A large insurance company based in Centurion is looking for a specialised person.The successful applicant will join the team responsible for the following activities and be actively involved in most if not all areas below:
? IT governance activities, e.g.:
o IT policy and procedure management
o IT process analysis and improvement
? Daily IT process administration
o E.g. change-, incident-, maintenance-, configuration management processes, etc.
? IT performance management
o E.g. Monitoring, event management
? IT stakeholder management
o Reporting and expectation management
? IT risk management activities and reporting in line with Group Risk Management Framework
? Information security activities, e.g.:
o Policy awareness and enforcement
o Security vendor management
o Security incident response and investigation
o Security architecture design
o Etc.
? IT compliance implementation projects:
o KING III, POPI, PCI, ECT, FAIS, etc.
o Internal and external audit liaison
o Clarify IT legislation to Risk and Compliance division
? IT Disaster Recovery
o Planning
o Integration with Business Continuity Management Processes
? Data Management Activities

Requirements:
Must have at least 3 years’ experience in IT GRC and/or IT Security sector
? The following competencies and qualifications are required for the position:
o B.Sc (IT, Computer Science or Engineering) or B.Com (Information systems) degree
o CISA, CISSP, CISM, CRISC or equivalent risk / security professional qualification preferable
o PCI QSA specialist (or similar experience) preferable
o Qualifications in line with above responsibilities will be advantageous
? Should be knowledgeable in the following technologies:
o Microsoft Windows, UNIX, Linux operating systems
o Microsoft SQL Server and Universe databases
o Sonicwall (or similar) firewall rules configuration and an understanding of TCP/IP Networking