Sanlam Group Technology is responsible for the provision of a digitally enabled technology service as a group COE, drive business and transformation and provide group-wide digital and data architecture. We operate the various technology platforms and shared services, ensure Cyber and Information Security resilience, and act as technology governance and risk orchestrator for technology across Sanlam.
What will you do?
The Security Compliance Analyst for the Cloud and DevSecOps platforms will be responsible for managing configuration items related to the Cloud and DevSecOps environments in accordance with ITIL best practices. This role will work very closely with the Cloud administration team, DevSecOps team and other IT departments to ensure that the design, implementation and maintenance of security controls and best practices comply to our Sanlam Group and SGT policies, baselines, configurations and standards. The candidate should have knowledge of logical access principles, access design and security in the Cloud and DevSecOps environments. The ideal candidate will have experience in implementing and maintaining ITIL configuration management controls in the Cloud and DevSecOps. This role will also fulfil a governance role in identifying non-compliance and to monitor agreed designs and patterns.
What will make you successful in this role?
- Apply a Logical Access baseline (apply principle of least privilege) on the platform and agree on the relevant reporting and alerting.
- Assist with the implementation of User and Service Account Access reviews on NetIQ and clean up (where it is the responsibility of the Cloud Administrator or DevSecOps team).
- Resolve platform related audit findings and avoid any recurrence.
- Address vulnerabilities, only Cloud.
- Assist with the development and implementation of new processes and procedures in accordance with ITIL best practices.
- Collaborate with other IT departments to ensure that all configuration items are properly integrated and aligned with overall IT services and infrastructure.
- Continuously improve management processes and tools to optimize efficiency and effectiveness.
- Provide platform control evidence to internal and external auditors.
- Successful completion of Grade 12
- Post Grade 12 Diploma or Degree in Information Technology or equivalent
- Relevant certification such as ITIL Foundations or ITIL Intermediate Service transition will be advantageous
- A minimum of 3-4 years experience in the Cloud and DevSecOps environment (Cloud Engineer/Administrator, DevSecOps Engineer or in ITIL configuration Management)
- Logical access principles
- Role-based access design
- Cloud and DevOps security
- Learning orientation
- Attention to detail
- Integrity and trust / relationship building
- Ability to work under pressure
- Strong analytical and problem-solving skills
- Ability to work independently and part of a team
Assessing security risks
Security solutions
Project management
Business requirements
IT governance, compliance and quality improvements
Personal Attributes
Decision quality - Contributing through others
Interpersonal savvy - Contributing through others
Optimises work processes - Contributing through others
Plans and aligns - Contributing through others
Build a successful career with us
Were all about building strong, lasting relationships with our employees. We know that you have hopes for your future your career, your personal development and of achieving great things. We pride ourselves in helping our employees to realise their worth. Through its four business clusters Sanlam Life and Savings, Sanlam Investment Group, Sanlam Emerging Markets, Santam, as well as MiWay and the Group Office the group provides many opportunities for growth and development.
Core Competencies
Being resilient - Contributing through others
Collaborates - Contributing through others
Cultivates innovation - Contributing through others
Customer focus - Contributing through others
Drives results - Contributing through others
Turnaround time
The shortlisting process will only start once the application due date has been reached. The time taken to complete this process will depend on how far you progress and the availability of managers.
Our commitment to transformation
The Sanlam Group is committed to achieving transformation and embraces diversity. This commitment is what drives us to achieve a diverse, inclusive and equitable workplace as we believe that these are key components to ensuring a thriving and sustainable business in South Africa. The Group's Employment Equity plan and targets will be considered as part of the selection process.
