Santam BITS has a career opportunity for a junior/intermdiate role as an Information Security Administrator in the Business Information and Technology Services (BITS) department, based in the Western Cape.
Key Responsibilities
- Administering Information Security Governance and assurance (e.g. keeping track of versions of information security governance documentation).
- Administering the Santam Group third party risk management tool (Triplicity and Resilience)
- Document processes and artefacts that prove that the relevant governance and assurance processes were implemented as designed.
- Maintain up to date and complete Santam cloud technology outsourcing and third-party register (where applicable).
- Document logical access review schedule for Line of Business Applications, review results, facilitate resolution, progress report on resolution of issues that were identified during the reviews.
- Drive automation of security processes where applicable.
- Follow up on all security related audit findings and IT risks.
- Assist with taking appropriate action when information security policy breaches are identified.
- Produce relevant input into quarterly reports by (e.g. statistics, graphs, short write-ups, etc.)
- Assist with timeous escalation of new, high or escalating cybersecurity risks.
- Documenting identified risks during Control Self Assessments, or Crown Jewel Risk Assessment processes.
- Find & provide root cause analysis for cyber related incidents.
- Help with maintaining a configuration register of assets and licenses.
- Any other security related administrative assistance to support the day-to-day security operations of the Information Security team.
- Bachelors Degree or Diploma in Computer Science, Information Systems or other related field, or equivalent work experience
- Minimum 3 years relevant experience (This experience relates to information security. This can be having worked in an information security team before, or where the candidate has, for example, performed IT Audits on such an environment or where they have been involved in cyber security risk management, etc. This experience preference would be for candidates that have a technical background more so than those with non-technical experience)
- Information security or other relevant certifications would be advantageous.(certifications that would be advantageous would be any certifications from ISC2 (CC, SSCP, CCSP, CISSP, etc.) or ISACA (CISA, CISM, CGEIT, CRIC, etc.)
- High Stress Tolerance.
- Building and maintaining relationships.
- Teamwork and ability to function independently.
- Adaptability.
- Attention to detail.
- Planning and organising.
- Ability to work independently.
- Interpersonal savvy.
- Decision quality.
- Optimises work processes.
- Being resilient.
- Collaborates.
- Cultivates innovation.
- Customer focus.
- Drives results.
- Honesty, integrity, and respect.
- Positive enthusiastic can-do attitude.
- Ability to work under pressure and long hours.
- Ability to co-operate and thrive both within an independent and team environment.
- Project Management.
- Reporting and Administration.
- Business Requirements Definition.
- Compliance Monitoring.
- Emerging Technologies.
Santam is the leading short-term insurer in South Africa. Along with its subsidiaries, the business transacts all classes of short-term insurance. Santam is a large, diversified, and transforming company and our success is rooted in our passion for our clients. Everything we do is centered on our delivery of Insurance Good and Proper.
Please note this appointment will be made in line with the Divisional Employment Equity targets. People with disabilities are welcome to apply