Job Description

JOB DESCRIPTION

• Provide technical expertise as input into cloud security capabilities and appropriate controls for departmental/Company Group projects to contribute towards business objectives.
• Provide operational and management support through effective reporting and dashboard creation where relevant.
• Design and deploy industry-aligned cloud security solutions to meet business requirements.
• Use and maintain cloud security technologies to identify potential security issues across technologies, solutions and applications within the Company Group.
• Respond to minor security breaches by implementing operational countermeasures, including making technical configuration changes.
• Support the investigation and containment of major incidents using advanced information.
• Innovate, design and implement opportunities for improvements/enhancements, integration, consolidation and automation to ensure cost-effective and optimal use of CSO technology and resources in support of protecting business solutions.
• Research and keep abreast of new and changing cloud and cybersecurity technologies and architectures.
• Scan the external threat landscape and identify vulnerabilities within Company Group solutions and assist solution owners with remediation activities relating to ever-evolving cyber threats.
• Provide technical input into addressing audit findings, penetration tests, threat intelligence-based ethical red teaming (TIBER) and other risk assessments.
• Work closely with the governance teams to develop policies, standards and a Group Cybersecurity Strategy.
• Attend to service and incident requests and ensure the resolution thereof within agreed service level standards.

JOB REQUIREMENTS
To be considered for this position, candidates must be in possession of:

• A minimum of a Bachelor's degree in Information Technology (IT) (NQF 7) or an equivalent qualification;
• Relevant cybersecurity certifications such as CompTIA CASP+; and
• 5-7 years of job-related experience in a security operations environment and related systems (e.g. Active Directory; Cloud Access Security Broker; database activity monitoring; endpoint detection and response; security information and event management; security orchestration, automation and response; vulnerability assessment; scanners; Azure; and Entra.

The following will be an added advantage:

• Technology-Specific Cybersecurity Certifications.

Additional requirements include:

• Industry, organisational and business awareness;
• Quality assurance knowledge and skills;
• The ability to take a forensic approach to challenges;
• Continued improvement, learning and/or professional development skills;
• Knowledge in active Directory; Cloud Access Security Broker; Database Activity Monitoring; Endpoint Detection and Response; Security Information and Event Management; Security Orchestration, Automation and Response; Vulnerability Assessment; Scanners; Azure; and Entra;
• Networking security knowledge;
• The ability to use logic and reasoning to identify the strengths and weaknesses of it systems from a cybersecurity perspective;
• Testing knowledge;
• Operations knowledge;
• Effective communication skills;
• Analytical and problem-solving skills;
• Judgement and decision-making skills;
• A drive for results;
• Learning focus;
• Team focus;
• Planning and organisational skills;
• Service and stakeholder focus; and
• The ability to build and maintain relationships.

Skills Required