SOUTH AFRICAN SPECIAL RISK INSURANCE ASSOCIATION (SASRIA) DEVELOPER JOB SUMMARY STATEMENT/PURPOSE: This role will be engaged in all phases of the software development lifecycle which include analysing user/business system requirements, responding to outages and creating application system models. Participate in design meetings and consult with clients to refine, test and debug programs to meet business needs and interact and sometimes direct third-party partners in the achievement of business and technology initiatives. CURRENT STATUS: Active CONTRACT TYPE: Permanent CLOSING DATE: August 19, 2022 Click here to apply Qualifying Criteria Key Performance Areas (Duties & Responsibilities): 1. Development and design • Develop, test, and implement new software programs. • Design and update software application. This includes, but is not limited to: database input, Data Communication Processes and User Interfaces. • Unit testing, maintain and recommend software improvements to ensure strong functionality and optimization. • Independently install, customize and integrate commercial software packages. • Create root cause analysis report for system issues. • Work with experienced team members to conduct root cause analysis of issues, review new and existing code and/or perform unit testing. • Identify ideas to improve system performance and impact availability. • Resolve technical design issues or any application issue. • Input into the development of technical specifications and plans. • Review and Analyze user requirements and convert requirements to design documents. • Compile timely, comprehensive and accurate documentation and or reports as requested. 2. System integration • Design the overall integration architecture in conjunction with experts on the target systems. • Design and code integration components including plug-ins, messaging (and supporting business rules). • Estimate effort required for each integration point enhancement. • Perform unit testing for integration point enhanced and resolve defects. • Create additional data model elements and extend the existing application data model with new properties as needed for integration components. 3. Applications configuration • Manage application configuration and perform minor/major software upgrades. • Configure screen layouts and create new screens in Guidewire Studio as and when required. • Configure business rules and other business logic in Guidewire’s scripting language. • Create forms and letter templates and their supporting XML descriptor files. • Create and modify existing type lists. • Configure operational parameters for roles, permissions, user attributes, regions, etc. • Create and extend data model elements with new properties for the existing application. 4. Stakeholder engagements • Regularly communicate with management and technical support colleagues. • Provide solutions to business challenges and input into technical decisions. • Provide comprehensive support to internal customers; achieve resolution to outstanding problems or issues. • Communicate effectively and professionally in all forms of communication with internal and external customers. 5. Ad-hoc • Preform ad hoc task when required by line manager. Qualifications: • Matric & Tertiary qualification (degree/diploma) in Computer Science or Information Systems. • Developers may work with multiple programming languages and operating systems and knowledge of coding languages will be advantageous (e.g. Java, C#, C, or C++, API, Web API). Ideal and advantage: • Frameworks: Spring, Spring Boot, MVC, Jutro(Guidewire). • Tooling: IntelliJ IDE, VS Code, Github, JIRA, Confluence and Jenkins Application Servers (Tomcat, Apache HTTP, IIS). • Coding languages that will be advantageous Guidewire (Gosu). • .Net and Azure development also advantageous. • ITIL foundation certificate. • Cobit 5. Experience: • 5+ years proven knowledge and experience in development and testing using Object Oriented Languages (Preferable Java 8+ or C#). • Operating at the level of a professionally qualified, experienced specialists and mid-management. • Working on Microsoft environments (Support and configuration). • Implementing and deploying web services/applications (SOAP/REST). • Responding to second/third line support. Knowledge: • Knowledge of business and management principles involved in strategic planning. • Knowledge of database legislation. Technical Skills: • Interpreting data. • Managing relationships. • Communicating clearly. • Embracing change. • Team working. • Taking initiative. • Driving results. • Managing risks. Attributes & Values: • Flexibility and adaptability. • Willingness to keep up to date with the new technology development. • Drive. • Stress tolerance. • Persuasiveness. Demographics: A South African citizen of any gender, preference will be given to an EE candidate. Location of the role:
DATABASE ADMINISTRATOR JOB SUMMARY STATEMENT/PURPOSE: This role supports, maintains and develops databases and their applications to support the systems, testing, QA and production environments. The incumbent is individually accountable for achieving results through own efforts. CURRENT STATUS: Active CONTRACT TYPE: Permanent CLOSING DATE: August 17, 2022 Click here to apply Qualifying Criteria Key Performance Areas (Duties & Responsibilities): 1. Database Maintenance • Manage SQL and MySQL Server databases. • Configure and maintain database servers and processes. • Monitor system’s health and it’s performance. • Ensure high levels of performance, availability, sustainability, and security. • Automate and review regular processes. • Ensure that databases logs are tracked, and issues are resolved on time. • Work closely with IT project Managers, Architects, Suppliers, and Development teams. • Provide support to Developers and the Infrastructure team. • Participates in the configuration, tuning, and troubleshooting of the databases in use in Development, QA and Production. • Database Performance monitoring, resolution implementation and maintain storage, archiving, backup, and ensure that recovery procedures function correctly. • Adhere and implement SASRIA’s governance and security standards. • Produce reports on various database e.g., capacity, availability, jobs run etc. • Implementation of IT projects. • Provide support for business-critical systems, perform scheduled maintenance and support release deployment activities. 2. Documentation Development & Maintenance • Perform backup recovery through testing and ensure database are backed up accordingly. • Participate in IT patch management to mitigate any application risks. • Maintain data standards including adherence to the Data Protection Act. • Communicate regularly with technical, applications, and operational staff to ensure database integrity and security. 3. Data Acquisition Programme (DAP) • Support business with Data acquisition programme by ensuring that data is collected and availed for reporting purposes. • Automation of Data acquisition to enable business for data management. 4. Business Intelligence • Provide necessary support for business Intelligence function through access Management. • Provide database support for Business Intelligence Dashboard. 5. Research and continuous improvement • Recommend best security practices to achieve business objectives, advise on risk assumptions for any variances granted, and provides alternatives to achieve desired end results. • Research, identify and recommend database improvements. Qualifications: • Degree in Computer Science, Information Systems, or relevant IT Degree. • Microsoft certified Database Administrator (Added Advantage). • Relevant database certificates. Experience: • Minimum of 5 years proven MS SQL Database Administration. • MySQL experience (added advantage). • Knowledge and experience with database Performance Tuning and Optimization (PTO). • Knowledge and experience with backups, restores and recovery models (Preferable). • Knowledge and experience of High Availability (HA) and Disaster Recovery (DR) options for SQL Server. Knowledge: • ITIL. • MS SQL database. • MySQL database. Attributes & Values: • Communicating clearly. • Emotional resilience. • Team player. • Conveying self-confidence. • Customer Centricity. • Managing work. • Upholding standards. • Remaining productive. • Living Saria values. Demographics: A South African citizen of any gender, preference will be given to an EE candidate. Location of the role: The role will be in Illovo, Johannesburg. ENTERPRISE SECURITY ARCHITECT JOB SUMMARY STATEMENT/PURPOSE: The role is required to assist in the development of a security architecture capability that will continue to mature to address the complex security problems in systems, people and processes including those that emerge in digital business transformation. It incorporates planning and designing Sasria’s processes, Information and Technology components to interact harmoniously while aligned with business requirements to maintain a state of “managed-security-related risk”. Requires agility in learning core skills and emerging skills based on unique circumstances within the organisation. The Enterprise Security Architect will supervise third-party service providers and internal security teams. CURRENT STATUS: Active CONTRACT TYPE: Permanent CLOSING DATE: August 15, 2022 Click here to apply Qualifying Criteria Key Performance Areas (Duties & Responsibilities): 1. Architecture and strategy • Understand how business architecture shapes and defines the technical security architecture. • Improve the security methods and practices that influence the architecture and design of Sasria processes and technology deployments. • Risk Management- master data centric risk management and data flow maps; ongoing assessments on Sasria environments (both on-prem and cloud based) to ensure risk is mitigated effectively. • Security Architecture Methods – be familiar with security architecture methodologies and frameworks (e.g., SABSA, TOGAF E-OSA, NIST CSF). • Security Frameworks, Standards & Best Practices. • Understand necessary interactions across both formal activities and more informal communications. 2. Leadership • Influence how the business will adopt security. • Use business relationship management to interact and work with relevant stakeholders to ensure that their needs are addressed by the security architecture. • Strategic Planning. • Relationship Management. • Political Navigation. 3. Privacy Advocacy • Be aware of and having a data inventory of all private data stored in company systems. • Know what data protection mechanism have been deployed to protect private data. • Know expectations set by compliance and risk teams for the processing and storage of private data. • Know legal limitations placed on data in cloud such as residency and sovereignty limitations. • Understand how privacy is handled by Sasria’s contractual arrangements with service providers. 4. Technical • Understanding of a broad technological security architecture. • Identity and Access Management including ecommerce systems. • Privileged Access Management. • Network and processes design. • Secure application development. • Standards and security baselines configurations. • Data Protection initiatives including cloud applications and infrastructure. • Matured understanding of Cryptography. • Tech Security Deployments. 5. Operational • Improve technologies that influence how IT operates in a secure manner. • Mature understanding of Infrastructure tools. • Monitoring & Compliance Tools. • Network security services including Security Operations activities. • Cloud Security management and controls implementation. • Physical security technology. • Assuring protection of types of business information. • Assuring integrity of business processes. • Protecting communications and information flow within the business. • Ability to meet regulatory and legal obligations. 6. Service Delivery • Provide third line support to users with any Information Security related queries within the SLA time frame. • Overseeing and providing advanced support on open issues (e.g., customer logged tickets, incidents, projects etc.). • Assist in incident response for any breaches, intrusions, or theft. • Coach and guide team members regarding security activities. • Assist the end-user, and IT in requesting security variances and implementation of subsequent configuration change requests. 7. Adhoc • Recommend best security practices to achieve business objectives, advises on risk assumptions for any variances granted, and provides alternatives to achieve desired end results. • Research, identify and recommend improvement to capabilities and maturity of threat and vulnerability management strategy, policy, standards, processes, procedures, and tools in order to deliver value to the business. • Maintain system documentation and configuration data for regulatory and audit purposes. • Assist in the management and optimisation of Security Operations Centre for detection, prevention protection and response on cyberattacks. Qualifications: • Bachelor’s Degree/National Diploma in IT or equivalent IT related Degree or Diploma. • ITIL & COBIT mandatory. • Cybersecurity certification: ISO 27001, CRISC, CISSP & CEH highly recommended. Experience: • Minimum of 8 years cybersecurity related experience. • Experience in security architecture methodologies, tools, and enablers. • Hands-on experience with implementation and monitoring of various IT Security solutions. • Excellent understanding of IT operational processes and controls including projects deployment. • Excellent understanding of regulatory requirements facing the IT environment (PCI DSS, POPIA, GDPR). • Must be persuasive and be able to communicate cybersecurity related concepts to a broad range of technical and non-technical staff. • Be able to map business needs to technology solutions. • Solid understanding of security risks and preventative controls. • Understand IaaS/PaaS/SaaS security deployments; native cloud security tools; CASB/CSPM/CWPP capabilities. Knowledge: • Security Frameworks, Standards and Best Practices: • ISO 27001 and ISAE 3402 SOC 2 • PCI DSS • NIST SP 800-53 • CIS or DISA benchmarks • Microsoft Cloud Adoption framework • Microsoft Cybersecurity Reference Architecture • Familiar with security architecture methodologies and frameworks (e.g., SABSA, TOGAF E-OSA0). • Experienced in multiple domains of cybersecurity. • Be open-minded to new ways of doing things. • Experience in the development and usage of Technology Patterns / Models to achieve business outcomes. • Recognised subject matter expert. Attributes & Values: • Successful leader traits. • Problem solving skills with the ability to interpret and analyse data. • Ability to explore and learn new technology and processes. • Have emotional resilience. • Be able to manage relationships. • Be able to handle conflict. • Take initiatives in solving problems. • Embrace diversity and collaboration. Demographics: A South African citizen of any gender, preference will be given to an EE candidate. Location of the role: The role will be in Illovo, Johannesburg
Comments are closed.
|