- Receive weekly Qualys scans of IT systems, networks, and applications for internal and external vulnerabilities uploaded to the QlikView reporting system.
- Prioritise the vulnerabilities from most critical too least threatening.
- Conduct weekly meetings with accountable departments to highlight, prioritise and solution their vulnerabilities.
- Design a process for the departments to accept responsibility and commit to a timeline in which they will resolve and fix the vulnerability.
- Keep track of commitments and escalate to senior management as required.
- Promote these vulnerabilities to risks in the Cura system should the outstanding time reach the threshold.
- Develop and implement a comprehensive technical compliance program based on relevant industry standards and regulations.
- Ensure alignment with frameworks such as ISO 27001, NIST, GDPR, HIPAA, or other applicable standards depending on the industry.
- Conduct regular compliance audits and assessments to verify adherence to established technical standards and policies.
- Provide guidance to cross-functional teams on compliance requirements and assist in the resolution of compliance-related issues.
- Coordinate and oversee the deployment of security patches and updates to address vulnerabilities promptly. This is done in conjunction with infrastructure management and our service provider.
- Establish and maintain a structured process for patch management, ensuring minimal disruption to ongoing operations.
- Support the implementation of patch management using tools implemented by our services providers.
- Collaborate with the incident response team to develop and enhance incident response plans related to vulnerabilities.
- Participate in the investigation and resolution of security incidents related to vulnerabilities.
- Maintain detailed records of vulnerabilities, assessments, and compliance activities.
- Generate and present regular reports on the status of vulnerabilities, compliance posture, and remediation progress to key stakeholders.
- Conduct training sessions to educate employees on security best practices and compliance requirements.
- Foster a culture of security awareness and compliance throughout the organization.
- Evaluate and enhance security and compliance processes continually.
- Stay abreast of emerging technologies and industry trends to recommend and implement improvements to the organization's security posture.
- Bachelor's degree in information security, Computer Science, or a related field.
- Professional certifications such as CISSP, CISM, or equivalent.
- 5 years of experience in vulnerability management, technical compliance, and information security.
- 5 years of strong knowledge of security frameworks, standards, and regulations.
- Familiarity with security technologies and tools, including vulnerability scanning tools.
- Excellent communication and collaboration skills.
- Ability to work effectively in a dynamic and fast-paced environment.
- Building and maintaining relationships.
- Teamwork and ability to function independently.
- Facilitation Skills.
- Adaptability.
- Attention to detail.
- Planning and organising.
- Ability to work independently.
- Interpersonal savvy.
- Decision quality.
- Plans and aligns.
- Optimises work processes.
- Being resilient.
- Collaborates.
- Cultivates innovation.
- Customer focus.
- Drives results.
- Curiosity and Open-Mindedness
- Negotiation
- Reporting and Administration
- Honesty, integrity, and respect.
- Positive, enthusiastic, can-do attitude.
- Ability to co-operate and thrive both within an independent and team environment.
- Project Management.
- Reporting and Administration.
- Business Requirements Definition.
- Compliance Monitoring.
-
DevSecOps Engineer
Found in: Executive Placements ZA C2 - 3 days ago
The Skills Mine Cape Town, South AfricaRequirements: · 5+ years of hands-on experience in DevSecOps/Security roles, with a focus on penetration testing · Proven experience in identifying and remediating security vulnerabilities in cloud environments, particularly AWS · Proficiency in using penetration testing tools a ...
-
Security Specialist
Found in: Executive Placements ZA C2 - 3 days ago
The Skills Mine Cape Town, South Africa Full timeRequirements · A minimum of 5 years of experience in a similar role, with a proven track record in cloud security · In-depth knowledge of AWS and Google Cloud services, including Identity and Access Management (IAM), VPC, security groups, and other relevant services · Relevant ce ...
-
CCNP Network Security Engineer
Found in: Talent ZA C2 - 6 hours ago
DLK Group Cape Town, South Africa ContractThe role of the Cisco Certified Network Professional Security Engineer encompasses many activities within the scope of the relevant services including (but not limited to): · Network Security. · Collaboration Security. · Vulnerability Management Security. · Very good problem-solv ...
-
Cisco Certified Network Professional Security Engineer
Found in: Talent ZA C2 - 4 days ago
DLK Group Cape Town, South Africa ContractJob Description · The role of the CiscoCertified Network Professional Security Engineer encompasses many activitieswithin the scope of the relevant services including (but not limited to): · Network Security. · Collaboration Security. · Vulnerability Management Security. · Excel ...
-
Cisco Certified Network Professional Security Engineer
Found in: Talent ZA C2 - 4 days ago
DLK Group (PTY) Ltd Cape Town, South AfricaThe role of the Cisco Certified Network Professional Security Engineer encompasses many activities within the scope of the relevant services including (but not limited to): · Network Security. · Collaboration Security. · Vulnerability Management Security. · Excellent problem-solv ...
-
Acuity Consultants Cape Town, South Africa Permanent, Full timeJob Description · This is an excellent opportunity to manage the operations of the Cyber Security Risk environment for South Africa's leading Financial Services organization · Based in cape town this role is paying up to R800K per annum · THE COMPANY · Africa's LEADING FINANCIAL ...
-
Information Security Systems Analyst
Found in: Talent ZA C2 - 5 days ago
Sanlam Cape Town, South AfricaCAREER OPPORTUNITY · Santam BITS has a career opportunity for a senior role of Information Security Systems Analyst in the Business Information and Technology Services (BITS) department which is based in the Western Cape or Gauteng. · KEY RESPONSIBILITIES · Security Analysis ...
-
Penetration Tester – Permanent
Found in: Talent ZA 2A C2 - 1 day ago
E-Merge Cape Town, South AfricaAre you a cybersecurity enthusiast with a passion for uncovering vulnerabilities and securing digital landscapes? We are currently seeking an experienced Penetration Tester to join a leading security company based in Cape Town on a permanent basis. This is a unique opportunity fo ...
-
DevOps Engineer
Found in: Talent ZA C2 - 6 hours ago
JenRecruitment Cape Town, South Africa Full timeOur client is a digital innovation, development, and execution partner that designs, builds and launches products that create real business value through our customer-centric approach. They disrupt established markets and capture opportunities in exponential technology fields. Th ...
-
Security Analyst
Found in: Talent ZA C2 - 4 days ago
Dimension Data Cape Town, South AfricaFunctieomschrijving · Job Description Summary · Supports and administers organizational security plans and operations. Executes procedures and processes to provide physical protection for personnel and company property, day-to-day damage, vandalism, loss prevention and other rela ...
-
Network Planning and Optimization Engineer
Found in: Talent ZA C2 - 4 days ago
FACT Cape Town, South Africa Full timeThe primary role for this position is to design, plan, and optimize our client's 2,3,4,5G RAN network infrastructure, ensuring it performs at its peak and meets the evolving demands of the business. · You will collaborate with multidisciplinary teams to guarantee the network's re ...
-
Network Performance Monitor
Found in: Talent ZA C2 - 3 days ago
FACT Cape Town, South Africa Full timePosition Overview: As a Network Planning and Optimization Engineer, your primary role is to design, plan, and optimize our client's GSM/UMTS/LTE & NR technologies infrastructure, ensuring it performs at its peak and meets the evolving demands of the business. You will collaborate ...
-
IT Security Engineer
Found in: Talent ZA C2 - 4 days ago
Dimension Data Cape Town, South AfricaFunctieomschrijving · Are you tired of working long hours and not being able to spend time with your family? Do you want to work from home or in the office of your choice? Are flexible working hours making you more productive? Apply for this IT Security Engineer role · As a membe ...
-
DevSecOps Engineer
Found in: Talent ZA C2 - 6 hours ago
Boardroom Appointments Cape Town, South Africa Full timeMinimum Requirements: · Background & Experience: Originating from an open-source operating system background, candidates should possess a minimum of 5 years in IT, with 3 years focused on DevSecOps roles. · Cloud Expertise: Demonstrated experience working in cloud environments, w ...
-
Senior Infrastructure Engineer: Security
Found in: Talent ZA C2 - 5 days ago
Clickcatell Cape Town, South AfricaManager: Infrastructure Security · Purpose · We are looking for a Highflying Senior Infrastructure Engineer: Security to take accountability for assisting CISO in planning, organizing, controlling, and management of all of platforms and implementation of the related infrastruc ...
-
3rd Line Support Engineer
Found in: Talent ZA C2 - 2 weeks ago
Uptime Solutions Ltd Cape Town, South Africa Remote job Full time@Uptime provide white label IT Support, Helpdesk and NOC services to MSPs enabling them to extend the services they can offer their customers. This role involves working with a leading US based MSP who will support the successful candidate in increasing their technical knowledge. ...
-
CYBER SECURITY ANALYST – build on your MICROSOFT SECURITY TECH STACK with leading GLOBAL HEALTH CLUB BRAND – CAPE TOWN,R650K – R820K CTC p/a
Found in: Talent ZA C2 - 6 days ago
Acuity Consultants Cape Town, South Africa Permanent, Full timeJob Description · Exciting opportunity for a CYBERSECURITY ANALYST to build on your MICROSOFT SECURITY TECH STACK. You will be responsible for the day-to-day security operations to safeguard digital assets & defend the digital dominion within the world's leading Health and Fitne ...
-
Senior Cloud Engineer
Found in: Talent ZA C2 - 1 day ago
Tower Group Cape Town, South Africa Full timeA successful fintech company located in Techno Park, Stellenbosch has grown by implementing new ideas and equipment in the payment processing industry to enrich payment solutions with automation and great tech. · Our client has a flat structure which results in a broad span of co ...
-
3rd Line Support Engineer
Found in: Talent ZA C2 - 2 days ago
Uptime Solutions Ltd Cape Town, South Africa Remote job Full time@Uptime provide white label IT Support, Helpdesk and NOC services to MSPs enabling them to extend the services they can offer their customers. This role involves working with a leading US based MSP who will support the successful candidate in increasing their technical knowledge. ...
-
IT Internal Auditor
Found in: Executive Placements ZA C2 - 3 days ago
O'Brien Recruitment Cape Town, South AfricaWe are in need of an IT Internal Auditor to be based in Cape Town who has: · the ability to conduct IT internal audits and review IT governance processes to identify and mitigate areas of risk and non-compliance · the ability to assess how well a company's internal controls, risk ...
Cyber Security Vulnerability - Cape Town, South Africa - Santam
Description
CAREER OPPORTUNITY
Santam BITS has a career opportunity for a senior role as Cyber Security Vulnerability and Technical Compliance Manager in the Business Information and Technology Services (BITS) department, which is based in the Western Cape or Gauteng.
KEY RESPONSIBILITIES
QUALIFICATIONS AND EXPERIENCE
COMPETENCIES
ADDITIONAL COMPETENCIES AND SKILLS
ABOUT THE COMPANY
Santam is the leading short-term insurer in South Africa. Along with its subsidiaries, the business transacts all classes of short-term insurance. Santam is a large, diversified, and transforming company and our success is rooted in our passion for our clients. Everything we do is centered on our delivery of Insurance Good and Proper.
Please note this appointment will be made in line with the Divisional Employment Equity targets. People with disabilities are welcome to apply.