Job Description

Security Analyst: Cape Town City Centre: Perm
Business Process Outsource Industry
Reporting to: Enterprise Architect
The Company replaced the core ERP solution and are now beginning a journey to develop Microsoft Dynamics Business Central,
integrating alongside other fit for purpose technology solutions to improve processes, drive value, and enhance their customers retail
experience
The Technology department introduced an onsite-offshore model, thus widening and Technology department capability to
deliver cost effect solutions in a timely manner. The model has been tailored specifically for the departments operations dynamics. The
onsite component, focuses on high-impact tasks and immediate project requirements, ensuring that the solutions are closely aligned with
expectations and policies/standards. The offshore team contributes by working on various aspects of the projects that can be effectively
handled remotely, such as development, testing, and back-end operations
The Security Analyst is responsible for protecting an organisation's IT infrastructure, safeguarding sensitive information, and ensuring
compliance with relevant security policies and regulations. The role involves monitoring and analysing security systems, identifying
vulnerabilities, and implementing appropriate measures to prevent data breaches and cyber-attacks
Key Performance Areas:
Security Monitoring and Analysis:
Monitor security systems, including firewalls, intrusion detection systems (IDS), and data loss prevention (DLP) systems
Analyse security alerts and logs to identify potential threats and vulnerabilities
Investigate security incidents and breaches, conducting thorough forensic analysis
Threat Intelligence and Vulnerability Management:
Stay updated with the latest cybersecurity threats, vulnerabilities, and attack vectors
Conduct regular vulnerability assessments and penetration testing to identify and address security weaknesses
Implement and maintain vulnerability management processes
Incident Response:
Develop and implement incident response plans and procedures
Lead the response to security incidents, coordinating with internal teams and external partners
Document incidents and response actions, providing detailed reports and recommendations for improvement
Security Policy and Compliance:
Ensure compliance with relevant security policies, standards, and regulations (e.g., GDPR, ISO/IEC 27001)
Assist in the development, implementation, and maintenance of security policies and procedures
Conduct security awareness training for employees
Reporting and Documentation:
Prepare detailed reports on security incidents, vulnerabilities, and risk assessments
Maintain accurate documentation of security systems, policies, and procedures
Provide regular updates to management on the status of the organization's security posture
Essential Experience, Knowledge and Skills:
2 to 4 years of experience
Cyber Security Certifications
Highly skilled in the Azure Stack including Sentinel and Defender
Good communications skills, especially to 3rd party providers
Good understanding of Incident Management / Incident Response
Good awareness of Vulnerability Management
Abilities to write Playbooks and processes to a very high standard
Awareness of Frameworks, such as ISO27001, GDPR and NIST
Advantageous Qualifications and Experience:
ERP Knowledge desirable, but not essential + Business Central desirable, but not essential
Communicate:
monique.joubert@isilumko.co.za
Please email me a detailed CV

Skills Required