Information Security Analyst

The Western Cape Blood Service is a non-profit organisation whose mission is to collect, process and distribute blood and blood products of the highest standards in the Western Cape.

Reporting to the Manager – Information Security & Risk, a vacancy exists for an Information Security Analyst (Paterson Grade C3). This role forms a key part of the Information Security & Risk function and requires a strong technical foundation with 3–5 years of IT experience, including 1–3 years in information security operations. The analyst will work closely with IT and business teams to support the organisation’s security programme through effective execution of operational security activities, contributing to the protection of information assets and the ongoing maturity of the Information Security function.

Purpose of the Job

The Information Security Analyst executes daily security operations, including monitoring tools, analysing logs, maintaining access controls, performing vulnerability scans, supporting incident response, and ensuring compliance with security policies. The role helps reduce risk, strengthen threat detection, and support the overall effectiveness of the Information Security & Risk function.

Key Responsibilities:

• Operate and maintain security controls.
• Monitor security tools and events and escalate incidents as required.
• Perform access reviews and support Identity & Access Management (IAM) processes.
• Perform security risk assessments and routine compliance checks.
• Track mitigation progress with control owners.
• Audit preparation and evidence collection for POPIA, ISO 27001 compliance.
• Contribute to BCP/DR activities and continuous improvement initiatives.
• Help develop security awareness materials and deliver training sessions.