Electrum Payments Payments and digital goods and services solutions for banks, retailers and mobile network operators (MNOs). View company page Electrum is an exciting B2B tech company. We partner with some of South Africa’s biggest household names, enabling them to open up their customers’ access to payments and digital goods and services. We love that the projects we work on touch the lives of millions of South Africans every day, making a real difference. We hire the best of the best and we offer great opportunities for both personal growth and career progression. The Role: Electrum is looking for an experienced and technical IT Security Analyst to assist our Engineering team with all aspects of IT Security. This IT Security Analyst will ensure Electrum’s systems compliance with ISO 27001 Standard by managing controls and implementations An IT Security Analyst is responsible for protecting an organisation's digital assets and networks against potential security breaches, cyber attacks, and other forms of unauthorised access. They monitor the organisation's systems and networks to detect and respond to security incidents, investigate security incidents to determine their cause and potential impact, and develop and implement security solutions to mitigate future risks Responsibilities: Conducting regular security assessments and vulnerability scans to identify potential risks and vulnerabilities in the organisation's systems and networks. Monitoring and analysing security logs, alerts, and other data to detect and respond to security incidents in a timely manner. Evaluates, tests, monitors and maintains information systems (IS) and cyber security policies, procedures and systems. Creates, implements and oversees identity management systems to meet specific security needs and complex compliance standards. Investigating security incidents to determine their cause, scope, and potential impact on the organisation's systems and data. Identifies security risks and exposures, determines the causes of security violations and suggests procedures to halt future incidents and improve security. Developing and implementing security policies, procedures, and controls to mitigate security risks and ensure compliance with industry standards and regulations. Develops techniques and procedures for conducting IS, cyber security and access and identity risk assessments and compliance audits, the evaluation and testing of hardware, firmware and software for possible impact on system security, and the investigation and resolution of security incidents such as intrusion, frauds, attacks or leaks. Ensures that IS and cyber security plans, controls, processes, standards, policies and procedures are aligned with IS standards and overall IS and cyber security Collaborating with other IT teams to identify and implement security best practices and solutions. Conducting regular security audits to ensure compliance with security policies and regulations. Participating in incident response and disaster recovery planning and testing Requirements Bachelor's degree in Computer Science, Information Systems, Information Technology, or related field of study 3 years experience in IT Information Security or related fields Strong technical background in computer systems and network security. Experience in AWS is essential Industry certifications such as Certified Information Security Professional (CISP) or Certified Ethical Hacker (CEH) Knowledge of security technologies and tools such as firewalls, intrusion detection systems, and vulnerability scanners Advantageous for the role: Certified Cloud Security Professional (CCSP) Certification Knowledge of ISO 27001 and PCI-DSS security standards Strong analytical and problem-solving skills Excellent written and verbal communication skills Ability to work independently and as part of a team to implement effective security measures for the organisation We have created an high-performance culture where you can expect: Career growth - Delivering world-class financial services software products in a fast-paced company is not easy, and it takes an insane amount of effort. But in return for your effort you'll get hands-on experience working on products that are used by millions of people, and a high quality work experience that will accelerate your career faster than anywhere else Transparency - We openly discuss strategy, finances, salaries and other major decisions Autonomy - We know you'll be able to make good decisions if you have good information, and we trust you Shared Vision - You'll be able to shape a vision you can believe in - on how to build the future of financial services Work-life balance - You know when your brain has switched off for the day and you need to go for a hike or coffee shop with a view, but you also know when your team needs help to bring that strategic deliverable home. At Electrum you will be expected to know when you deserve that time out, and when you need to knuckle down and get the work done These are few practical ways we practise the culture we are so proud of: Onsite gym and shower facilities Daily cooked lunches and a stocked kitchen for the afternoon nibbles Team socialising like hikes, getaways, and dinners A generous leave policy, starting at 20 days per year A recreational area with foosball, table tennis and an Oculus Fatsaks scattered around the office for deep thinking or meditation If this sounds like a role and place where you can spread your wings, please apply now. We have created a safe, transparent environment where: We know mistakes happen, and that’s okay. We even have a three-step approach to dealing with them: Tell everyone about it Fix the mistake Tell everyone about the solution You are responsible for your actions – both the successes and the failures We talk openly about salaries and bonuses. At Electrum, we believe it’s evident why some people earn more and others a bit less. It’s like being on a sports team where salaries are widely known Explore more InfoSec / Cybersecurity career opportunities Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below. #J-18808-Ljbffr