To research, design, develop, implement and mature technologies and solutions related to Cyber Security Operations (CSO) within the Department.
JOB DESCRIPTION
- Provide technical expertise as input into cloud security capabilities and appropriate controls for departmental/Company Group projects to contribute towards business objectives.
- Provide operational and management support through effective reporting and dashboard creation where relevant.
- Design and deploy industry-aligned cloud security solutions to meet business requirements.
- Use and maintain cloud security technologies to identify potential security issues across technologies, solutions and applications within the Company Group.
- Respond to minor security breaches by implementing operational countermeasures, including making technical configuration changes.
- Support the investigation and containment of major incidents using advanced information.
- Innovate, design and implement opportunities for improvements/enhancements, integration, consolidation and automation to ensure cost-effective and optimal use of CSO technology and resources in support of protecting business solutions.
- Research and keep abreast of new and changing cloud and cybersecurity technologies and architectures.
- Scan the external threat landscape and identify vulnerabilities within Company Group solutions and assist solution owners with remediation activities relating to ever-evolving cyber threats.
- Provide technical input into addressing audit findings, penetration tests, threat intelligence-based ethical red teaming (TIBER) and other risk assessments.
- Work closely with the governance teams to develop policies, standards and a Group Cybersecurity Strategy.
- Attend to service and incident requests and ensure the resolution thereof within agreed service level standards.
JOB REQUIREMENTS
To be considered for this position, candidates must be in possession of:
- A minimum of a Bachelor’s degree in Information Technology (IT) (NQF 7) or an equivalent qualification;
- Relevant cybersecurity certifications such as CompTIA CASP+; and
- 5-7 years of job-related experience in a security operations environment and related systems (e.g. Active Directory; Cloud Access Security Broker; database activity monitoring; endpoint detection and response; security information and event management; security orchestration, automation and response; vulnerability assessment; scanners; Azure; and Entra.
The following will be an added advantage:
- Technology-Specific Cybersecurity Certifications.
Additional requirements include:
- Industry, organisational and business awareness;
- Quality assurance knowledge and skills;
- The ability to take a forensic approach to challenges;
- Continued improvement, learning and/or professional development skills;
- Knowledge in active Directory; Cloud Access Security Broker; Database Activity Monitoring; Endpoint Detection and Response; Security Information and Event Management; Security Orchestration, Automation and Response; Vulnerability Assessment; Scanners; Azure; and Entra;
- Networking security knowledge;
- The ability to use logic and reasoning to identify the strengths and weaknesses of it systems from a cybersecurity perspective;
- Testing knowledge;
- Operations knowledge;
- Effective communication skills;
- Analytical and problem-solving skills;
- Judgement and decision-making skills;
- A drive for results;
- Learning focus;
- Team focus;
- Planning and organisational skills;
- Service and stakeholder focus; and
- The ability to build and maintain relationships.
Desired Skills:
- • Effective communication skills
- • Planning and organisational skills
- • Networking security knowledge