Om Bank - Cyber Risk Analyst

Let's Write Africa's Story Together!

Old Mutual is a firm believer in the African opportunity and our diverse talent reflects this.

At OM Bank, we strive to attract great people who are passionate about coming together for a higher purpose – building something unique and aspirational, always aiming to be the best they can be.

We are rooted in our purpose of inspiring and enabling our customers to grow and sustain their prosperity.

We are seeking a proactive and detail-oriented Cyber Risk Analyst to join our Cyber Security team.

Reporting to the Cyber Risk Lead, you will be responsible for assessing and ensuring the effectiveness of controls in our cloud environment, performing comprehensive security due diligence reviews, and conducting ongoing security posture monitoring of new and existing third‑party vendors.

• Perform security risk assessments on the organization's cloud infrastructure to ensure controls are in place and effective.
• Conduct third‑party security due diligence reviews for new vendors and ongoing assessments for existing vendors.
• Collaborate with cross‑functional teams to identify and mitigate security risks in the supply chain and cloud environment.
• Maintain and improve the third‑party risk management framework, ensuring compliance with internal policies and external regulations.
• Develop and present risk assessment reports to stakeholders, providing actionable recommendations.
• Monitor the security posture of third‑party vendors through continuous assessment processes and industry‑standard tools.
• Support incident response activities related to third‑party vendors and cloud environments.
• Keep up‑to‑date with emerging cyber threats, technologies, and regulatory changes affecting third‑party risk management.
• Risk Assessment Completion Rate: Complete % of scheduled third‑party and cloud risk assessments within the designated timeframes.
• Risk Mitigation Effectiveness: Achieve a reduction in identified high‑risk issues by at least 80% within six months of discovery.
• Vendor Compliance Rate: Ensure at least 95% of third‑party vendors meet the organization's security requirements.
• Incident Response Timeliness: Respond to third‑party and cloud‑related security incidents within the defined SLA (e.g., 4 hours for critical incidents).
• Audit Readiness: Maintain % readiness for internal and external audits with no major findings related to third‑party or cloud security controls.
• Stakeholder Satisfaction: Achieve high satisfaction scores of in‑performance feedback surveys.

• Bachelor's degree in Cyber Security, Information Technology, or a related field.
• Relevant certifications (e.g., CISSP, CISM, CRISC, CCSK, or equivalent) are highly desirable.
• Minimum of 3–5 years of experience in cyber security risk management, with a focus on cloud environments and third‑party risk.
• Understanding of cloud security frameworks (AWS) and third‑party risk management processes.
• Experience with security assessment tools, cloud security monitoring solutions, and regulatory compliance standards.
• Excellent analytical, communication, and stakeholder management skills.
• Ability to work independently and collaboratively in a fast‑paced environment.

Opportunity to work with cutting‑edge cloud technologies in the digital banking sector.

Collaborative and innovative work environment.

Competitive salary and comprehensive benefits package.

Professional development and continuous learning opportunities.

Be part of a team that values integrity, transparency, and excellence in cyber security.

• Adaptive Thinking
• Application Development
• Computer Literacy
• Confidentiality
• Data Compilation
• Data Compression
• Data Controls
• Data Modeling
• Data Privacy
• Data Recovery
• Digital Literacy
• Gateway Servers
• IT Network Security
• Probing Questions
• Test Case Management

• Action Oriented
• Communicates Effectively
• Cultivates Innovation
• Ensures Accountability
• Manages Complexity
• Nimble Learning
• Optimizes Work Processes
• Persuades

NQF Level 7 – Degree, Advanced Diploma or Postgraduate Certificate or equivalent.

Closing Date: 03 November, 23:59

The appointment will be made from the designated group in line with the Employment Equity Plan of Old Mutual South Africa and the specific business unit in question.