Security, Governance
2 weeks ago
Surgo (PTY) Ltd. has partnered with a global analytics and digital solutions company serving industries including insurance, healthcare, banking and financial services, media, retail, and others. They aim to bridge the gap between digital expectations and real outcomes for international companies with Digital Intelligence.
Our client is recruiting for a Security, Governance, Metrics & Reporting Specialist to join their team based in Cape Town.
**Job Purpose**:
To develop governance and status reports on the company’s security, risk & compliance posture to the CISO, CIO and senior leadership, based on Key Performance Indicators (KPIs) and security metrics, to facilitate the awareness of Cybersecurity & Resilience effectiveness, support decision making, and improve security performance and accountability.
**Requirements**:
Essential to have a Bachelors degree (or equivalent) in a related technical area
Desirable to have one or more of the following industry certifications: CISM, CRISC or ISACA CGEIT
Essential to have knowledge and understanding of metrics, key performance indicators, trackers, dashboards, and data visualisation techniques & tooling, e.g., PowerBI or Tableau Essential to have knowledge or training on the ISO27001 standard and NIST security frameworks
**Skills**:
Ability to design and execute formalised reporting, KPIs and metrics in a Security, Governance, Metrics & Reporting environment
Ability to gather the latest security status and track the effectiveness of agreed security metrics by reviewing audits, test results, logs, or other forms of evaluation
Ability to use security GRC tool (for example ServiceNow or Archer) to automate governance, risk management and compliance processes
Ability to build relationships, collaborate cross functionally with various departments and communicate with stakeholders of varying seniority to explain tracking against key performance indicators and metrics in simple business language, with a clear scope of progress towards objectives
Strong understanding of security reporting, governance, dashboards, and progress tracking using KPIs and metrics
Strong analytical skills, with a proactive work approach for establishing KPIs and reporting on the current status of security for the business, with a proven ability to drive results
A confident speaker, with the ability to create executive presentations for senior leadership to convey insights, findings, cyber function progress and performance
**General knowledge of various Cybersecurity domains such as**: Governance, Risk & Compliance, Security Monitoring, Security Awareness & Skills Training, Communications and Privacy Programme Management, with an ability to track progress and performance across these areas
**Experience**:
As a Security, Governance, Metrics & Reporting Specialist, you will be expected to demonstrate experience and knowledge across the following areas
- Define and formalising metrics & KPIs to help track the latest security status, with clearly outlined ownership and management of security governance
Conduct periodic reviews of performance against metrics and KPIs for Cybersecurity functions
Establish reporting against KPIs & metrics through established governance forums, for management to have a consistent view of security across the organisation
Analyses security metrics to provide insights on key security trends to senior leadership and enable improved utilisation of security resources
Work in a global Organisation (preferably within the manufacturing and/or Governance, Risk & Compliance division) with stakeholders of varying seniority and a track record to navigate through complex work environments
**Salary**: Market Related
-
IT Governance Manager
4 weeks ago
Cape Town, South Africa iLaunch Full timeDeveloping and implementing controls aimed at mitigating audit risks Liaising with internal and external stakeholders and advising on various IT Governance topics Manage Information Security, risk management, auditing and incident reponse and recovery Tertiary Qualification in IT or Auditing 4 Years experience in a similar role (Management) 12 Years...
-
IT Governance Administrator
4 weeks ago
Cape Town, South Africa Dimension Data Full timeFunctieomschrijvingThe IT Governance Administrator will assist in identifying, defining and maintaining the information security policies and standards for the organisation. The IT Governance Administrator will work closely with all service lines to ensure compliance and implementation of audit controls.Performance Objectives:PO 1: Risk...
-
Security Specialist
4 weeks ago
Cape Town, South Africa THE SKILLS MINE (PTY) LTD Full time**Requirements**: - A minimum of 5 years of experience in a similar role, with a proven track record in cloud security - In-depth knowledge of AWS and Google Cloud services, including Identity and Access Management (IAM), VPC, security groups, and other relevant services - Relevant certifications such as AWS Certified Security - Specialty, Google...
-
Security Specialist
4 weeks ago
Cape Town, South Africa THE SKILLS MINE (PTY) LTD Full timeRequirementsA minimum of 5 years of experience in a similar role, with a proven track record in cloud securityIn-depth knowledge of AWS and Google Cloud services, including Identity and Access Management (IAM), VPC, security groups, and other relevant servicesRelevant certifications such as AWS Certified Security – Specialty, Google Professional Cloud...
-
Security Specialist
3 weeks ago
Cape Town, South Africa The Skills Mine Full timeRequirements A minimum of 5 years of experience in a similar role, with a proven track record in cloud security In-depth knowledge of AWS and Google Cloud services, including Identity and Access Management (IAM), VPC, security groups, and other relevant services Relevant certifications such as AWS Certified Security – Specialty, Google Professional Cloud...
-
Security Specialist
4 weeks ago
Cape Town, South Africa The Skills Mine Full timeRequirementsA minimum of 5 years of experience in a similar role, with a proven track record in cloud securityIn-depth knowledge of AWS and Google Cloud services, including Identity and Access Management (IAM), VPC, security groups, and other relevant servicesRelevant certifications such as AWS Certified Security – Specialty, Google Professional Cloud...
-
Cape Town, South Africa Western Cape Government Full time**Job Purpose**: The Department of Community Safety, Western Cape Government has an opportunity for a suitably qualified and competent individual to assist with the implementation of safety and security tactical interventions to build departmental resilience in providing safety and security solutions and compilation of safety and security risk assessments....
-
Cape Town, South Africa Sanlam Full timeWho are we? Sanlam Group Technology is responsible for the provision of a digitally enabled technology service as a group COE, drive business and transformation and provide group-wide digital and data architecture. We operate the various technology platforms and shared services, ensure Cyber and Information Security resilience, and act as technology...
-
Security Analyst
4 weeks ago
Cape Town, South Africa Dimension Data Full timeFunctieomschrijvingJob Description SummarySupports and administers organizational security plans and operations. Executes procedures and processes to provide physical protection for personnel and company property, day-to-day damage, vandalism, loss prevention and other related security risk programs and meets required codes and regulations. Compiles data for...
-
Cyber Security Senior Manager
4 weeks ago
Cape Town, South Africa Mindworx Consulting Full time**Skills and attributes for success**: We are looking for someone who has: - Ambition to develop a career within company specialising in cyber security - Ability to develop and deliver high quality output against stated project objectives and meet tight deadlines - Ability to work under limited supervision (‘self-starter’) in unstructured environments -...
-
Principal Security Analyst
4 weeks ago
Cape Town, South Africa Dimension Data Full timeFunctieomschrijvingJob Description SummarySupports and administers organizational security plans and operations. Executes procedures and processes to provide physical protection for personnel and company property, day-to-day damage, vandalism, loss prevention and other related security risk programs and meets required codes and regulations. Compiles data for...
-
Senior IT Auditor: IT, Information Security
3 weeks ago
Cape Town, South Africa Santam Full timeWhat will you do? A position as a Senior Auditor exists within Group Internal Audit : Santam Corporate Services, based in the Cape Town office. To conduct various types of assurance and consulting reviews with the primary focus on IT, Information Security and Cyber Security audits across the Santam Group (Santam Ltd, subsidiaries, brokers,...
-
Cloud and Devsecops Security Analyst
4 weeks ago
Cape Town, South Africa Progressive IT Resourcing Full time**Our Client ?** Is responsible for the provision of a Digitally Enabled Technology service as a group COE, drive business and transformation and provide group-wide digital and data architecture. They operate the various technology platforms and shared services, ensure Cyber and Information Security resilience, and act as technology governance and risk...
-
Solution Architect
4 weeks ago
Cape Town, South Africa Capital Edge Recruitment Full timeCreate information security architectures and designs to secure enterprise information assets in line with architecture standards. Serve as the primary Information Security architecture authority for all project and operational stakeholders, and ensure security architecture across all solutions and technology landscapes. Lead the creation of Information...
-
Information Security Analyst
4 weeks ago
Cape Town, South Africa eSoft Development and Technologies Full timeOne of our clients wants to grow their team and we are looking for an information security analyst. The Information Security Analyst will be responsible for the planning, implementation and execution of daily/weekly/monthly security tasks that ensures that the clients are compliant with the required standards by providing analysis, administration, and...
-
Security Engineer
3 weeks ago
Cape Town, South Africa Plus 1x Full timeSECURITY ENGINEER The Security Engineer oversees the response to information system security incidents, including investigation of, countermeasures to, and recovery from computer-based attacks, unauthorized access, and policy breaches; engages, interacts, and coordinates with third-party incident responders, including law enforcement. Oversees the...
-
Security Engineer
4 weeks ago
Cape Town, South Africa Plus 1x Full timeSECURITY ENGINEER The Security Engineer oversees the response to information system security incidents, including investigation of, countermeasures to, and recovery from computer-based attacks, unauthorized access, and policy breaches; engages, interacts, and coordinates with third-party incident responders, including law enforcement. Oversees the...
-
Security Engineer
4 weeks ago
Cape Town, South Africa Plus1X Solutions (Pty) Ltd Full timeSECURITY ENGINEER The Security Engineer oversees the response to information system security incidents, including investigation of, countermeasures to, and recovery from computer-based attacks, unauthorized access, and policy breaches; engages, interacts, and coordinates with third-party incident responders, including law enforcement. Oversees the...
-
Cyber security consultant
7 days ago
Cape Town, South Africa Gijima Holdings Full timeProfessional Qualification and Certifications: Bachelors Degree in Computer Science, Information Systems or other related field, or equivalent work experience. Certification in risk, information systems and/or security desired (CISM, CISSP, CRISC, Cyber Security courses. Ethical Hacking) Work Experience: Minimum 3- 5 years of experience in IT security,...
-
Cyber security consultant
7 days ago
Cape Town, South Africa Adzuna ZA B C2 Full timeProfessional Qualification and Certifications:Bachelors Degree in Computer Science, Information Systems or other related field, or equivalent work experience.Certification in risk, information systems and/or security desired (CISM, CISSP, CRISC, Cyber Security courses. Ethical Hacking)Work Experience: Minimum 3- 5 years of experience in IT security, Identity...
