Jobs in Pretoria, South Africa
Information Security Management System (Isms) Specialist
Vector Logistics Limited
It Support Specialist
Laila Kramer Consulting & Coaching
Discover more opportunities than anywhere else. Find more jobs nowProperty Investment Consultant
Igrow Wealth Investments
Yard Crewmember / Forklift Operator
Mccoy'S Building Supply
Connect with headhunters to apply for similar jobsMake-Ready Specialist - Local Dripping Springs
Greystar
Senior SDR RF Engineer Hybrid Secure Embedded Comms
Secmation
Business Development Rep – SA, Uncapped Commission
Infuse
Junior Recruiter - Grow with a Dynamic Team (Commission)
Recruitx
Senior Accountant & Finance Team Lead — Southern Africa
Onepeterson
Student Administration And Support Team Leader : Assessment & Results
Stadio Higher Education
Junior Recruiter Negotiable Salary Plus Commission
Recruitx
Assistant Team Manager: Liabilities
King Price Insurance Company Ltd
Deal-Focused Investment Analyst – Europe & Africa
Hillingdale Capital
Information Security Management System (Isms) Specialist
Job summary
A logistics and supply chain firm in Gauteng seeks an Information Security Management System (ISMS) Specialist to lead the implementation and maintenance of ISMS in alignment with ISO standards. The ideal candidate will ensure compliance with legal requirements and enhance the organization’s security posture. Key responsibilities include conducting risk assessments, providing staff training, and overseeing compliance audits. Candidates should have a degree in Information Security and over 7 years of relevant experience.
Qualifications
- Minimum of 7-10 years of experience in information security or cybersecurity, with 1-3 years in a managerial role.
- Lead Implementer required; preferred ISO.
- Familiarity with data protection laws and ISO standards.
Responsibilities
- Lead the design and implementation of ISMS aligned with ISO / IEC.
- Conduct risk assessments and develop treatment plans.
- Ensure compliance with ISO / IEC and industry standards.
- Provide training on information security best practices.
- Assist in incident response and management.
Skills
Education
Tools
Information Security Management System (ISMS) Specialist
Employment Type: Permanent | Location: Midrand
We are a Supply Chain and Sales & Merchandising partner adding value to your business through a fully integrated, temperature-controlled network in Southern Africa.
But we are also more than that.
We are people serving people.
While we boast the best in tech and infrastructure, our people are our greatest resource.
With our skilled, curious, can-do people at the forefront, our assets become your assets, our service your solutions.
Vector's vehicle fleet includes a food industry first in 'multi-temperature' vehicles enabling the company to service business across frozen, chilled and ambient temperature zones on a single delivery.
Information Security Management System (ISMS) Specialist is responsible for the end-to-end implementation, maintenance, and continuous improvement of the Information Security Management System (ISMS) in accordance with ISO / IEC standards.
The incumbent will play a pivotal role in ensuring the confidentiality, integrity, and availability of our information assets, while also ensuring compliance with legal and regulatory requirements.
Lead the design, implementation, and continuous improvement of an ISMS aligned with ISO / IEC and other relevant frameworks (e.g., NIST, POPIA, CIS, CSA etc.).
Develop, implement, and maintain information security policies, procedures, and guidelines.
Assess existing information security practices and recommend improvements.
Ensure the organization's ISMS aligns with business needs, regulatory requirements, and industry best practices.
Perform risk assessments to identify potential security risks to the organization's information assets in alignment to ISO.
Develop risk treatment plans and assist in the implementation of risk mitigation strategies.
Conduct ongoing risk assessments and audits to ensure the effectiveness of the ISMS.
Ensure compliance with ISO / IEC and other industry standards and regulations.
Prepare the organization for certification audits and support the audit process.
Coordinate with auditors and certification bodies.
Maintain records and documentation to ensure traceability and compliance with ISMS requirements.
Provide training to staff and management on information security best practices, policies, and compliance requirements.
Promote a culture of information security awareness across the organization.
Support the creation of an internal security awareness program.
Assist in the development and testing of incident response plans.
Provide guidance and support in handling information security incidents.
Ensure incidents are documented and reported in accordance with regulatory and contractual obligations and assist in post-incident analysis to determine the cause and recommend preventive actions.
Define and monitor ISMS-related KPIs and metrics.
Monitor and report on the performance of the ISMS, identifying areas for improvement.
Monitor compliance with security policies and procedures.
Lead regular internal audits to assess the effectiveness of the ISMS.
Recommend and implement improvements based on audit findings, risk assessments, and evolving industry practices.
Keep up-to-date with emerging threats, vulnerabilities, and regulatory changes.
Assess and monitor third-party vendors and service providers for information security compliance.
Assist in the integration of ISMS controls into third-party contracts and SLAs.
This role plays a critical role in managing and maintaining relationships with both internal and external stakeholders.
These interactions are essential for ensuring the organization's security posture is robust and aligned with its strategic objectives.
Bachelor's Degree in information security, Computer Science, Information Technology, or a related field.
Lead Implementer required; preferred ISO.
Lead Auditor, CISM, CISA.
Minimum of 7-10 years of experience in information security or cybersecurity, with 1-3 years in a managerial role.
Certification projects and maintenance.
Familiarity with data protection laws, industry regulations, and tools such as Microsoft Sentinel, CyberReason, and Microsoft Defender.
NIST, CIS Controls, COBIT, ITIL, POPIA, and the Cybercrimes Act.
Strategic Thinking – align security strategies with business objectives.
Technical Expertise – deep understanding of security frameworks, threat analysis, and mitigation.
People Management – build and lead cross-functional teams.
Decision-Making and Judgment – balance immediate needs with long-term goals.
Collaboration and Communication – engage stakeholders at all levels.
Problem-Solving and Analytical Skills – resolve complex security challenges.
Compliance and Regulatory Knowledge – ensure ongoing adherence to laws and standards.
Adaptability and Resilience – thrive in a changing security landscape.
Ethical Integrity – uphold the highest ethical standards.
We look forward to hearing from you!
* The salary benchmark is based on the target salaries of market leaders in their relevant sectors. It is intended to serve as a guide to help Premium Members assess open positions and to help in salary negotiations. The salary benchmark is not provided directly by the company, which could be significantly higher or lower.