Cloud Security Architect

Let's Write Africa's Story Together!

Old Mutual is a firm believer in the African opportunity and our diverse talent reflects this.

Job Description

Position Overview:

We are seeking an experienced and strategic Cloud Security Architect to join our Cyber Security team. Reporting directly to the CISO, you will be responsible for ensuring compliance with overall cyber security architecture standards, providing specialist input into cloud configurations, and advising on best practices for securing our cloud environments.

Key Responsibilities:

• Develop and maintain the organization’s cyber security architecture framework, ensuring alignment with industry standards and regulatory requirements.
• Provide expert guidance on the secure design, configuration, and deployment of cloud-based solutions (AWS and  Azure).
• Collaborate with cross-functional teams to integrate security controls into cloud environments and infrastructure.
• Conduct architecture reviews to identify security gaps and recommend solutions to enhance cloud security posture.
• Define and enforce cloud security policies, standards, and best practices.
• Lead efforts in the selection and implementation of security technologies for cloud environments.
• Provide technical leadership during security incidents and assist in post-incident analysis to improve security architecture.
• Stay current with emerging technologies, threats, and regulatory changes impacting cloud security.
• Mentor and guide engineering and security teams on secure cloud architecture practices.

Key Performance Indicators (KPIs):

• Architecture Review Completion Rate: Complete 100% of scheduled architecture reviews for cloud-based projects within the designated timeframes.
• Standards Compliance Rate: Ensure at least 95% compliance with internal and external cloud security architecture standards.
• Configuration Accuracy: Achieve a reduction in identified misconfigurations by at least 85% within three months of review.
• Incident Resolution Timeliness: Provide architectural support for resolving cloud-related security incidents within the defined SLA (e.g., 4 hours for critical incidents).
• Stakeholder Engagement: Conduct regular workshops and training, achieving a 90% satisfaction score from internal teams.
• Innovation and Improvement: Implement at least two major improvements to cloud security architecture annually.
• Audit Preparedness: Maintain 100% readiness for security architecture-related audits with no critical findings.

Qualifications:

• Bachelor’s degree in Cyber Security, Information Technology, Computer Science, or a related field.
• Relevant certifications (e.g., AWS Certified Security Specialty and Architect, CISSP, CCSP, TOGAF) are highly desirable.
• Minimum of 5-7 years of experience in cyber security with a focus on cloud architecture and security frameworks.
• Extensive knowledge of cloud platforms (AWS) and related security best practices.
• Strong understanding of security architecture principles, risk management, and regulatory compliance.
• Proven experience in developing and implementing security architectures for cloud environments.
• Excellent problem-solving, communication, and leadership skills.
• Ability to work collaboratively with technical and non-technical stakeholders.

Why Join Us?

• Opportunity to work with cutting-edge cloud technologies in the digital banking sector.
• Collaborative and innovative work environment.
• Competitive salary and comprehensive benefits package.
• Professional development and continuous learning opportunities.
• Be part of a team that values integrity, transparency, and excellence in cyber security.

The appointment will be made from the designated group in line with the Employment Equity Plan of Old Mutual South Africa and the specific business unit.

Designs and builds the organisation's cybersecurity systems and infrastructure. Provides specialist knowledge on maintaining a secure cyber security framework. Analyses and monitors the organisation’s cybersecurity measures and responds to actual penetration attempts by malicious hackers.

Responsibilities

Information Security

Lead in detecting and analyzing security incidents, including attacks, breaches, and identified vulnerabilities, and remediate any security gaps in line with the security incident management procedure.

Company Data Protection

Design and implement disaster recovery and contingency plans to protect company data.

Horizon Scanning

Explore and develop a detailed understanding of external developments or emerging issues and evaluate their potential impact on, or usefulness to, the organization.

Data Exploration

Perform complex statistical analysis and utilize mining, modeling, and testing techniques to enable data analysis.

Policies and Procedures Development

Draft policies, procedures, and related guidelines within an area of expertise to meet defined key principles and ensure compliance with external requirements.

Business Requirements Identification

Elicit complex business requirements using a variety of methods, such as interviews, document analysis, workshops, and workflow analysis, to express the requirements in terms of target user roles and goals.

Faults Diagnosis and Correction

Provide fault isolation and resolution for complex challenges to limit and address issues promptly.

Technical Developments Recommendation

Discuss and recommend more complex or innovative technical developments to improve the quality of the website/portal/application software and supporting infrastructure to better meet users’ needs.

Operational Compliance

Monitor and review performance and behaviors within area of responsibility to identify and resolve noncompliance with the organization's policies and relevant regulatory codes and codes of conduct.

Database Specifications

Approve database specifications, ensuring all agreed standards and protocols are followed and data integrity is preserved.

Personal Capability Building

Act as subject matter expert in an area of technology, policy, regulation, or operational management for the team. Maintain external accreditations and in-depth understanding of current and emerging external regulation and industry best practices through continuing professional development, attending conferences, and reading specialist media.

Skills

Adaptive Thinking, Application Development, Computer Literacy, Confidentiality, Database Queries, Database Reporting, Data Compilation, Data Compression, Data Controls, Data Modeling, Data Recovery, Digital Literacy, Gateway Servers, Test Case Management, User Requirements Documentation

Competencies

Action Oriented

Cultivates Innovation

Ensures Accountability

Manages Complexity

Nimble Learning

Organizational Savvy

Persuades

Plans and Aligns

Education

Closing Date

04 March 2025 , 23:59

The appointment will be made from the designated group in line with the Employment Equity Plan of Old Mutual South Africa and the specific business unit in question.

Old Mutual Limited is pro-vaccination and encourages its workforce to be fully vaccinated against Covid-19.

All prospective employees are required to disclose their vaccination status as part of the recruitment process.

Please refer to the Old Mutual’s Covid-19 vaccination policy for further detail. Kindly note that Old Mutual reserves the right to reinstate the requirement to vaccinate at any point if it is of the view that it is imperative to do so.

The Old Mutual Story!