Operation Technology – Cyber Security Manager Jobs at Anglo Gold Ashanti South Africa

Vacancy                     :           Manager OT Cyber Security

Department              :           Digital Technology

Location                     :           Corporate Office, Johannesburg

Your challenge as the OT Cyber Security Manager

As the OT Cyber Security Manager, you will work closely with the relevant IT & OT Technical teams and the various risk teams and report directly to the VP for Cyber Safety. You will be challenged to improve the overall visibility of our global OT operations in line with best practice cyber safety and security measures.

Qualifications and Experience:

• Deep knowledge and Experience of ICS / OT deployments – Mandatory
• Computer Certifications such as GICSP / CISSP / CISSM and others*
• Degree or Post Degree Qualification in Computer Engineering*
• Skilled Enterprise / Cyber Security Architecture
• Skilled Network Knowledge
• Security Governance / Risk Knowledge (Security Frameworks) NIST, ISA62443
• Technical Writing Skills (TOGAF)
• Skilled researcher
• Hands on experience relating to Incident response planning.

Operational, administrative, and project-based exposure within a medium to large organisations where you have been exposed to cutting edge OT technology and large information data systems.

*Advantageous but not mandatory

What are you going to do?

Security activities across one or more of the following areas:

• Conduct global site surveys to help colleagues identify the systems in their OT environment. Note we have sites on every continent and surveys will be both physical and remote using advance video systems.
• Facilitate risk assessments to assess and mitigate the identified vulnerabilities at all OT environments.
• Develop OT policies and procedures to help customers reduce the risk of a security breach at an installation and sustain OT safety and security.
• Work closely with both the Cyber Risk Team, Group Internal audit teams and conduct where needed audits and gap analysis to assess cyber risk compliance against policies and procedures to ensure ongoing protection against cyber incidents.
• Develop remediation plans to reduce cyber risk based on detected findings.
• Provide general OT security advice to assist our operating sites in addressing OT security issues and ensure safe, continuous production operations.
• Act as a technical lead in remediation projects with the support from the Project Management Office.

What do you bring?

You Will Be Comfortable Working Alone or As Part Of a Team To Use Your Experience In One Or More Of The Following

• Prior experience working in OT environments, especially in instrumentation, industrial IOT and or SCADA systems across a variety of verticals that includes Mining, Energy, Oil and Gas, Chemical, Pharmaceutical and/or related industries where human safety is paramount.
• Experience working in an advisory or consultancy capacity or within OT environment to establish roadmaps to improve our current security posture and developing the functional/operational processes and procedures to support our mission
• Prior experience leading an assessment or evaluation of an OT environment to include execution of the assessment, analysis of results, and formulation of a final report for dissemination to key stakeholders
• Prior experience evaluating and assessing large organisations from the standpoint of OT
• Relevant certifications (GICSP, CISSP, etc) and knowledge of industry best practices and standards (IEC-62264 / 62443, NIST and other related standards)
• Relevant and demonstrable experience in current cyber security monitoring tools required to secure OT operating units.
• Experience in OT instrumentation & automation systems and network administration.

In Addition, You Bring

• Completed relevant higher vocational or university education
• A minimum of 3 years of experience in OT Cyber Risk Management with demonstratable knowledge on how to reduce OT Cyber risk effectively across multiple operations.
• Passionate Interest in: Cyber Security; – Process models; – OT security; – Security standards and guidelines
• The ability to articulate risk modelling and able to communicate technical concepts in simple terms both verbally and in written reports
• Fluent in English with an added advantage if you are fluent in either Portuguese, Spanish or French.

About us

AngloGold Ashanti is an independent, global gold mining company with a diverse, high-quality portfolio of operations, projects and exploration activities across nine countries on four continents with a geographically diverse portfolio of operations and projects. We work across the full spectrum of the mining value chain and take cognizance of the impacts our activities have on our communities and the environment

Remuneration:

As per the AGA salary scales.

Internal applications:
Please complete the Internal Job Application Form and kindly inform your Line Manager, Manager once Removed and HR Manager of your intentions. Submit the signed Internal Job Application Form with your comprehensive CV via Success factors by close of business on 10 November 2022.

External applications: 
Please note that applications should be submitted before 10 November 2022 and applicants not contacted within 30 days of applying, should consider their application unsuccessful.