Senior Specialist IM Security Architecture & Engineering

Company Description

Valterra Platinum is the world’s leading primary producer of Platinum Group Metals (PGMs), operating across the full value chain, from resource to market. We mine the materials that make modern life possible, in ways that are safer, smarter and more responsible.

Our business is at the heart of the broader Southern African economic and social landscape and we are committed to working towards a safe, sustainable, competitive and profitable business that benefits our country, our communities, our people, and our shareholders.

If you're driven by purpose, performance and the opportunity to make a lasting impact, we invite you to join us. At Valterra, you'll be part of a team creating value that lasts—powered by curiosity, courage, and care. Apply today and be part of something bigger.

Location: Rosebank

Job Description

This role is required to effectively translate business objectives and risk management strategies into specific security processes enabled by security technologies and services. The role provides architecture advisory services to various governance forums which includes security architecture review of proposed solutions design and alignment to the overarching enterprise architecture standards and principles

Job responsibilities include (but are not limited to):

• Develops and maintains a security architecture process that enables the enterprise to develop and implement security solutions and capabilities that are clearly aligned with business, technology and threat drivers.
• Develops security strategy plans and roadmaps based on sound enterprise architecture practices for IT and OT environments including cloud and on-premise infrastructure.
• Develops and maintains security architecture artifacts (e.g., models, templates, standards and procedures) that can be used to leverage security capabilities in projects and operations
• Utilizes SABSA as a proven methodology for developing business-driven, risk and opportunity focused Security Architectures at both enterprise and solutions level that traceably support business objectives
• Documents and addresses organization's information security, cybersecurity architecture, and systems security engineering requirements throughout the acquisition life cycle.
• Researches, designs, and implements cyber security solutions for an organization’s systems and products in compliance with the organization’s applicable security policies and standards
• Performs security reviews, identifies gaps in security architecture, and develops a security risk management plan.
• Stays up-to-date on the latest security technologies, trends, and best practices.
• Tracks developments and changes in the digital business and threat environments to ensure that they're adequately addressed in security strategy plans and architecture artifacts
• Validates IT infrastructure and other reference architectures for security best practices and recommend changes to enhance security and reduce risks, where applicable
• Validates security configurations and access to security infrastructure tools, including firewalls, IPSs, WAFs and anti-malware/endpoint protection systems
• Coordinates with DevOps teams to advocate secure coding practices
• Reviews network segmentation to ensure least privilege for network access
• Defines and documents how the implementation of a new system or new interfaces between systems impacts the security posture of the current environment
• Coordinates with operational and facility management teams to assess the security of operational technology (OT) and Internet of Things (IoT) systems

Qualifications

• An undergraduate qualification (Bachelors degree/Diploma or equivalent) in relevant IM Discipline          
• It would be advantageous to have a postgraduate qualification in the related IM discipline OR a proven track record of extensive practical experience in a role and context of similar complexity.

Certifications

• Valid EB/Code 08 driver’s licence
• Security Certification (e.g.ISC2 CISSP, CEH)
• Enterprise Security Architecture Certification (SCP or SCM Preferred)
• Registration with professional bodies (Desirable)
• Cloud Security Certification(Desirable)
• Microsoft Certified: Cybersecurity Architect Expert(Desirable)
• CREST Registered Technical Security Architecture(Desirable)
• GIAC Defensible Security Architecture (GDSA)(Desirable)
• CISSP-ISSAP(Desirable)

Experience

• 5 – 7 years working experience in a similar role

Technical Knowledge

• Experience in using architecture methodologies such as SABSA, Zachman and/or TOGAF
• Experience or strong working knowledge of managing security infrastructure — e.g., firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), endpoint protection, SIEM and log management technology.
• Experience with cloud security and DevOps
• Practical experience with implementing security controls such as database security, web content filtering, anomaly detection and response, and vulnerability scanning
• Experience with security frameworks and methodologies, such as NIST Cybersecurity Framework (CSF) and ISO/IEC 27001, MITRE ATT&CK, MITRE D3FEND, IEC 62443
• Experience working with business leaders and enterprise projects

Additional Information

Who We Are

We are a Southern African PGM producer, marketing metals globally, with a presence across 8 regions and 17 sites. Our operations include 4 operating mines, 3 smelters, and 2 refineries, giving us full control across the Platinum Group Metals (PGM) value chain—from resource to market.

We explore, we mine, we concentrate, we smelt, we refine and we market. As a result, we have an in-depth knowledge of PGM production and markets. Using this knowledge, we invest in developing sustainable markets for PGMs, partnering directly with research institutions as well as customers in the industrial, jewellery and investment sectors.

With 3 global marketing hubs and a team of over 29,000 employees, we serve a diverse international customer base while remaining deeply rooted in Southern Africa.

What We Offer

At Valterra Platinum, you will join a team committed to excellence and impact.

We offer:

• Meaningful work in a high-performance, values-led environment.
• Market-aligned reward and recognition.
• Opportunities for learning, development and progression.
• A culture that respects diversity and encourages innovation.
• A clear commitment to safe Operations.

Inclusion and Diversity

Valterra Platinum is an equal opportunities employer. We are committed to promoting an inclusive and diverse workplace where we value and respect every colleague for who they are and provide equality of opportunity so that everyone can fulfill their potential.
Valterra Platinum has a zero tolerance to dignity harms, these include all acts of gender based violence, bullying, harassment and victimisation. Ensuring the safety of our employees extends beyond physical safety and includes the eradication of harmful behaviours from our workplace. This responsibility extends to everyone at Valterra Platinum both during work hours and outside of work. We are unconditional in creating a respectful, inclusive, and safe working environment to ensure that no colleague will be violated or harassed under our watch.

How to Apply

To apply for this role, please complete our online application form via this job advert.

Closing Date: 03/07/2025

Privacy policy - Valterra Platinum