Business Information Security Officer
2 weeks ago
The Business Information Security Officer (BISO) is responsible for identifying and assessing the information security requirements of the business.
The BISO in conjunction with the Business CIO, is responsible for the establishment and maintenance of an Information Security Management System (ISMS) and ensure that the appropriate information security controls are implemented, maintained and aligned with the Group governance and assurance requirements (i.e.
PSPGs, Cyber Resilience Framework, external requirements).The BISO is responsible for security awareness, cyber risk management and translating these risks and the impacts thereof to lines of business to ensure informed risk assessment.Other responsibilities include participation in Group information security bodies and initiatives, logical access management, cyber incident response, vulnerability management, IT audit coordination, ensuring new systems adhere to security governance and providing management assurance regarding the cyber and information security posture of the business.
Once the engagement processes have been followed and agreed to, the BISO's responsibility areas will include the following key areas:Establish and manage a BU information security programme,
Participation in Group Information Security Programme (GISP) initiatives,
Information security incident response and cyber crisis management,
Information security governance and assurance,
Application (including cloud) and infrastructure Security, and
Cybersecurity Education, Training and Awareness
The BISO will implement processes and controls as agreed with the Group CISO and the Business CIO.
The BISO will be responsible for quality and cost effectiveness of delivery of information security services in the BU and will report on these metrics to the GISP What will make you successful in this role?
Outputs
Regular feedback to BU Manco on Group-wide information security issues.
The BISO must have an programme plan to implement these initiatives in the BU.
The BISO will report to the GISP Manager on new initiatives, plans and progress which will be discussed at the Cyber Sub-Committee.
Review and improve existing IT and information risk assessment, reporting and management practices.Up to date and complete BU IT and information security risk register.
Documented security risk management action plan. This must include relative priorities of agreed actions; ownership of the actions; agree timelines. Priorities will be aligned to Business and GISP priorities.
Up to date and complete BU cloud register (if these services are used in the BU)
Review and respond to PSPG and Risk Acceptance requests within the agreed time.
Document processes and artefacts that prove that the relevant governance and assurance processes were implemented as designed.
Clear and timely communication to management and users regarding planned group awareness campaigns.
Risk assessment that identifies a requirement for additional awareness or targeted education, training and awareness interventions.
Maintenance of BU/ Cluster and alignment with the Group annual security education, training and awareness plan.
Provide management comment to the audit observations/ findings, that is specific as far as actions and due dates are concerned.
Track and follow up on audit finding commitments.Report all cyber security incidents, or information security incidents (including privacy related incidents) where the compromise was through technology to the SGT CSIRT.
Be contactable or provide alternative contact details for Cybersecurity incidents that are identified by the SGT CSIRTEnsure appropriate actions are taken when policy breaches are identified in the BU.
Assist by facilitating engagement and communication with key stakeholders in the Cluster during a major incident.
Provide context on system and process criticality.
Produce Quarterly Group ISO Forum and GISP reports.
Provide input into requirements documents - ensure security roles; auditing; data protection (in transit and rest); monitoring etc. are defined in line with approved Information Security policies and standards.
Ensure that security 'gates' are a formal part of the SDLC/ Agile/ relevant solution development methodology.
Interventions and role-players must be clearly specified.
Active participation in Sanlam sanctioned industry bodies (e.g. ISF, FS-ISAC, ISACA).
Timeous escalation of new, high or escalating risks.
Facilitate workshops and risk documentation during Control Self Assessments, or Crown Jewel Risk Assessment processes. Qualifications
Matric
Bachelor's degree in Information Technology, Commerce, Science, or Social Science (preferable)
In force Information Security Certifications (CISM, CISSP, CCSP, CISA, ISO 27000 Lead Implementer/ Auditor) Knowledge and Experience
Knowledge
Knowledge of ISO27k, Cobit, ITIL, CIS T20 and ISF best practices.
Knowledge of Information Risk Methodologies (ideally IRAM2), threat modelling and Operati
-
Business Information Security Officer
2 weeks ago
Bellville, Western Cape, South Africa Progressive IT Resourcing Full timeWhat will you do?The Business Information Security Officer (BISO) is responsible for identifying and assessing the information security requirements of the business. The BISO in conjunction with the Business CIO, is responsible for the establishment and maintenance of an Information Security Management System (ISMS) and ensure that the appropriate...
-
Information Security Administrator
2 weeks ago
Bellville, Western Cape, South Africa Sanlam Full timeWho are we?Sanlam Group Technology is responsible for the provision of a digitally enabled technology service as a group COE, drive business and transformation and provide group-wide digital and data architecture. We operate the various technology platforms and shared services, ensure Cyber and Information Security resilience, and act as technology...
-
Cyber Information Security Analyst I
2 weeks ago
Bellville, Western Cape, South Africa Sanlam Full timeWho are we?Sanlam Group Technology is responsible for the provision of a digitally enabled technology service as a group COE, drive business and transformation and provide group-wide digital and data architecture. We operate the various technology platforms and shared services, ensure Cyber and Information Security resilience, and act as technology...
-
Cloud and Devsecops Security Analyst
2 weeks ago
Bellville, Western Cape, South Africa Progressive IT Resourcing Full timeOur ClientCompany Group Technology is responsible for the provision of a digitally enabled technology service as a group COE, drive business and transformation and provide group-wide digital and data architecture. We operate the various technology platforms and shared services, ensure Cyber and Information Security resilience, and act as technology...
-
Security/customer Care Officer
2 weeks ago
Bellville, Western Cape, South Africa Tafelberg Furniture Stores Full timeSECURITY/CUSTOMER CARE OFFICERWe are currently seeking to employ a Security/Customer Care Officer for our Bellville branch. Meeting customers at the door Checking invoices and scanning out products before customer leaves the store Directing customers to correct salesperson Patrolling of grounds/shop floor Conducting searches Opening and locking of the store...
-
Security Officers Grade a for Rondebosch
2 weeks ago
Bellville, Western Cape, South Africa Servest Careers Full timeJob Context:Servest Security Urgently Seeks 10 x Grade A1 Security officers.Must be willing to travel to Rondebosch or Bellville.Must speak / write and understand English.Must self post as company transport is not provided.No criminal recordOnly South Africian citizens can applyMinimum Requirements:Only South African citizen can applyMinimum 2 years...
-
Security Office Grade C for Bellville
2 weeks ago
Bellville, Western Cape, South Africa Servest Careers Full timeJob Context:Servest Security a Division of Servest is looking for Grade C Security Officer residing in Bellville area.All our sites are self posting therefore you need to reside / live in Bellville or close to Bellville South in order to travel.Minimum Requirements:2 years experience as an Security officer.Speak and understand Afrikaans & English.Neat and...
-
Business Intelligence Officer
2 weeks ago
Bellville, Western Cape, South Africa RCL FOODS Careers Full timeAt RCL FOODS we see and do things differently, we think bigger, work smarter and as a team collectively work towards achieving our ambition, to Grow What MattersRCL FOODS is seeking to employ an experienced Business Intelligence Officer for our Vector Logistics Division in the Western Cape.The position will be based in Belville - Peninsula (Western...
-
Security Compliance Analyst
2 weeks ago
Bellville, Western Cape, South Africa Sanlam Full timeWhat will you do?This role will support Database Administrators on various DBMSs to ensure that the design, implementation and maintenance of logical access conforms to security best practices to comply to our Sanlam Group and SGT policies, baselines, configurations and standards. This role will also fulfil a governance role in identifying non-compliance and...
-
Security Supervisor
2 weeks ago
Bellville, Western Cape, South Africa University of the Western Cape Full timeThe University of the Western Cape (UWC) is a vibrant, diverse and dynamic university, rooted in the African continent with an increasing global reach. UWC actively responds in critical and creative ways to the development needs of the country, within an ever-changing and challenging global context.Campus Protection Services seeks a suitably qualified and...
-
Treasury Accounting Officer
2 weeks ago
Bellville, Western Cape, South Africa Tych Business Solutions Full timeWe are looking for a passionate, proactive, and energetic individual for a position as Treasury Accounting Officer.The position exists in Corporate Services: Group Treasury, based in Tyger valley, Bellville.JOB DESCRIPTIONThe main responsibility for this position will entail executing and accounting for Treasury transactions which includes journalizing...
-
Office and Administration Manager
2 weeks ago
Bellville, Western Cape, South Africa JSM Business Services Full timeOur client, an Electrical and Mechanical Engineering firm that provides safe and profitable engineering and renewable energy solutions, wants to appoint an experienced Office and Administration Manager.Duties and responsibilities: Being the face of the business in the front of house Answer phone calls and greet guests Arrange and manage travel, accommodation...
-
SAP Security Service Delivery Lead
2 weeks ago
Bellville, Western Cape, South Africa Sanlam Full timeWho are we?Sanlam Group Technology is responsible for the provision of a digitally enabled technology service as a group COE, drive business and transformation and provide group-wide digital and data architecture. We operate the various technology platforms and shared services, ensure Cyber and Information Security resilience, and act as technology...
-
Security Compliance Analyst
2 weeks ago
Bellville, Western Cape, South Africa Sanlam Full timeWhat will you do?The ability to fulfil a leading role in the following output:Clean up of non-compliant access Ensure that logical access processes are documented and signed off Evaluate outputs of regular user and support environment role accesses reviewsQualifications: Matric Tertiary Qualification in Information TechnologyExperience Good understanding of...
-
Security Compliance Analyst
2 weeks ago
Bellville, Western Cape, South Africa Sanlam Full timeWhat will you do?CloudThis role will support Cloud Engineers to ensure that the design, implementation and maintenance of logical access conforms to security best practices to comply to our Sanlam Group and SGT policies, baselines, configurations and standards. This role will also fulfil a governance role in identifying non-compliance and to monitor agreed...
-
Security Compliance Analyst: Cloud/devsecops
2 weeks ago
Bellville, Western Cape, South Africa Sanlam Full timeWho are we?Sanlam Group Technology is responsible for the provision of a digitally enabled technology service as a group COE, drive business and transformation and provide group-wide digital and data architecture. We operate the various technology platforms and shared services, ensure Cyber and Information Security resilience, and act as technology...
-
Senior SAP Security Specialist
2 weeks ago
Bellville, Western Cape, South Africa Sanlam Full timeWho are we?Sanlam Group Technology is responsible for the provision of a digitally enabled technology service as a group COE, drive business and transformation and provide group-wide digital and data architecture. We operate the various technology platforms and shared services, ensure Cyber and Information Security resilience, and act as technology...
-
Security Compliance Analyst
2 weeks ago
Bellville, Western Cape, South Africa Sanlam Full timeWhat will you do?This role will support Windows administrators to ensure that the design, implementation and maintenance of logical access conforms to security best practices to comply to our Sanlam Group and SGT policies, baselines, configurations and standards. This role will also fulfil a governance role in identifying non-compliance and to monitor agreed...
-
Security Compliance Analyst
2 weeks ago
Bellville, Western Cape, South Africa Sanlam Full timeWhat will you do?This role will support Linux administrators to ensure that the design, implementation and maintenance of logical access conforms to security best practices to comply to our Sanlam Group and SGT policies, baselines, configurations and standards. This role will also fulfil a governance role in identifying non-compliance and to monitor agreed...
-
Bellville, Western Cape, South Africa Sanlam Full timeWho are we?Sanlam Group Technology is responsible for the provision of a digitally enabled technology service as a group COE, drive business and transformation and provide group-wide digital and data architecture. We operate the various technology platforms and shared services, ensure Cyber and Information Security resilience, and act as technology...
