LOCATION:

SANRAL COC Offices, 36 Assegai Wood Road Rooihuiskraal, Centurion 0157

GRADE: D3 Paterson Grade

POSITION OBJECTIVE:

The Manager: Security and Network Monitoring will be responsible for monitoring, analysing, and responding to cybersecurity threats and incidents within SANRAL. This role will also involve protecting the organization's assets including intellectual property, personnel data, business systems, and brand integrity The role is a crucial component of a comprehensive cybersecurity strategy, providing SANRAL with a proactive and reactive defense against cyber-attacks and threats.

MINIMUM REQUIREMENTS:

• NQF Level 7 Bachelor’s degree, Advanced Diploma or equivalent in Information Technology
• Industry certifications: CISSP, CISM, or CISA, are compulsory
• 5 years min relevant experience
• 3 years min supervisory experience

WORKPLACE COMPETENCIES:

• Knowledge of information security management frameworks, such as ISO/IEC 27001, and NIST. and security services (firewalls, proxy’s, DNS, Mail relays etc.)
• A strong understanding of cybersecurity principles, threat landscapes, and security technologies.
• Extensive experience working with SIEM, Log Aggregators, Incident Response Management solutions.
• Strong technical knowledge of Networking, Operating Systems and enterprise integrations.
• Experience managing standards, developing Security Operations Process.
• Understanding of risk assessment and mitigation strategies.
• Attention to Detail: Reviewing logs, analyzing patterns, and documenting incident responses. Ensure that no potential threat is missed and that all necessary steps are taken to mitigate risks.
• Software Development Lifecycle: Act as a bridge between development and security, providing guidance, overseeing security controls, and responding to incidents that may arise during development or after deployment.
• Demand Management: Able to understand, anticipate, and manage the demand for security and network monitoring services and resources within SANRAL.
• Leadership skills: Ability to analyse security incidents, identify root causes, and implement solutions. Knowledge of cybersecurity technologies, threat landscapes, and incident response protocols.
• Relationship Building and Influence: Ability to build work relationships with stakeholders and drive outcomes and decisions.
• Business Needs Analysis: Ability to assess business imperatives and goals, and articulate them as per the Information Technology needs.
• Communication skills.
• Project management skills to organize, drive, and execute initiatives.
• Experience in supporting supplier security activities to ensure third‐party systems meet SANRAL's security standards.

KEY RESPONSIBILITIES:

Management:

• Effective management of the Security and Network monitoring team, ensuring the organization's security posture, and reporting on security operations to senior management.
• Manage ongoing information and cyber security threat monitoring and regularly analyse security risks through qualitative risk analysis to ensure compliance with security governance.
• Manage the team's day-to-day operations, developing and implementing security procedures, coordinating incident response efforts, and ensuring compliance with regulatory requirements.
  
  

Operational:

• Lead Investigation of security incidents, identify threats, and determine the root causes of vulnerabilities.
• Identify and analyse potential threats and vulnerabilities, proactively mitigating risks.
• Manage security incidents, ensuring the appropriate process is followed from start to finish.
• Familiar with fundamentals of attack frameworks such as Mitre, Lock Head kill-chain, etc.
• Responsible for selecting, implementing, and managing threat intelligence platforms, ensuring the team has the necessary tools to detect, analyze, and respond to security incidents.
• Set up and manage security monitoring and detection systems to identify suspicious activities and potential threats.
• Lead the process to continually identify, assess, report on, manage and remediate vulnerabilities across endpoints, workloads and systems.
• Oversee the collection, analysis, and response to security alerts and events to ensure the protection of an SANRAL's assets and information.
• Define security monitoring policies, procedures, and guidelines for monitoring and detecting security threats.
• Overseeing the deployment, configuration, and maintenance of security monitoring tools, such as security information and event management (SIEM).
• Continuously research and evaluate new security technologies, tools, and methodologies to enhance the organization's security posture.
  
  

Reporting:

• Provide regular updates on incident summaries, performance metrics, threat landscape insights, and compliance status to SANRAL’s leadership.
• Develop dashboards and visualizations to provide an overview of the function's performance and security posture, allowing for quick identification of areas of concern.

EMPLOYMENT REFERENCE CHECKS:

Employment reference checks are a requirement as part of SANRAL’s recruitment and selection process. In order for SANRAL to conduct these checks a consent form needs to be completed and signed by the applicant. As an applicant of this position, you authorize SANRAL to process all the information provided for the purpose of your application for the position as well as the verification and record keeping of such credentials.

Please note that this is a confidential document and is intended for internal use by SANRAL’s Human resources department only.

EMPLOYMENT EQUITY:

Appointments will be made in accordance with SANRAL’s Employment Equity plan.
SANRAL reserves the right not to fill any position.

Closing date for applications: 05 August 2025