IT Security Analyst: Cape Town CBD

Security Analyst: Cape Town City Centre: Perm
Business Process Outsource Industry
Reporting to: Enterprise Architect

The Company replaced the core ERP solution and are now beginning a journey to develop Microsoft Dynamics Business Central, integrating alongside other fit for purpose technology solutions to improve processes, drive value, and enhance their customers’ retail experience.

The Technology department introduced an onsite‑offshore model, thus widening the Technology department capability to deliver cost‑effective solutions in a timely manner. The model has been tailored specifically for the department’s operations dynamics. The onsite component focuses on high‑impact tasks and immediate project requirements, ensuring that the solutions are closely aligned with expectations and policies/standards. The offshore team contributes by working on various aspects of the projects that can be effectively handled remotely, such as development, testing, and back‑end operations.

The Security Analyst is responsible for protecting an organisation’s IT infrastructure, safeguarding sensitive information, and ensuring compliance with relevant security policies and regulations. The role involves monitoring and analysing security systems, identifying vulnerabilities, and implementing appropriate measures to prevent data breaches and cyber‑attacks.

• Monitor security systems, including firewalls, intrusion detection systems (IDS), and data loss prevention (DLP) systems.
• Analyse security alerts and logs to identify potential threats and vulnerabilities.
• Investigate security incidents and breaches, conducting thorough forensic analysis.

• Stay updated with the latest cybersecurity threats, vulnerabilities, and attack vectors.
• Conduct regular vulnerability assessments and penetration testing to identify and address security weaknesses.
• Implement and maintain vulnerability management processes.

• Develop and implement incident response plans and procedures.
• Lead the response to security incidents, coordinating with internal teams and external partners.
• Document incidents and response actions, providing detailed reports and recommendations for improvement.

• Ensure compliance with relevant security policies, standards, and regulations (e.g., GDPR, ISO/IEC 27001).
• Assist in the development, implementation, and maintenance of security policies and procedures.
• Conduct security awareness training for employees.

• Prepare detailed reports on security incidents, vulnerabilities, and risk assessments.
• Maintain accurate documentation of security systems, policies, and procedures.
• Provide regular updates to management on the status of the organization’s security posture.

• 2 to 4 years of experience.
• Cyber Security Certifications.
• Highly skilled in the Azure Stack including Sentinel and Defender.
• Good communications skills, especially to 3rd‑party providers.
• Good understanding of Incident Management / Incident Response.
• Good awareness of Vulnerability Management.
• Abilities to write Playbooks and processes to a very high standard.
• Awareness of frameworks such as ISO27001, GDPR and NIST.

• ERP Knowledge desirable, but not essential.
• Business Central desirable, but not essential.

monique.joubert@isilumko.co.za

Please email me a detailed CV.