Job Title: Senior IT Security Analyst Job Location: Cape Town, Western Cape Team: IT/Cyber Security Sector: Consumer Pharmaceuticals Compensation: 850k (Negotiable) Security Team Size: Mid Size Countries of Operation: South Africa
Redherd is a bespoke, boutique information security and technology recruiting partner. Our clients and us tackle some of the most complex security requirements of the modern-day cyber security industry. We obsess about the details and the subtle intricacies of a given position, therefore only run surgical searches and only approach those who possess the skills required, to excel in specific positions. Our candidates come first, and that will always stay at the forefront. Afterall, you know what is best for you.
Our client is a well known, South African consumer pharmaceutical retailer. For over 60 years they have been delivering world class services to millions of South Africans. They have also been named as one of South Africa’s top employers for multiple consecutive years.
Our client is looking for a Senior IT security analyst with responsibilities centered around taking ownership of IT security duties and providing day-to-day support to the Information Security Officer (ISO). Whether implementing new tools to integrate with operational process, or generating IT security reports. Or, keeping up to date with persistent or emerging threats and new InfoSec tech. You will be an integral part of the team ensuring the digital safety and security of the company and its customers.
Key Responsibilities
To take responsibility of IT security duties and provide day-to-day support to the ISO, including:
● Implement new tools to integrate security solutions with operational processes. ● Use scripting skills to develop tools for the automation of operational security and access management
processes using Python, Perl, Linux shell scripting and Powershell. ● Research and develop, information security policies, procedures, standards, and safeguards to protect
sensitive data and enable secure data transmission and storage. ● Implement and enforce logical user access management for applications and environments, and
cooperate with team leads for user and data access control, including monitoring and maintenance of role/entitlement review campaigns.
● Identify, investigate and resolve threat intelligence, security, access and authentication issues escalated by users and staff.
● Coordinate and/or perform network, mobile, application, infrastructure security assessments and penetration testing. Document technical issues identified during security assessments and practical recommendations for resolution. Proactively mitigate against information security risks or incidents
● Drive awareness of vendors / 3rd parties compliance requirements to information security standards, and ensure adherence thereof.
● Generate regular IT security reports structured to provide information about statistics and trends as required by the ISO.
● Implement security projects, deploy new security tools using DevOps approach to achieve tasks and objectives, and conduct research work as needed.
● Maintain PCI DSS and audit compliance requirements. ● Share workload with IT Security analysts to meet call SLA requirements, and automate manual IT
security workflows where possible.
Experience
● Demonstrable general IT / Infosec experience ● Good knowledge and understanding of information security principles, with demonstrated ability to
identify security weaknesses and take ownership of tasks. ● Working knowledge of heterogeneous operating system platforms including Linux. ● Proficient in at least two or more programming or scripting languages (Linux shell scripting, Windows
Powershell scripting, Python, Perl, Java, etc.).
Skills
● Analysing ● Planning ● Organising ● Delivering Results and Meeting Expectations ● Deciding and Initiating Action ● Continuous Learning ● Researching ● Presenting and Communicating
Education
● Relevant Certifications: ○ CISSP ○ OSCP ○ CEH ○ Security+ ○ Linux Related Certs
● Demonstrable programming/development experience