Senior Specialist: Information Security

Let's Write Africa's Story Together!

Old Mutual is a firm believer in the African opportunity and our diverse talent reflects this.

Job Description

Reporting to the Senior Manager Cyber Security for Old Mutual Insure, responsibility will include security by design, including asset & application security, vulnerability management, security testing, and endpoint security. The role holder will be assisting the security team to ensure the organization has oversight on security risks and monitoring strategies in place to prevent, detect and quickly respond to attacks, and contain any business or customer impact. The role holder will collaborate with the Senior Security Architect for the scoping of requirements, incident response, and adherence to any necessary protocols, regulatory, or legal cyber security requirements.

• Matric and relevant Information Technology Qualification – diploma or degree

• 5 – 8 years of relevant industry experience within the financial services/insurance sector in an IT Security role

• Recognized professional industry certification(s) such as CISSP, ISO/IEC 27001 Information Security, CEH, CISM, CRISC, CDPSE, CCSP, CSSLP.

• Knowledge of Information Security Standards and Frameworks such as NIST CSF, ISO27001/2

• Knowledge of Secure Software Development Lifecycles and agile ways of working

• Knowledge of Information Security and IT Risk

• Knowledge of IS Risk Management

• Knowledge of Vulnerability Management

• Knowledge of Security Awareness and Training

• Knowledge of Cloud Computing Platforms such as AWS, Azure

• Knowledge of Microsoft security and compliance,

Ensures the security and integrity of the organisation’s critical information. Responsible for safeguarding the organisation's data, devices, infrastructure, and systems against malware, exploit attempts, intrusions, and attacks

Responsibilities

Horizon Scanning

Explore and develop a detailed understanding of external developments or emerging issues and contribute to the evaluation of their potential impact on, or usefulness to, the organization.

Information Security

Implement required security measures, such as firewalls or message encryption, and provide input on their design, monitoring performance to notify security experts of any problems.

Company Data Protection

Design and implement disaster recovery and contingency plans to protect company data.

Faults Diagnosis and Correction

Provide fault isolation and resolution for complex challenges to limit and address issues promptly.

Technical Developments Recommendation

Research and suggest technical developments to improve the quality of the website/portal/software and supporting infrastructure to better meet users’ needs.

Operational Compliance

Maintain and renew a deep knowledge and understanding of the organization's policies and procedures and of relevant regulatory codes and codes of conduct, and ensure own work adheres to required standards. Or identify, within the team, patterns of noncompliance with the organization's policies and procedures and with relevant regulatory codes and codes of conduct, taking appropriate action to report and resolve these and escalating issues as appropriate.

Testing Information Technology (IT) Performance

Design and perform website/applications software tests and respond to user emails to monitor, diagnose, and correct performance issues.

Analysis of "As Is" and "To Be"

Support and contribute to the documentation of "as is" and "to be" processes and describe the changes required to migrate to the "to be" capability to record accurately the change required.

Technical Database Support

Design distribution of basic database resources and provide physical modeling and design services to tune database applications for optimum performance.

Database Specifications

Contribute to the approval process for database specifications to ensure all agreed standards and protocols are followed and data integrity is preserved.

Personal Capability Building

Develop own capabilities by participating in assessment and development planning activities as well as formal and informal training and coaching; gain or maintain external professional accreditation, where relevant, to improve performance and fulfill personal potential. Maintain an in-depth understanding of technology, external regulation, and industry best practices through ongoing education, attending conferences, and reading specialist media.

Skills

Competencies

Communicates Effectively

Courage

Cultivates Innovation

Decision Quality

Ensures Accountability

Manages Complexity

Nimble Learning

Persuades

Education

Bachelor of Commerce (BCom): Information Technology And Computer Science: Information Technology Management (Required)

Closing Date

23 January 2025 , 23:59

The appointment will be made from the designated group in line with the Employment Equity Plan of Old Mutual South Africa and the specific business unit in question.

Old Mutual Limited is pro-vaccination and encourages its workforce to be fully vaccinated against Covid-19.

All prospective employees are required to disclose their vaccination status as part of the recruitment process.

Please refer to the Old Mutual’s Covid-19 vaccination policy for further detail. Kindly note that Old Mutual reserves the right to reinstate the requirement to vaccinate at any point if it is of the view that it is imperative to do so.

The Old Mutual Story!