Job category: FMCG, Retail, Wholesale and Supply Chain
Location: Cape Town
Contract: Permanent
Remuneration: Market Related
EE position: No
Introduction
To support delivery of the IT Risk and Cyber Security programs. The analyst plays two critical roles in support of these programs; to enable IT team-embedded security analysis and business enablement, and to drive risk management. This role looks to streamline risk and security processes in support of quality and speedy delivery in a complex and busy IT environment. The role requires some technical understanding and a passion for proactive risk and security management.
Key Responsibilities
- Responsible for embedding IT and cyber risk management into IT teams
- Integrate into the IT teams and establish yourself as a trusted advisor and assurance provider.
- Promote a risk conscious mindset through stakeholder engagement and awareness.
- Proactively identify, track, and manage IT and cyber risks.
- Coordinate internal and external audits.
- Help monitor compliance to policies and standards.
- Report on the status of risks, remediation, and progress to IT management.
- Engage in projects and help deliver risk-related activities such as third-party risk assessments.
- Leverage the IT GRC tool to manage and report on risk items.
- Be the go-to person in the team to help the team manage risk.
- Responsible for cyber security analysis and coordination within IT teams
- Be the first point of call for helping coordinate cyber security activities as part of projects and change within the IT team.
- Leverage group security frameworks, policies, standards, and architecture to support the IT team in delivering change.
- Support the IT team’s operational change requirements where relevant with guidance and advice.
- Coordinate all these activities with the broader security team.
- Identify and define security requirements for the IT team.
Minimum Requirements
- Grade 12 and relevant degree/diploma (3 years).
- Up to 8 years relevant experience in IT, IT risk, IT assurance and/or cyber security.
We Are Looking For Someone Who Has
- A relentless pursuit of risk reduction.
- Autonomy and a proactive approach to work.
- Experience with IT GRC tools.
- The ability to say ‘yes, but’ and guide teams towards solutions that apply the right level of risk, governance, and security.
Bonus If You Have
- Relevant qualifications and certifications such as CISM, CISA, CRISC or CISSP.
- The zest for assisting outside of working hours when required.
- Knowledge of Woolworths IT and cyber security landscape.
- Ability to research technology-related concepts, trends, and best practices.
- Demonstrates a results-oriented mindset in planning and implementing activities/projects.
#J-18808-Ljbffr
