InfoSec Compliance Administrator supporting Sabio's Infosec team in Cape Town managing security activities and ISO certification programmes. Working within a dynamic culture and developing your skills.
About the role
- Cybersecurity Analyst role involving penetration testing and security assessments at Bupa. Supporting processes and collaborating with teams to protect customer information and assets.
Responsibilities
- Support the technical activities of the Penetration Testing team.
- Assist with the penetration testing process, including planning, scoping, coordination, findings management, risk discussions, remediation tracking, and post-test reviews.
- Collaborate with internal teams and outsourced suppliers involved in the penetration testing lifecycle and contribute to processes that support continuous improvement
- Act as a technical SME regarding penetration testing methodologies to validate assessment results, assist in challenging third-party providers on findings, and support representation of the penetration testing function at Bupa security governance committees
- Work with the wider security and operational teams on the classification and protection of critical assets, including technology and information assets
- Assist in operating the penetration testing framework to help manage an engagement and its findings from scoping to closure
- Support the embedding of applicable Enterprise Security Policies, Standards, Tools and Processes into the penetration testing function
Requirements
- At least 3 years of experience in cybersecurity
- Hold relevant professional qualifications in Cyber and Information Security (e.g., OSCP, CISSP, OSEP, CRT/CCT, CISM)
- High-level knowledge of penetration testing tools and techniques, and security testing frameworks (e.g., Nessus, Metasploit, Burp Suite, Nmap and OpenSCAP) in an offensive or defensive role.
- Some exposure of Red Teaming, Purple Teaming and Attack Automation
- Understanding of Identity and Privileged access management concepts, involving processes, policies and technologies that manage and secure digital identities and their access to resources
- Excellent analytical and problem-solving skills, with the ability to translate and analyse complex information and technical issues into effective recommendations
- A logical approach to conceptual thinking and the ability to solve problems to a high standard in different scenarios.
Benefits
- 25 days holiday, increasing through length of service, with option to buy or sell
- Bupa health insurance as a benefit in kind
- An enhanced pension plan and life insurance
- Onsite gyms or local discounts where no onsite gym available
- Various other benefits and online discounts
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Senior Security Consultant advising clients on Cyber Security, GRC, and regulatory requirements. Leading projects and developing security structures for modern IT landscapes.
IT Security Consultant providing technical consultation on Cyber Security projects in various areas including SIEM and Cloud Security. Working in a hybrid role across multiple locations in Germany.
Global Information Security Governance, Risk & Compliance Analyst at Autoliv Romania. Support security compliance activities, foster adherence to frameworks like TISAX and SOX.
Senior Security Detection Engineer providing expertise for RBC's Global Cyber Security. Develops automation for security use cases to enhance detection and response capabilities.
Agent de sécurité humanitaire coordonnant des programmes de sécurité et d'accès en Colombie pour l'IRC, avec un focus sur le soutien aux communautés vulnérables.
Data Security Specialist at MUFG enabling secure use of data across emerging technologies. Managing data security posture and collaborating with stakeholders on data protection strategies.
Principal Product Security Engineer at MYOB using skills to help businesses thrive and shape the future of work. Collaborating with team members to enhance security and customer experience.
Consultant for Network Security Solutions focusing on project management and customer workshops in network security. Engaging with high - tech security solutions for international clients.
IT Consultant specializing in Microsoft 365 and Azure Security solutions with project and client management. Responsibilities include technical workshops, migration planning, and system documentation.