Job Description
Full job descriptionCAREER OPPORTUNITYSantam BITS has a career opportunity for a senior role of Business Information Security Officer (BISO) in the Business Information and Technology Services (BITS) department which will be based in the Western Cape or Gauteng.KEY RESPONSIBILITIESEstablish and manage a Santam Business Unit (SBU) Information Security Programme.Implement cybersecurity awareness campaigns.Participate in Group Information Security Programme (GISP) initiatives.Information Security Governance and Assurance.Document processes and artefacts that prove that the relevant governance and assurance processes were implemented as designed.Information Security Incident Response and Cyber Crisis Management.Application (including cloud), Infrastructure Security, and Cybersecurity Education, Training and Awareness.The BISO will implement processes and controls as agreed with the Group Information Security Officer (GISO), GISP and the Group CIO.The BISO will be responsible for the quality and cost-effectiveness of information security services delivery in the SBU and will report on these metrics to the GISP and GISO.Provide regular feedback to Santam Manco on Group-wide information security issues.
Responsibilities + Skills
Education
Report all cyber security incidents, or information security incidents (including privacy-related incidents) where the compromise was through technology to the Sanlam Group Technology (SGT) CSIRT.Be a primary contact for cybersecurity incidents identified by the SGT CSIRT.
Experience
Minimum 7 years of relevant experienceCyber and information security certifications (such as CISM, CISSP, CCSP, CISA, ISO 27000 Lead Implementer/ Auditor) are in force. If the candidate does not possess such certifications, evidence is required that the candidate is studying toward them.
