Data Loss & Security Incident Analyst at Rand Merchant Bank

About the job

• RMB is a market leader in Corporate and Investment Banking where our people are our differentiator. They come from many different backgrounds, bringing unique perspectives to finding solutions and solving challenges for our clients. At RMB our thinking digs deeper and sees further. With a can-do mindset that is considered and innovative, curious and resilient we unlock unique opportunities for our clients and society. We seek people who create a culture of sharing and who champion honourable behavior. Our people are smart, hard-working, self-motivated and have a passion for their work and the success of RMB. We offer a non-hierarchical, entrepreneurial environment where our people think and act like owners. We empower people, hold them accountable and reward exceptional performance.
• All appointments will be made in line with FirstRand Group’s Employment Equity plan.
• The Bank actively supports the recruitment and advancement of people with disabilities. We encourage that candidates voluntarily declare their disability and consult the Bank should they require reasonable accommodation

Role Purpose

• To analyse logs from a variety of sources, review reports and identify potential data and other security breaches. Be instrumental in assisting with the Incident Response process through all stages including remediation.

Responsibilities

• Review and analysis all Data Loss logs.
• Identify potential data breaches
•  Initiate investigations into potential data beaches
• Determine other sources of information which would aid in identifying other security breaches
• Identify and investigate any potential security breaches
• Assist in the gathering and preservation of evidence used in the prosecution of computer crimes
• Ensure chain of custody is followed for all digital media acquired in accordance with the Federal Rules of Evidence
• Perform timeline analysis
•  Correlate incident data to identify specific vulnerabilities and make recommendations that enable expeditious remediation
• Assist in ensure all DLP functions are operating correctly
• Ensure all DLP reporting functions are correctly configured and working
• Develop escalation paths for DLP events
• Develop summarised reporting for DLP
• Interact with BU's around Data Loss
• Develop an understanding of the needs and requirements of information end-users, ensure continuous enhancements of capabilities
• Ensure all required DLP changes, new rules or policies, etc. are managed. documented, approved and implemented
• Assist with Cloud application deployments to ensure these are aligned with the DLP strategy
•  Assist DLP Manager to improve the maturity levels

Qualifications and Experience

• Relevant IT qualification.
• Experience in Identity management.
• Data loss management experience.
•  Knowledge of Personally Identifying Information (PII) and personal Payment Card Industry (PCI) data security standards
• Knowledge of current organisational data loss technologies
• Knowledge of incident response and handling methodologies
• Knowledge of IT security principles and methods, such as encryption
• Knowledge of organizational IT user security policies (e.g. account creation, password rules, access, control, etc.)