Business Information Security Officer

Details of the offer

Who are we?
Sanlam Developing Markets (SDM) (a wholly-owned subsidiary of Sanlam Life Limited) is one of the top financial services providers in the South African entry-level and emerging middle market. It aims to understand the unique requirements of clients and offers a wide range of simple and affordable financial solutions that cover needs such as funeral insurance, savings for education, life cover and personal accident plans. In terms of the Sanlam Group Governance Policy, SDM is managed by the SA Retail Mass cluster, which is part of the Sanlam Life and Savings cluster within the Sanlam Group. The cluster focuses on retail products, as well as group schemes.
What will you do?

Establish and manage a BU Information Security Programme.
Participate in Group Information Security Programme (GISP) initiatives.
Manage Information Security Incident response and Cyber Crisis Management.
Oversee Information Security Governance and assurance.
Ensure Application (including cloud) and Infrastructure Security.
Develop Cybersecurity Education, Training and Awareness.
Implement processes and controls as agreed with the CISO and the Business CIO.
Be accountable for IT's Risk and Compliance (it SRM and Sanlam Group standards).
Report on quality and cost-effectiveness of delivery of information security services in the BU to the GISP.

What will make you successful in this role?

Knowledge of ISO27k, Cobit, ITIL, CIS T20 and ISF best practices.
Knowledge of Information Risk Methodologies (ideally IRAM2), threat modelling and Operational Risk management methodologies.
Knowledge of the key business processes, key stakeholders and have their contact details readily available.
Understanding of the risk management and governance structures within the Cluster.
Experience in policy writing and reviews.
Experience in agile/ relevant solution development methodologies.
Familiarity with security practices and standards in development like the security development life cycle (e.g. OWASP).
Understanding of the technical and application environment of the Cluster/ BU.
Experience in analysis and control design, strong written and verbal communication skills.

Qualification and Experience:
Degree or Diploma with 6 to 8 years related experience.
Knowledge and Skills:

Cyber Security Administration.
Cyber Security Audits.
Cyber Security Compliance.
Assessing security risks.
Assessment risk mitigation for the organisation.

Personal Attributes:

Plans and aligns - Contributing through others.
Decision quality - Contributing through others.
Optimises work processes - Contributing through others.
Interpersonal savvy - Contributing through others.

Build a successful career with us:
We're all about building strong, lasting relationships with our employees. We know that you have hopes for your future – your career, your personal development and of achieving great things. We pride ourselves in helping our employees to realise their worth. Through its five business clusters – Sanlam Fintech, Sanlam Life and Savings, Sanlam Investment Group, Sanlam Allianz, Santam, as well as MiWay and the Group Office – the group provides many opportunities for growth and development.
Core Competencies:

Being resilient - Contributing through others.
Collaborates - Contributing through others.
Cultivates innovation - Contributing through others.
Customer focus - Contributing through others.
Drives results - Contributing through others.

Turnaround time:
The shortlisting process will only start once the application due date has been reached. The time taken to complete this process will depend on how far you progress and the availability of managers.
The Sanlam Group is committed to achieving transformation and embraces diversity. This commitment is what drives us to achieve a diverse, inclusive and equitable workplace as we believe that these are key components to ensuring a thriving and sustainable business in South Africa. The Group's Employment Equity plan and targets will be considered as part of the selection process.

#J-18808-Ljbffr


Source: Whatjobs_Ppc

Requirements

Enterprise Solutions Architect

Description Line of Service Internal Firm Services Industry/Sector Not Applicable Specialism IFS - Information Technology (IT) Management Level Manager Job D...


Gauteng

Published a month ago

Data Scientist / Machine Learning Engineer

Role PurposeCollaborating with cross-functional teams to identify and define data-driven solutions to healthcare problems which have the potential to transfo...


From Pillango Placements - Gauteng

Published a month ago

It Developer

Our client, a renowned Internation Financial Services Group providing specialised financial solutions and advisory services to businesses and high net worth ...


From Career-Seekers Recruitment Solutions - Gauteng

Published a month ago

It Graduate

Key Responsibilities:Assist in troubleshooting and resolving IT issues related to hardware, software, and network systems.Provide technical support to intern...


From Falcorp Resources - Gauteng

Published a month ago

Built at: 2024-11-02T17:23:46.604Z