, such as network upgrades, security audits and implementation of new security technologies. Collaborate with other CTS departments to integrate security requirements into system development and technology rollouts.

Network Security Oversight

Design, implement, and manage security measures to protect CPUT’s network infrastructure. Supervise network security operations, including firewall management, intrusion detection/prevention systems (IDS/IPS), and secure VPN access. Regularly assess and update security protocols and tools to meet evolving cybersecurity challenges.

Threat Monitoring and Incident Response

Oversee continuous monitoring for potential security threats, unauthorized access, and unusual network activity. Lead the response to security incidents, including containment, eradication and recovery, following best practices. Conduct root cause analyses of incidents to identify vulnerabilities and recommend improvements.

Policy Compliance and Documentation

Ensure adherence to regulatory requirements, including POPIA, by implementing compliant security policies and procedures. Maintain detailed documentation on security protocols, configurations, and incident responses. Collaborate with the compliance team to perform regular audits and security assessments.

Team Supervision and Development

Supervise a team of network security specialists, providing guidance, support, and performance reviews. Develop and coordinate training programs to enhance the team’s technical skills and knowledge of emerging security threats. Foster a proactive security culture and promote awareness of security best practices.

Risk Management and Vulnerability Assessment

Conduct regular vulnerability assessments and penetration tests to identify security weaknesses. Develop and enforce strategies for risk mitigation, prioritizing critical areas within the university’s network. Prepare regular reports on security risks, incidents, and mitigation efforts for management review.