Job Description

###

Job Advert Summary

The candidate is part of the Cybersecurity function in the organisation mandated to actively protect Sasria's information and technology assets from external or internal threats; ensuring compliance with statutory and regulatory requirements regarding information access, security and privacy. The role is responsible for analysing security requirements for Sasria cloud environments, implementation and integrations of technological solutions dedicated to data protection in cloud or hybrid environment and full management of the identity and access management for both cloud and on-premise infrastructure; applications and customers.

###

Minimum Requirements

Qualifications

A relevant diploma/degree in Information Communication Technology at NQF level 5/6 as recognized by SAQA.

Experience

Microsoft Office 365 Administration and Security Microsoft Azure Security Active Directory Administration and Security General Security Administration Access Management
###

Duties and Responsibilities

Key Performance Area and Tasks

1. Cloud Security

Continuous identification of security gaps in the cloud environments and implementation of remediation actions. Know, manage and monitor IT Security Solutions (SIEM, Cloud Access Security Broker, Data Leakage Prevention, Web Application Firewall, Multi Factor Authentication, Data Rights Managements, Data Classification etc). Understand and facilitate cloud security capabilities and possible interfaces with on-prem security solutions. Use industry standards, guidelines, and regulatory compliance requirements related to information security and cloud computing such as GDPR, ISO 27001, Cloud Security Alliance, NIST 800-53, PCI DSS for effective management of risk

2. IT Security Operations

Support the IT team on daily tasks which includes but not limited to prioritization, investigation and troubleshooting of IT security incidents. upport the IT Security team in ensuring authorized access by monitoring network activities and reporting violations. Process security requests ensuring confidentiality, integrity and availability of information. Analyse problems, recommend solutions, products, and technologies to meet business security and information security objectives. Ensure adherence to approved ICT Governance principles and policies. Identification of vulnerabilities and remediation

3. Change and Configuration Management

Assist in implementation of security configuration controls.

4. Reporting

Support in creation of IT Security reports as per set metrics and KPIs.

5. Processes and continuous improvement

Continuous reflection of IT Security processes and recommendations of improvements. Enjoy staying on top of cyber security trends and incorporate best practices into daily work.

6. User Support

Provide support on open issues (e.g. customer logged tickets, incidents, projects etc.) Assist in incident response for any breaches, intrusions, or theft.

7. Ad hoc tasks

Assist in fulfilment of Ad hoc tasks as requested by team members. Perform security research and document and communicate the findings of their research. * Influence technical discussions and decisions