View All Jobs 125356

Information Security Analyst - Secops

Lead SecOps to implement and maintain regulatory-aligned security controls across Ten's environment
Cape Town, Western Cape, South Africa
Mid-Level
yesterday
Ten Group

Ten Group

Provides premium lifestyle concierge and loyalty services, offering personalized travel, dining, and entertainment experiences for affluent clients worldwide.
1 Similar Job at Ten Group

Information Security Analyst - SecOps

Shape the Future of Service Excellence with Ten!

Driving Innovation. Building Trust. Redefining Service Excellence.

Ten is on a mission to become the most trusted service business in the world. We service the most valuable customers of the world's leading private banks, premium financial services and luxury brands globally including HSBC, Bank of America, and Swisscard. Corporate clients use Ten's services to acquire, engage and retain affluent, high net worth customers or valued employees. The service drives critical customer metrics, including revenue growth, net promoter score, and supports digital transformation initiatives.

Millions of individuals worldwide have access to Ten's services across lifestyle, travel, dining and entertainment. They rely on Ten to unlock seamless, curated experiences that enrich their lives.

We're profitable, ambitious, and scaling fast. As the first B Corp listed on the London Stock Exchange, we're setting the standard for sustainable growth and technology, AI driven innovation.

We are looking for an Information Security Analyst - SecOps to support the information security function, working with business, product, and development teams to implement and maintain security controls aligned with our information security policies and compliance requirements.

Your role involves maintaining and upholding the Information Security Management System, managing security risks, and ensuring compliance with global standards such as PCI-DSS, GDPR, and ISO27001. The priority for this role is to reduce exposure to cybersecurity risks and ensure the highest level of protection for both on-premise and cloud environments.

You will work closely with IT Services, Legal, Compliance, and Product Development teams on shared objectives such as security strategy, risk management, and incident response.

Key responsibilities:

Security Operations & Engineering

  • DLP Management: Design, implement, and maintain DLP policies across endpoint, email, and cloud environments to prevent unauthorized data transfer.
  • Web & Perimeter Security: Manage Secure Web Gateways (SWG), and URL filtering to protect the corporate network.
  • Vulnerability Remediation: Work alongside our Vulnerability Analyst to oversee ASV (Approved Scanning Vendor) scans and ensure perimeter vulnerabilities are mitigated within compliance windows.
  • Access Control: Facilitate and manage logical access reviews (user accounts, contractors, service accounts, firewall rules, etc.) and physical access, (CCTV, Office and Data Center Access).
  • SOC - Manage the Security Operations Center (SOC), ensuring that SIEM alerts and incident notifications are addressed according to SLA and communicated and reported appropriately.
  • SDLC and Secure Development - Act as the SME for information security in all system development activities, ensuring that internally developed systems and applications are developed and released securely, compliant to internal policies and without security flaws.

Risk Management & Compliance

  • PCI-DSS & SOC2 Support: Gather and organize technical evidence (logs, configurations, access reviews) for annual audits.
  • Control Monitoring: Perform regular "health checks" on security controls to ensure we remain in a state of continuous compliance, not just "point-in-time" readiness.
  • Act as a subject matter expert for security requirements across the organization.
  • Ensure compliance with global standards and regulatory requirements.

Incident Management & Education

  • Input into the Security Incident and Event Management (SIEM) capability.
  • Carry out operational BAU activities related to reducing risk and securing Ten Groups environment.
  • Serve as a point of escalation for IT security matters and provide guidance on security-related issues.

Security Strategy & Framework Development

  • Contribute to the Information Security Management System aligned with legal and regulatory standards.
  • Assist in the development of security control frameworks to mitigate identified risks.
  • Ensure documentation of high-quality policies and procedures that meet compliance requirements.
+ Show Original Job Post
Suggest a correction
























Information Security Analyst - Secops
Cape Town, Western Cape, South Africa
Operations
Apply to job
About Ten Group
Provides premium lifestyle concierge and loyalty services, offering personalized travel, dining, and entertainment experiences for affluent clients worldwide.