Business Information Security Officer

2 months ago

Bellville, South Africa Sanlam Full time

**CAREER OPPORTUNITY**
- Santam BITS has a career opportunity for a senior role of Business Information Security Officer (BISO) in the Business Information and Technology Services (BITS) department which will be based in the Western Cape or Gauteng.

**KEY RESPONSIBILITIES**
- Establish and manage a Santam Business Unit (SBU) Information Security Programme.
- Implement cybersecurity awareness campaigns.
- Participate in Group Information Security Programme (GISP) initiatives.
- Information Security Governance and Assurance.
- Document processes and artefacts that prove that the relevant governance and assurance processes were implemented as designed.
- Information Security Incident Response and Cyber Crisis Management.
- Application (including cloud), Infrastructure Security, and Cybersecurity Education, Training and Awareness.
- The BISO will implement processes and controls as agreed with the Group Information Security Officer (GISO), GISP and the Group CIO.
- The BISO will be responsible for the quality and cost-effectiveness of information security services delivery in the SBU and will report on these metrics to the GISP and GISO.
- Provide regular feedback to Santam Manco on Group-wide information security issues.
- The BISO will report to the GISO on new initiatives, plans, and progress, which will be discussed with the Group Information Security Committee.
- Review and improve existing IT and Information Risk assessment, reporting and management practices.

**KEY RESPONSIBILITIES**
- Update the Santam IT and Information Security Risk register.
- Document a security risk management action plan. This must include the relative priorities of agreed-upon actions, ownership of the actions, and agreed-upon timelines.
- Priorities will be aligned to Santam and GISP priorities. The BISO must have an action plan to implement these initiatives in Santam.
- Up to date and complete Santam cloud technology outsourcing and third-party register (where applicable).
- Review and respond to PSPG and risk acceptance requests within the agreed time.
- Clear and timely communication to management and users regarding planned group awareness campaigns.
- Risk assessment that identifies a requirement for additional awareness or targeted education, training, and awareness interventions.
- Alignment with the Group's annual security education, training and awareness plan.
- Document the logical access review schedule for Line of Business Applications, review the results, facilitate resolution, and report on the progress made in resolving issues identified during the reviews.
- Review and respond to all security-related audit findings.
- Report all cyber security incidents, or information security incidents (including privacy-related incidents) where the compromise was through technology to the Sanlam Group Technology (SGT) CSIRT.
- Be a primary contact for cybersecurity incidents identified by the SGT CSIRT.
- Ensure appropriate actions are taken when policy breaches are identified in the SBU.
- Assist by facilitating engagement and communication with key stakeholders in the Santam during a major incident.
- Produce Quarterly Group ISO Forum and GISP reports.
- Ensure that security 'gates' are a formal part of the SDLC/ Agile/ relevant solution development methodology.
- Interventions and role-players must be clearly specified.
- Active participation in Sanlam-sanctioned industry bodies (e.g. ISF Live, ISACA, FS-ISAC)
- Timeous escalation of new, high or escalating cybersecurity risks.
- Ensure that the Group CIO is aware of risks and actions required.
- Facilitate workshops and risk documentation during Control Self Assessments or Crown Jewel Risk Assessment processes.
- Find & provide root cause analysis and implement permanent and/or long-term fixes for cyber-related incidents.
- Strong understanding of integration between Workstations and Network/Servers.
- Installations and monitoring of devices using automated tools (e.g. SCCM) & scripting.
- Responsible for maintaining a configuration register of assets and licenses.

**QUALIFICATIONS AND EXPERIENCE**
- Bachelor’s Degree or Diploma in Computer Science, Information Systems or other related field, or equivalent work experience
- Minimum 7 years of relevant experience

**COMPETENCIES**
- High Stress Tolerance.
- Building and maintaining relationships.
- Teamwork and ability to function independently.
- Facilitation Skills.
- Adaptability.
- Attention to detail.
- Planning and organising.
- Ability to work independently.
- Interpersonal savvy.
- Decision quality.
- Plans and aligns.
- Optimises work processes.
- Being resilient.
- Collaborates.
- Cultivates innovation.
- Customer focus.
- Drives results.
- ADDITIONAL COMPETENCIES AND SKILLS- Honesty, integrity, and respect.
- Positive, enthusiastic, can-do attitude.
- Ability to work under pressure and long hours.
- Ability to co-operate and thrive both within an independent and team environment.
- Project Management.
- Re

  • Business Information Security Officer

    1 month ago

    Bellville, South Africa Sanlam Full time

    Business Information Security Officer Date: 14 Sep 2024 Location: Bellville, Western Cape, ZA Company: Sanlam Group CAREER OPPORTUNITY Santam BITS has a career opportunity for a senior role of Business Information Security Officer (BISO) in the Business Information and Technology Services (BITS) department which will be based in the Western Cape or...

  • Business Information Security Officer

    5 months ago

    Bellville, South Africa Progressive IT Resourcing Full time

    **What will you do?** The Business Information Security Officer (BISO) is responsible for identifying and assessing the information security requirements of the business. The BISO in conjunction with the Business CIO, is responsible for the establishment and maintenance of an Information Security Management System (ISMS) and ensure that the appropriate...

  • Business Information Security Officer

    5 months ago

    Bellville, South Africa Sanlam Full time

    **CAREER OPPORTUNITY** - Santam BITS has a career opportunity for a senior role of **Business Information Security Officer (BISO)** in the Business Information and Technology Services (BITS) department which will be based in the **Western Cape or Gauteng.** - KEY RESPONSIBILITIES- Establish and manage a Santam Business Unit (SBU) Information Security...

  • Business Information Security Officer

    5 months ago

    Bellville, South Africa Sanlam Full time

    What will you do? The Business Information Security Officer (BISO) is responsible for identifying and assessing the information security requirements of the business. The BISO in conjunction with the Business CIO, is responsible for the establishment and maintenance of an Information Security Management System (ISMS) and ensure that the appropriate...

  • Information Security Analyst

    4 weeks ago

    Bellville, South Africa Sanlam Full time

    **What will you do?** - Assisting, performing and reporting on key information security activities such as: - Reporting and follow ups with regards to Anti-Malware, Anti-Virus, Security patching of all IT related hardware/software. - Investigate and resolve logical access incidents. - Provide afterhours & weekend support as part of project involvement and...

  • Information Security Analyst

    1 month ago

    Bellville, South Africa Sanlam Full time

    Information Security Analyst Date: 17 Oct 2024 Location: Bellville, Western Cape, ZA Company: Sanlam Group What will you do? Assisting, performing and reporting on key information security activities such as: o User access and identity management on applications, operating systems, storage, databases and sftp. o Reporting and follow ups with...

  • Information Security Administrator

    5 months ago

    Bellville, South Africa Sanlam Full time

    **CAREER OPPORTUNITY** - Santam BITS has a career opportunity for a **junior/intermdiate role as an Information Security Administrator **in the Business Information and Technology Services (BITS) department, based in the **Western Cape.** **KEY RESPONSIBILITIES** - Administering Information Security Governance and assurance (e.g. keeping track of versions...

  • Information Security Consultant: Operations

    5 months ago

    Bellville, South Africa Sanlam Full time

    **Who are we?** Sanlam Group Technology is responsible for the provision of a digitally enabled technology service as a group COE, drive business and transformation and provide group-wide digital and data architecture. We operate the various technology platforms and shared services, ensure Cyber and Information Security resilience, and act as technology...

  • Cyber Information Security Analyst I

    5 months ago

    Bellville, South Africa Sanlam Full time

    Who are we? Sanlam Group Technology is responsible for the provision of a digitally enabled technology service as a group COE, drive business and transformation and provide group-wide digital and data architecture. We operate the various technology platforms and shared services, ensure Cyber and Information Security resilience, and act as technology...

  • Information Security Systems Analyst

    5 months ago

    Bellville, South Africa Sanlam Full time

    **CAREER OPPORTUNITY** - Santam BITS has a career opportunity for a senior role of Information Security Systems Analyst in the Business Information and Technology Services (BITS) department which is based in the Western Cape or Gauteng.**KEY RESPONSIBILITIES** **Security Analysis and Monitoring** - Analyse and assess security measures within the...

  • Cyber Information Security Analyst I

    5 months ago

    Bellville, South Africa Sanlam Full time

    Who are we? Sanlam Group Technology is responsible for the provision of a digitally enabled technology service as a group COE, drive business and transformation and provide group-wide digital and data architecture. We operate the various technology platforms and shared services, ensure Cyber and Information Security resilience, and act as technology...

  • Cloud and Devsecops Security Analyst

    5 months ago

    Bellville, South Africa Sanlam Full time

    Who are we? Sanlam Group Technology is responsible for the provision of a digitally enabled technology service as a group COE, drive business and transformation and provide group-wide digital and data architecture. We operate the various technology platforms and shared services, ensure Cyber and Information Security resilience, and act as technology...

  • Security/customer Care Officer

    6 months ago

    Bellville, South Africa Tafelberg Furniture Stores Full time

    **SECURITY/CUSTOMER CARE OFFICER** We are currently seeking to employ a Security/Customer Care Officer for our Bellville branch. - Meeting customers at the door - Checking invoices and scanning out products before customer leaves the store - Directing customers to correct salesperson - Patrolling of grounds/shop floor - Conducting searches - Opening and...

  • Security/customer Care Officer

    6 months ago

    Bellville, South Africa Tafelberg Furniture Stores Full time

    **SECURITY/CUSTOMER CARE OFFICER** We are currently seeking to employ a Security/Customer Care Officer for our Bellville branch. - Meeting customers at the door - Checking invoices and scanning out products before customer leaves the store - Directing customers to correct salesperson - Patrolling of grounds/shop floor - Conducting searches - Opening and...

  • Office and Administration Manager

    5 months ago

    Bellville, South Africa JSM Business Services Full time

    Our client, an Electrical and Mechanical Engineering firm that provides safe and profitable engineering and renewable energy solutions, wants to appoint an experienced Office and Administration Manager. Duties and responsibilities: - Being the face of the business in the front of house - Answer phone calls and greet guests - Arrange and manage travel,...

  • Office and Administration Manager

    5 months ago

    Bellville, South Africa JSM Business Services Full time

    Our client, an Electrical and Mechanical Engineering firm that provides safe and profitable engineering and renewable energy solutions, wants to appoint an experienced Office and Administration Manager. Duties and responsibilities: - Being the face of the business in the front of house - Answer phone calls and greet guests - Arrange and manage travel,...

  • Office Driver and Chauffeur

    5 months ago

    Bellville, South Africa JSM Business Services Full time

    Our client, an Electrical and Mechanical Engineering firm that provides safe and profitable engineering and renewable energy solutions, wants to appoint an experienced Driver who will be responsible for running various office errands, transport visitors to and from the airport and the company’s Manager Director to business meetings and functions. Only...

  • Principal Application Security Architect

    5 months ago

    Bellville, South Africa Sanlam Full time

    **CAREER OPPORTUNITY** - Santam BITS has a career opportunity for a senior role of **Principal Application Security Architect **in the Business Information and Technology Services (BITS) department which is based in the **Western Cape or Gauteng.** **KEY RESPONSIBILITIES** - Threat mitigation and risk management. - Secure architecture and design. -...

  • Security Compliance Analyst: Application Platforms

    5 months ago

    Bellville, South Africa Sanlam Full time

    **Who are we?** Sanlam Group Technology is responsible for the provision of a digitally enabled technology service as a group COE, drive business and transformation and provide group-wide digital and data architecture. We operate the various technology platforms and shared services, ensure Cyber and Information Security resilience, and act as technology...

  • Senior SAP Security Specialist

    5 months ago

    Bellville, South Africa Sanlam Full time

    **Who are we?** Sanlam Group Technology is responsible for the provision of a digitally enabled technology service as a group COE, drive business and transformation and provide group-wide digital and data architecture. We operate the various technology platforms and shared services, ensure Cyber and Information Security resilience, and act as technology...