Application and Security Management Analyst
- Johannesburg, Gauteng
- Permanent
- Full-time
- Collaborate with technical and business teams to address security flaws and implement remediation plans.
- Oversee application security tasks, ensuring alignment with audit requirements and internal policies.
- Support change and incident management processes, with a focus on high-priority incidents (P1 & P2).
- Provide guidance to development and support teams on security-related ticket requirements and process expectations, ensuring SLA compliance.
- Act as a liaison with internal stakeholders to ensure clear communication and quality engagements.
- Support governance and administrative functions, including audit preparation and policy development.
- Compile and deliver regular reports, including weekly, monthly, and OSM-specific security metrics.
Application Security & Vulnerability Management
- Familiarity with Common Vulnerability Scoring System (CVSS)
- Experience with tools like OWASP ZAP, Veracode, Rapid7 (on-prem), and Wiz.IO (cloud vulnerability management and CSPM)
- Track and assist in the closure of identified vulnerabilities, working closely with IT and Development teams
- Review and maintain secure configurations for systems, applications, and network devices
- Working knowledge of encryption, authentication, and secure data transmission
- Knowledge of network security principles and firewall configurations
- Familiarity with SSO and MFA using OKTA, and directory services such as MS Active Directory
- Experience with CyberArk PAM for privileged access management
- Use of Splunk SIEM for real-time threat detection and log analysis
- Review and optimise SIEM use cases to enhance threat detection and response capabilities
- Experience with Tanium and MS Defender for server and endpoint security management
- Familiarity with IBM Guardium for database activity monitoring
- Exposure to Cyera for data identification and classification
- Experience with Wiz.IO for cloud security posture management (CSPM) and IaC scanning
- Understanding of secrets management using AWS Secrets Manager, Azure Key Vault, or GCP Secrets Manager
- Familiarity with Thales and AWS KMS/HSM for key management
- Knowledge of SailPoint for identity governance
- Experience with CyCognito for external attack surface management
- Familiarity with Imperva for WAF, DDoS, and botnet protection
- Exposure to ProofPoint and MS Office365 Message Security for email security
- Use of 1Password for credential management
- Awareness of Netwrix for password policy enforcement
- Degree or equivalent qualifications and experience in Computer Science, Information Technology, Data or a related field Technical & Security Experience
- Experience with automated and manual methods for evaluating security controls in both on-prem and cloud environments
- Experience in monitoring and reporting on security flaws and supporting related remediation activities
- Familiarity with change management processes in technology environments Risk, Controls & Compliance
- Contribute to accurate statistical reporting on the market's IT security posture
- Ensure first line of defence (1LoD) ownership of non-compliance issues, exception justifications, mitigation controls, and risk documentation
- Ensure accuracy and timely completion of control testing and remediations
- Collaborate with Security Partners, RISOs and other governance functions to drive remediation of identified security deficiencies
- Ability to compile management reports and presentations on technical risks, controls, and deficiencies Communication & Collaboration
- Strong ability to communicate complex information clearly and effectively
- Good collaboration, relationship-building, and interpersonal skills
- Act as primary liaison with internal, local and regional stakeholders, ensuring quality engagements and clear progress updates