Principal Application Security Architect
4 weeks ago
CAREER OPPORTUNITY
Santam BITS has a career opportunity for a senior role of Principal Application Security Architect in the Business Information and Technology Services (BITS) department which is based in the Western Cape or Gauteng.
KEY RESPONSIBILITIES
Driving a comprehensive application security strategy. Threat mitigation and risk management. Secure architecture and design. Vulnerability management and code reviews. Securing the development lifecycle. Collaboration and communication with development teams and other stakeholders. Protecting global assets. Understanding regional requirements. Lead the development and execution of application security assessments. Ensure applications comply with all relevant security standards and regulations. Champion a "security by design" culture. Develop and maintain application security documentation. Develop and manage risk mitigation strategies. Work with other security teams (., security operations, Stay up-to-date on the latest application security threats and vulnerabilities. Application Security Incident Response and Cyber Crisis Management. Participate in Group Information Security Programme (GISP) initiatives. Application Security (including cloud security), Infrastructure Security, and Cybersecurity Education, Training and Awareness. Provide regular feedback to Santam Manco on Group-wide application security issues. Clear and timely communication to management and users regarding application security matters. Application Security Risk assessment that identifies a requirement for additional awareness or targeted education, training, and awareness interventions. Review and respond to all application security-related audit findings. Produce required application security reports. Ensure that security 'gates' are a formal part of the SDLC/ Agile/ relevant solution development methodology. Active participation in Sanlam-sanctioned industry bodies (. ISF Live, ISACA, FS-ISAC) Timeous escalation of new, high or escalating cybersecurity risks. Engage with application owners and the Group Cyber Security Centre (GCSC) Operations Team to ensure that system vulnerabilities identified during penetration tests, Red Team exercises, or vulnerability scans are addressed. Ensure that the Group CIO is aware of risks and actions required. Find & provide root cause analysis and implement permanent and/or long-term fixes for application security-related incidents. Strong understanding of integration between Workstations and Network/Servers
QUALIFICATIONS AND EXPERIENCE
A bachelor’s Degree or Diploma in Cybersecurity, Computer Science, Information Systems, or a related field, or equivalent work experience. A Recognised Cyber Security Certification(s) (., Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Ethical Hacker (CEH), or similar certification will be an advantage. With 15+ years of experience in software engineering, a significant portion of that in an architectural position focusing on cybersecurity within complex organisations, preferably in the financial services sector. The incumbent must have a solid technical software engineering background with a deep understanding of cybersecurity concepts, threats, and vulnerabilities.
COMPETENCIES
High Stress Tolerance. Building and maintaining relationships. Teamwork and ability to function independently. Facilitation Skills. Adaptability. Attention to detail. Planning and organising. Ability to work independently. Interpersonal savvy. Decision quality. Plans and aligns. Optimises work processes. Being resilient. Collaborates. Cultivates innovation. Customer focus. Drives results. Sensitivity to Risk Balances Stakeholders Reporting and Administration
ADDITIONAL COMPETENCIES AND SKILLS
Programming Languages: It is crucial to understand the security considerations of languages like Java, Python, C#, JavaScript and emerging ones like Kotlin. Web Technologies: Familiarity with HTML, CSS, JavaScript frameworks like React and Angular, and web application security concepts is essential. Mobile Development: Security expertise in Android, iOS, and cross-platform frameworks like Flutter helps secure sensitive data on user devices. Cloud Security: A deep grasp of cloud platforms like AWS, Azure, and GCP and their security implications is vital for secure cloud deployments. API Security: Understanding API security best practices is critical to prevent unauthorized access and data breaches. Vulnerability Understanding: In-depth knowledge of common and obscure vulnerabilities in various technologies allows for accurate identification and exploitation for testing and mitigation purposes. Secure Coding Practices: Expertise in secure coding principles and best practices for different languages and frameworks empowers proactive vulnerability prevention. Threat Modelling: The ability to analyse application architecture and functionality to anticipate potential attack vectors and proactively address them is crucial. Security Scanners and Code Analysis Tools: It is vital to understand how to use these tools to identify vulnerabilities in code and recommend remediation strategies. Penetration Testing Tools: Familiarity with these allows for thorough vulnerability assessment and simulating real-world attack scenarios. Security Incident Response Tools: Knowledge of incident response tools and methodologies helps them effectively handle security breaches and minimize damage. Cryptography and Encryption: Understanding encryption algorithms and their application in securing data is essential.
ADDITIONAL COMPETENCIES AND SKILLS
ABOUT THE COMPANY
Santam is the leading short-term insurer in South Africa. Along with its subsidiaries, the business transacts all classes of short-term insurance. Santam is a large, diversified, and transforming company and our success is rooted in our passion for our clients. Everything we do is centered on our delivery of Insurance Good and Proper.
Please note this appointment will be made in line with the Divisional Employment Equity targets. People with disabilities are welcome to apply
-
Principal Application Security Architect
2 weeks ago
Cape Town, Western Cape, South Africa Sanlam Full timeCAREER OPPORTUNITY Santam BITS has a career opportunity for a senior role of Principal Application Security Architect in the Business Information and Technology Services (BITS) department which is based in the Western Cape or Gauteng. KEY RESPONSIBILITIES Driving a comprehensive application security strategy. Threat mitigation and risk...
-
Principal Security and Ir Architect
2 weeks ago
Cape Town, South Africa DigiCert, Inc. Full timeat DigiCert Cape Town **ABOUT DIGICERT** We’re a leading, global security authority that’s disrupting our own category. Our encryption is trusted by the major ecommerce brands, the world’s largest companies, the major cloud providers, entire country financial systems, entire internets of things and even down to little things like surgically embedded...
-
Principal Security and Ir Architect
2 weeks ago
Cape Town, South Africa DigiCert Full time**ABOUT DIGICERT** We're a leading, global security authority that's disrupting our own category. Our encryption is trusted by the major ecommerce brands, the world's largest companies, the major cloud providers, entire country financial systems, entire internets of things and even down to little things like surgically embedded pacemakers. We help companies...
-
Security Architect
2 weeks ago
Cape Town, Western Cape, South Africa First Point Group Ltd Full time27582Posted: 22/08/2023 Negotiable South Africa, Cape Town, South Africa South Africa Cape Town Permanent Role: Security Architect Location: Cape Town Join our client as aSecurity Architect: Shape the Future of Security Excellence Are you ready to unleash your security prowess and redefine the future of security practices? As a Security Architect, your role...
-
Security Architect
2 months ago
Cape Town, South Africa Barratt and Co Full timeAs a Cyber-Security Solutions Architect, you'll work with our lead architect to ensure that our IT systems are protected against cyber-threats. You'll review our current security measures, recommend enhancements, and help implement them. You'll also stay up-to-date on industry trends and new threats to keep our systems safe. You'll be responsible for...
-
Security Architect
3 weeks ago
Cape Town, South Africa Barratt and Co Full timeAs a Cyber-Security Solutions Architect, you'll work with our lead architect to ensure that our IT systems are protected against cyber-threats. You'll review our current security measures, recommend enhancements, and help implement them. You'll also stay up-to-date on industry trends and new threats to keep our systems safe. You'll be responsible for...
-
Application Architect
3 weeks ago
Cape Town, South Africa iLaunch Full timeConvert logical architecture into physical architecture in AWS Experience leading the architecture and design Tertiary Qualification 5+ years in a Lead or Architect role **Proven track record using technologies such as**: C#.NET, SQL Server,AWS (In-depth knowledge of AWS services, Lambda, security, and compliance) Must have strong problem solving...
-
Security Architect
3 weeks ago
Cape Town, South Africa ABC Worldwide (Pty) Ltd Full time**Security Architect** **Key Responsibilities** - Providing security advice, requirements and guidance to the business when delivering new systems or updates to existing, to ensure Security by design. - Performing security-focused risk assessment on new systems/services and changes to existing to ensure they are within risk tolerance. - Working with the...
-
Security Architect
6 days ago
Cape Town, South Africa ABC Worldwide (Pty) Ltd Full time**Security Architect** **Key Responsibilities** - Providing security advice, requirements and guidance to the business when delivering new systems or updates to existing, to ensure Security by design. - Performing security-focused risk assessment on new systems/services and changes to existing to ensure they are within risk tolerance. - Working with the...
-
Security Architect
2 months ago
Cape Town, South Africa DAV Full time**RESPONSIBILITIES** - Security risk assessments on new systems and services - Working with businesses and various stakeholders to review designs and they are in line with existing security principles - Define, document, and implements ore security patterns - Reviewing current security processes - Working with the wider Security Architecture teams to ensure...
-
Security Architect
2 weeks ago
Cape Town, Western Cape, South Africa ABC Worldwide (Pty) Ltd Full timeSecurity ArchitectKey Responsibilities Providing security advice, requirements and guidance to the business when delivering new systems or updates to existing, to ensure Security by design. Performing securityfocused risk assessment on new systems/services and changes to existing to ensure they are within risk tolerance. Working with the business to review...
-
Security Architect
4 days ago
Cape Town, South Africa Isilumko Staffing (CPT) Full timeA security architect is responsible for planning, designing, building, and testing security solutions and capabilities within an organisation. **Responsibilities**: - Enhances security team accomplishments and competencies by planning the delivery of solutions and answering technical questions - Plans, researches, and designs security architecture for IT...
-
Application Architect
2 months ago
Cape Town, South Africa ooba Full timeAs an Application Architect you will play a key role in the strategic business enablement team (SBE). You will have both a strategic and operational view of the architecture, defining and maintaining the strategic architecture blueprint and roadmap, as well as designing architecture for projects on an ongoing basis, always working towards the strategic view....
-
Information Security Architect
2 weeks ago
Cape Town, Western Cape, South Africa Boardroom Appointments Full timeKey purpose:Duties and responsibilities: Create information security architectures and designs to secure enterprise information assets in line with architecture standards. Serve as the primary Information Security architecture authority for all project and operational stakeholders, and ensure secure architecture across all solutions and technology...
-
Security Architect
2 weeks ago
Cape Town, Western Cape, South Africa Isilumko Staffing (CPT) Full timeA security architect is responsible for planning, designing, building, and testing security solutions andcapabilities within an organisation.Responsibilities: Enhances security team accomplishments and competencies by planning the delivery of solutionsand answering technical questions Plans, researches, and designs security architecture for IT systems...
-
Application Architect
2 weeks ago
Cape Town, Western Cape, South Africa ooba Full timeAs an Application Architect you will play a key role in the strategic business enablement team (SBE). You will have both a strategic and operational view of the architecture, defining and maintaining the strategic architecture blueprint and roadmap, as well as designing architecture for projects on an ongoing basis, always working towards the strategic view....
-
Security Solutions Architect
2 months ago
Cape Town, South Africa Redherd Full timeOur client is a South African based security vendor with a global reach and customers in the highest spheres of technology and innovation. They provide real-time reporting on adversaries interacting with your networks or snooping around your infrastructure, allowing you to identify and defend against attacks. They are extremely vested in the global security...
-
Information Security Solution Architect
4 weeks ago
Cape Town, South Africa iLaunch Full timeCollaborate with Information Security Architect Ensuring compliance on Information Security Standards and controls Manage enterprise information assets Tertiary Qualification CISSP, CISM, CISA & ISSAP 5 Years experience in a lead role within IT Security environment 5 Years Projects experience in Security Architecture and design including SDLC Solid...
-
Principal Solutions Architect
2 weeks ago
Cape Town, South Africa Electrum Payments Full timeAs a Principal Solutions Architect at Electrum, you will play a pivotal role in driving our technical solutions to align seamlessly with client needs and market trends. You will be a source of technical guidance and expertise, support our clients in achieving their strategic objectives and drive our continued growth. **Responsibilities** - Client Pre-sales...
-
Information Security Solution Architect
2 weeks ago
Cape Town, Western Cape, South Africa iLaunch Full timeCollaborate with Information Security ArchitectEnsuring compliance on Information Security Standards and controlsManage enterprise information assetsTertiary QualificationCISSP, CISM, CISA & ISSAP5 Years experience in a lead role within IT Security environment5 Years Projects experience in Security Architecture and design including SDLCSolid understanding of...
